Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 24, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
224571 3.5 注意 IBM - IBM Cognos Command Center の Web クライアントのヘルプページにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-3979 2013-07-26 14:16 2013-07-23 Show GitHub Exploit DB Packet Storm
224572 4.3 警告 WordPress.org - WordPress におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2399 2013-07-26 12:07 2012-04-21 Show GitHub Exploit DB Packet Storm
224573 7.5 危険 Pidgin - Pidgin の libpurple の MXit プロトコルプラグインにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-3374 2013-07-25 16:24 2012-07-5 Show GitHub Exploit DB Packet Storm
224574 4.3 警告 Best Practical Solutions - Best Practical Solutions Request Tracker における製品の鍵束の鍵の読み取り制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-6581 2013-07-25 14:54 2012-10-25 Show GitHub Exploit DB Packet Storm
224575 4.3 警告 Best Practical Solutions - Best Practical Solutions Request Tracker におけるメッセージの生成元の詳細を偽装される脆弱性 CWE-310
暗号の問題 		CVE-2012-6580 2013-07-25 14:51 2012-10-25 Show GitHub Exploit DB Packet Storm
224576 6.4 警告 Best Practical Solutions - Best Practical Solutions Request Tracker における特定の送信メールに対して暗号化または署名を設定される脆弱性 CWE-310
暗号の問題 		CVE-2012-6579 2013-07-25 14:49 2012-10-25 Show GitHub Exploit DB Packet Storm
224577 4.3 警告 Best Practical Solutions - Best Practical Solutions Request Tracker におけるメッセージを偽装される脆弱性 CWE-310
暗号の問題 		CVE-2012-6578 2013-07-25 14:48 2012-10-25 Show GitHub Exploit DB Packet Storm
224578 5 警告 シスコシステムズ - Cisco Unified MeetingPlace Web Conferencing サーバにおけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-3438 2013-07-25 14:02 2013-07-23 Show GitHub Exploit DB Packet Storm
224579 10 危険 日本電気
Portable SDK for UPnP project
ソニー株式会社
古河電気工業		 - Portable SDK for UPnP Devices におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-5958 2013-07-24 17:04 2012-12-6 Show GitHub Exploit DB Packet Storm
224580 10 危険 日本電気
Portable SDK for UPnP project
ソニー株式会社
古河電気工業		 - Portable SDK for UPnP Devices におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-5959 2013-07-24 17:04 2012-12-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1221 6.3 MEDIUM
Network 		- - A vulnerability was detected in Edimax BR-6228NC 1.22. Affected by this issue is the function mp of the file /goform/mp of the component POST Request Handler. The manipulation of the argument command… CWE-74
CWE-77
Injection
Command Injection 		CVE-2026-8774 2026-05-18 11:16 2026-05-18 Show GitHub Exploit DB Packet Storm
1222 4.7 MEDIUM
Network 		- - A security vulnerability has been detected in linlinjava litemall up to 1.8.0. Affected by this vulnerability is the function backup/load of the file litemall-db/src/main/java/org/linlinjava/litemall… CWE-74
CWE-88
Injection
Argument Injection 		CVE-2026-8773 2026-05-18 09:16 2026-05-18 Show GitHub Exploit DB Packet Storm
1223 4.7 MEDIUM
Network 		- - A weakness has been identified in linlinjava litemall up to 1.8.0. Affected is an unknown function of the component Admin Endpoint. Executing a manipulation can lead to sql injection. The attack can … CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-8772 2026-05-18 09:16 2026-05-18 Show GitHub Exploit DB Packet Storm
1224 7.3 HIGH
Network 		- - A security flaw has been discovered in linlinjava litemall up to 1.8.0. This impacts the function list of the file litemall-wx-api/src/main/java/org/linlinjava/litemall/wx/web/WxGoodsController.java … CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-8771 2026-05-18 09:16 2026-05-18 Show GitHub Exploit DB Packet Storm
1225 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: rxrpc: Also unshare DATA/RESPONSE packets when paged frags are present The DATA-packet handler in rxrpc_input_call_event() and th… CWE-787
 Out-of-bounds Write 		CVE-2026-43500 2026-05-18 01:16 2026-05-11 Show GitHub Exploit DB Packet Storm
1226 - - - Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. - CVE-2026-6050 2026-05-17 08:16 2026-05-17 Show GitHub Exploit DB Packet Storm
1227 4.3 MEDIUM
Network 		gitlab gitlab GitLab has remediated an issue in GitLab CE/EE affecting all versions from 15.1 before 18.9.7, 18.10 before 18.10.6, and 18.11 before 18.11.3 that could have allowed an authenticated user with Guest … CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2025-13874 2026-05-16 12:38 2026-05-14 Show GitHub Exploit DB Packet Storm
1228 5.4 MEDIUM
Network 		gitlab gitlab GitLab has remediated an issue in GitLab CE/EE affecting all versions from 15.11 before 18.9.7, 18.10 before 18.10.6, and 18.11 before 18.11.3 that could have allowed an authenticated user to inject … CWE-94
Code Injection 		CVE-2025-12669 2026-05-16 12:38 2026-05-14 Show GitHub Exploit DB Packet Storm
1229 7.5 HIGH
Network 		gitlab gitlab GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.5 before 18.9.7, 18.10 before 18.10.6, and 18.11 before 18.11.3 that could have allowed an unauthenticated user to cause … CWE-1284
 Improper Validation of Specified Quantity in Input 		CVE-2025-14869 2026-05-16 12:38 2026-05-14 Show GitHub Exploit DB Packet Storm
1230 7.5 HIGH
Network 		gitlab gitlab GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.5 before 18.9.7, 18.10 before 18.10.6, and 18.11 before 18.11.3 that could have allowed an unauthenticated user to cause … CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2025-14870 2026-05-16 12:38 2026-05-14 Show GitHub Exploit DB Packet Storm