Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 16, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
141	7.5	重要 Network	アップル	tvOS iOS watchOS visionos iPadOS	アップルのiPadOS等の複数製品におけるバッファエラーの脆弱性 New	CWE-119 バッファエラー	CVE-2026-43658	2026-05-15 10:58	2026-05-11	Show	GitHub Exploit DB Packet Storm

142	6.2	警告 Local	アップル	tvOS iOS watchOS visionos iPadOS	アップルのiPadOS等の複数製品における境界外書き込みに関する脆弱性 New	CWE-787 境界外書き込み	CVE-2026-43666	2026-05-15 10:58	2026-05-11	Show	GitHub Exploit DB Packet Storm

143	7.5	重要 Network	アップル	tvOS iOS watchOS visionos iPadOS	アップルのiPadOS等の複数製品における解放済みメモリの使用に関する脆弱性 New	CWE-416 解放済みメモリの使用	CVE-2026-43668	2026-05-15 10:58	2026-05-11	Show	GitHub Exploit DB Packet Storm

144	5.5	警告 Local	jqlang	jq	jqlangのjqにおける整数オーバーフローの脆弱性 New	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2026-43894	2026-05-15 10:58	2026-05-11	Show	GitHub Exploit DB Packet Storm

145	4.4	警告 Local	jqlang	jq	jqlangのjqにおける複数の脆弱性 New	CWE-158 CWE-20	CVE-2026-43895	2026-05-15 10:58	2026-05-11	Show	GitHub Exploit DB Packet Storm

146	5.5	警告 Local	jqlang	jq	jqlangのjqにおける再帰制御に関する脆弱性 New	CWE-674 不適切な再帰制御	CVE-2026-43896	2026-05-15 10:58	2026-05-11	Show	GitHub Exploit DB Packet Storm

147	8.1	重要 Network	Daniel Garcia	Vaultwarden	Daniel GarciaのVaultwardenにおける不正な認証に関する脆弱性 New	CWE-863 不正な認証	CVE-2026-43913	2026-05-15 10:58	2026-05-11	Show	GitHub Exploit DB Packet Storm

148	9.8	緊急 Network	Daniel Garcia	Vaultwarden	Daniel GarciaのVaultwardenにおける過度な認証試行の不適切な制限に関する脆弱性 New	CWE-307 過度な認証試行の不適切な制限	CVE-2026-43914	2026-05-15 10:58	2026-05-11	Show	GitHub Exploit DB Packet Storm

149	8.1	重要 Network	Pocket ID	Pocket ID	Pocket IDにおける複数の脆弱性 New	CWE-285 CWE-613	CVE-2026-43983	2026-05-15 10:58	2026-05-12	Show	GitHub Exploit DB Packet Storm

150	7.5	重要 Network	protobufjs project	protobufjs	protobufjs projectのprotobufjsにおける再帰制御に関する脆弱性 New	CWE-674 不適切な再帰制御	CVE-2026-44289	2026-05-15 10:58	2026-05-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 16, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
346441	-	php_arena	pafiledb	paFileDB 3.1 and earlier allows remote attackers to obtain sensitive information via (1) an invalid str parameter to pafiledb.php, or a direct request to (2) viewall.php, (3) stats.php, (4) search.ph…	NVD-CWE-Other	CVE-2005-0724	2016-10-18 12:14	2005-05-2	Show	GitHub Exploit DB Packet Storm

346442	-	ubbcentral	ubb.threads	SQL injection vulnerability in editpost.php in UBB.threads 6.0 allows remote attackers to execute arbitrary SQL commands via the Number parameter.	NVD-CWE-Other	CVE-2005-0726	2016-10-18 12:14	2005-05-2	Show	GitHub Exploit DB Packet Storm

346443	-	kde conectiva gentoo redhat ubuntu	quanta linux kde fedora_core ubuntu_linux	Kommander in KDE 3.2 through KDE 3.4.0 executes data files without confirmation from the user, which allows remote attackers to execute arbitrary code.	NVD-CWE-Other	CVE-2005-0754	2016-10-18 12:14	2005-04-22	Show	GitHub Exploit DB Packet Storm

346444	-	goodtech_systems	goodtech_telnet_server	Buffer overflow in the administration web server for GoodTech Telnet Server 4.0 and 5.0, and possibly all versions before 5.0.7, allows remote attackers to execute arbitrary code via a long string to…	NVD-CWE-Other	CVE-2005-0768	2016-10-18 12:14	2005-05-2	Show	GitHub Exploit DB Packet Storm

346445	-	php_arena	pafiledb	paFileDB 3.1 and earlier allows remote attackers to obtain sensitive information via a direct request to (1) auth.php, (2) login.php, (3) category.php, (4) file.php, (5) team.php, (6) license.php, (7…	NVD-CWE-Other	CVE-2005-0780	2016-10-18 12:14	2005-03-12	Show	GitHub Exploit DB Packet Storm

346446	-	phorum	phorum	Cross-site scripting (XSS) vulnerability in Phorum before 5.0.14a allows remote attackers to inject arbitrary web script or HTML via the filename of an attached file.	NVD-CWE-Other	CVE-2005-0783	2016-10-18 12:14	2005-05-2	Show	GitHub Exploit DB Packet Storm

346447	-	phorum	phorum	Multiple cross-site scripting (XSS) vulnerabilities in Phorum before 5.0.15 allow remote attackers to inject arbitrary web script or HTML via (1) the subject line to follow.php or (2) the subject lin…	NVD-CWE-Other	CVE-2005-0784	2016-10-18 12:14	2005-05-2	Show	GitHub Exploit DB Packet Storm

346448	-	zpanel	zpanel	PHP remote file inclusion vulnerability in zpanel.php in ZPanel allows remote attackers to (1) execute arbitrary PHP code in ZPanel 2.0 or (2) include local files in ZPanel 2.5 beta 10 and earlier by…	NVD-CWE-Other	CVE-2005-0793	2016-10-18 12:14	2005-03-15	Show	GitHub Exploit DB Packet Storm

346449	-	-	-	Directory traversal vulnerability in HolaCMS 1.4.9-1 allows remote attackers to overwrite arbitrary files via a "holaDB/votes" followed by a .. (dot dot) in the vote_filename parameter, which bypasse…	NVD-CWE-Other	CVE-2005-0796	2016-10-18 12:14	2005-05-2	Show	GitHub Exploit DB Packet Storm

346450	-	-	-	Novell iChain Mini FTP Server 2.3 displays different error messages if a user exists or not, which allows remote attackers to obtain sensitive information and facilitates brute force attacks.	CWE-200 Information Exposure	CVE-2005-0797	2016-10-18 12:14	2005-03-15	Show	GitHub Exploit DB Packet Storm