Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 18, 2026, 4:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226281 7.5 危険 Script Head - Drupal 用 Webmail Plus モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-5590 2012-12-28 16:06 2012-11-28 Show GitHub Exploit DB Packet Storm
226282 3.5 注意 Net Genius - Drupal 用 MultiLink モジュールにおける任意のノードタイトルを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2012-5589 2012-12-28 16:04 2012-11-28 Show GitHub Exploit DB Packet Storm
226283 2.6 注意 Matthias Hutterer - Drupal 用 Email Field モジュールにおける電子メールを送信される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-5588 2012-12-28 16:02 2012-11-28 Show GitHub Exploit DB Packet Storm
226284 4.3 警告 Matthias Hutterer - Drupal 用 Email Field モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5587 2012-12-28 15:58 2012-11-28 Show GitHub Exploit DB Packet Storm
226285 2.1 注意 Marc Ingram - Drupal 用 Services モジュールにおける任意のユーザの電子メールにアクセスされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-5586 2012-12-28 15:57 2012-11-28 Show GitHub Exploit DB Packet Storm
226286 2.1 注意 Mixpanel Project - Drupal 用 Mixpanel モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5585 2012-12-28 15:50 2012-11-28 Show GitHub Exploit DB Packet Storm
226287 4.3 警告 Made to Order Software - Drupal 用 Table of Contents モジュールにおけるノードのヘッダを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-5584 2012-12-28 15:49 2012-11-14 Show GitHub Exploit DB Packet Storm
226288 6.8 警告 Sensio Labs - Symfony における任意のサービスにアクセスされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-6432 2012-12-28 15:20 2012-12-20 Show GitHub Exploit DB Packet Storm
226289 6.4 警告 Sensio Labs - Symfony における URI の制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-6431 2012-12-28 15:18 2012-12-20 Show GitHub Exploit DB Packet Storm
226290 4.3 警告 Sebastian Heinlein
Canonical		 - Ubuntu の Aptdaemon における任意のパッケージレポジトリの GPG キーをインストールされる脆弱性 CWE-noinfo
情報不足 		CVE-2012-0962 2012-12-28 15:03 2012-12-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2411 9.8 CRITICAL
Network 		- - 1C-Bitrix through 25.100.500 allows Remote Code Execution because an actor with SOURCE/WRITE permissions for the Translate Module can upload and execute code by sending a PHP file and a .htaccess fil… CWE-94
Code Injection 		CVE-2025-67887 2026-05-12 05:25 2026-05-8 Show GitHub Exploit DB Packet Storm
2412 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: validate user queue size constraints Add validation to ensure user queue sizes meet hardware requirements: - Size mus… NVD-CWE-noinfo
CVE-2026-43195 2026-05-12 05:21 2026-05-6 Show GitHub Exploit DB Packet Storm
2413 7.5 HIGH
Network 		- - Alkacon OpenCms before 16 allows XXE when the <!DOCTYPE> refers to an external host. CWE-611
XXE 		CVE-2023-42346 2026-05-12 05:20 2026-05-8 Show GitHub Exploit DB Packet Storm
2414 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: APEI/GHES: ARM processor Error: don't go past allocated memory If the BIOS generates a very small ARM Processor Error, or an inco… NVD-CWE-noinfo
CVE-2026-43201 2026-05-12 05:20 2026-05-6 Show GitHub Exploit DB Packet Storm
2415 7.5 HIGH
Network 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix "scheduling while atomic" in IPsec MAC address query Fix a "scheduling while atomic" bug in mlx5e_ipsec_init_macs(… NVD-CWE-noinfo
CVE-2026-43199 2026-05-12 05:12 2026-05-6 Show GitHub Exploit DB Packet Storm
2416 9.8 CRITICAL
Network 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: tcp: fix potential race in tcp_v6_syn_recv_sock() Code in tcp_v6_syn_recv_sock() after the call to tcp_v4_syn_recv_sock() is done… CWE-362
Race Condition 		CVE-2026-43198 2026-05-12 05:12 2026-05-6 Show GitHub Exploit DB Packet Storm
2417 9.1 CRITICAL
Network 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: netconsole: avoid OOB reads, msg is not nul-terminated msg passed to netconsole from the console subsystem is not guaranteed to b… CWE-125
Out-of-bounds Read 		CVE-2026-43197 2026-05-12 05:11 2026-05-6 Show GitHub Exploit DB Packet Storm
2418 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: soc: ti: pruss: Fix double free in pruss_clk_mux_setup() In the pruss_clk_mux_setup(), the devm_add_action_or_reset() indirectly … CWE-415
 Double Free 		CVE-2026-43196 2026-05-12 05:11 2026-05-6 Show GitHub Exploit DB Packet Storm
2419 7.5 HIGH
Network 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: net: consume xmit errors of GSO frames udpgro_frglist.sh and udpgro_bench.sh are the flakiest tests currently in NIPA. They fail … NVD-CWE-noinfo
CVE-2026-43194 2026-05-12 05:11 2026-05-6 Show GitHub Exploit DB Packet Storm
2420 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: PCI: endpoint: Fix swapped parameters in pci_{primary/secondary}_epc_epf_unlink() functions struct configfs_item_operations callb… NVD-CWE-noinfo
CVE-2026-43200 2026-05-12 05:10 2026-05-6 Show GitHub Exploit DB Packet Storm