Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 24, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226031	2.6	注意	codedesign.jp	-	ArtIME 日本語入力におけるアクセス制限不備の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-0719	2013-03-26 12:01	2013-03-26	Show	GitHub Exploit DB Packet Storm

226032	2.6	注意	Baidu, Inc.	-	Simeji におけるアクセス制限不備の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-0718	2013-03-26 12:01	2013-03-26	Show	GitHub Exploit DB Packet Storm

226033	6.8	警告	Verizon	-	Verizon FiOS Actiontec ルータ MI424WR-GEN3I にクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2013-0126	2013-03-26 10:48	2013-03-19	Show	GitHub Exploit DB Packet Storm

226034	4.3	警告	Askia	-	ASKIA askiaweb の管理インターフェイスにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-0124	2013-03-25 19:10	2013-03-20	Show	GitHub Exploit DB Packet Storm

226035	7.5	危険	Askia	-	ASKIA askiaweb の管理インターフェイスにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2013-0123	2013-03-25 19:09	2013-03-20	Show	GitHub Exploit DB Packet Storm

226036	3.5	注意	IBM	-	IBM Tivoli Endpoint Manager の Web レポートにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-0453	2013-03-25 19:09	2013-03-20	Show	GitHub Exploit DB Packet Storm

226037	4.3	警告	IBM	-	IBM Rational ClearQuest の Web クライアントにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-5757	2013-03-25 19:08	2013-03-20	Show	GitHub Exploit DB Packet Storm

226038	7.5	危険	CA Technologies	-	複数の CA SiteMinder 製品における他のユーザを偽装される脆弱性	CWE-20 不適切な入力確認	CVE-2013-2279	2013-03-25 19:07	2013-03-19	Show	GitHub Exploit DB Packet Storm

226039	4	警告	シーメンス	-	SIMATIC PCS7 および他の製品で使用される Siemens WinCC におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2013-0679	2013-03-25 19:07	2013-03-15	Show	GitHub Exploit DB Packet Storm

226040	4	警告	シーメンス	-	SIMATIC PCS7 および他の製品で使用される Siemens WinCC における重要な情報を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2013-0678	2013-03-25 19:05	2013-03-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2611	8.8	HIGH Network	wavlink	wl-nu516u1_firmware	A flaw has been found in Wavlink NU516U1 240425. The impacted element is the function sys_login1 of the file /cgi-bin/login.cgi. Executing a manipulation of the argument ipaddr can lead to os command…	CWE-77 CWE-78 Command Injection OS Command	CVE-2026-8230	2026-05-13 02:37	2026-05-10	Show	GitHub Exploit DB Packet Storm

2612	9.1	CRITICAL Network	php	php	In PHP versions 8.4.* before 8.4.21 and 8.5.* before 8.5.6, when an encoding name containing an embedded NUL byte is passed to mb_convert_encoding() or related mbstring functions, the code incorrectl…	CWE-125 Out-of-bounds Read	CVE-2026-6104	2026-05-13 02:35	2026-05-10	Show	GitHub Exploit DB Packet Storm

2613	7.5	HIGH Network	php	php	In PHP versions 8.4.* before 8.4.21 and 8.5.* before 8.5.6, DOMNode::C14N() method may process the XML data incorrectly, causing a circular linked list in the data structure representing the XML docu…	CWE-404 CWE-835 Improper Resource Shutdown or Release Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2026-7263	2026-05-13 02:35	2026-05-10	Show	GitHub Exploit DB Packet Storm

2614	6.5	MEDIUM Network	open5gs	open5gs	A vulnerability was detected in Open5GS up to 2.7.7. The affected element is the function update_authorized_pcc_rule_and_qos of the file /src/smf/npcf-handler.c of the component SMF. The manipulation…	CWE-404 Improper Resource Shutdown or Release	CVE-2026-8248	2026-05-13 02:35	2026-05-11	Show	GitHub Exploit DB Packet Storm

2615	6.5	MEDIUM Network	open5gs	open5gs	A vulnerability has been found in Open5GS up to 2.7.7. This affects the function smf_n4_build_qos_flow_to_modify_list of the file /src/smf/n4-build.c of the component SMF. Such manipulation leads to …	CWE-404 Improper Resource Shutdown or Release	CVE-2026-8250	2026-05-13 02:35	2026-05-11	Show	GitHub Exploit DB Packet Storm

2616	6.5	MEDIUM Network	open5gs	open5gs	A vulnerability was found in Open5GS up to 2.7.7. This impacts the function update_authorized_pcc_rule_and_qos of the file /src/smf/npcf-handler.c of the component SMF. Performing a manipulation resu…	CWE-404 Improper Resource Shutdown or Release	CVE-2026-8251	2026-05-13 02:35	2026-05-11	Show	GitHub Exploit DB Packet Storm

2617	6.5	MEDIUM Network	open5gs	open5gs	A vulnerability was determined in Open5GS up to 2.7.7. Affected is the function smf_nsmf_handle_create_data_in_hsmf of the component SMF. Executing a manipulation can lead to null pointer dereference…	CWE-404 CWE-476 Improper Resource Shutdown or Release NULL Pointer Dereference	CVE-2026-8252	2026-05-13 02:34	2026-05-11	Show	GitHub Exploit DB Packet Storm

2618	9.1	CRITICAL Network	vmware	spring_cloud_config	Spring Cloud Config allows applications to serve arbitrary text and binary files through the spring-cloud-config-server module. A malicious user, or attacker, can send a request using a specially cra…	CWE-22 Path Traversal	CVE-2026-40982	2026-05-13 02:30	2026-05-7	Show	GitHub Exploit DB Packet Storm

2619	8.1	HIGH Network	vmware	spring_cloud_config	The base directory (`spring.cloud.config.server.git.basedir`) used by the Spring Cloud Config Server to clone Git repositories to is susceptible to time-of-check-time-of-use (TOCTOU) attacks. Spring …	CWE-367 Time-of-check Time-of-use (TOCTOU) Race Condition	CVE-2026-41002	2026-05-13 02:29	2026-05-7	Show	GitHub Exploit DB Packet Storm

2620	6.2	MEDIUM Local	apple	ipados iphone_os macos tvos visionos watchos	A buffer overflow was addressed with improved input validation. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 2…	CWE-121 Stack-based Buffer Overflow	CVE-2026-28897	2026-05-13 02:27	2026-05-12	Show	GitHub Exploit DB Packet Storm