Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 14, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227351 6.5 警告 zeeways - Zeeways ZEEJOBSITE の editresume_next.php における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-6913 2012-12-20 19:10 2009-08-7 Show GitHub Exploit DB Packet Storm
227352 7.5 危険 zeeways - Zeeways SHAADICLONE における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2008-6912 2012-12-20 19:10 2009-08-7 Show GitHub Exploit DB Packet Storm
227353 10 危険 ソフォス - Linux 用の Sophos SAVScan におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2008-6904 2012-12-20 19:10 2009-08-5 Show GitHub Exploit DB Packet Storm
227354 4.3 警告 ソフォス - Sophos Anti-Virus などにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-6903 2012-12-20 19:10 2009-08-5 Show GitHub Exploit DB Packet Storm
227355 9.3 危険 SaschArt - SaschArt SasCam Webcam Server 用の ActiveX コントロールにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-6898 2012-12-20 19:10 2009-08-5 Show GitHub Exploit DB Packet Storm
227356 4.3 警告 PreProject.com - Pre Classified Listings の signup.asp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6888 2012-12-20 19:10 2009-08-3 Show GitHub Exploit DB Packet Storm
227357 7.5 危険 PreProject.com - Pre Classified Listings の detailad.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6887 2012-12-20 19:10 2009-08-3 Show GitHub Exploit DB Packet Storm
227358 5 警告 RSAセキュリティ - RSA EnVision における管理者のパスワードハッシュを取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-6886 2012-12-20 19:10 2009-08-3 Show GitHub Exploit DB Packet Storm
227359 7.5 危険 scripts-for-sites - SFS EZ Career の content.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6867 2012-12-20 19:10 2009-07-14 Show GitHub Exploit DB Packet Storm
227360 7.5 危険 PHPNUKE - PHP-Nuke 用の Current_Issue モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6866 2012-12-20 19:10 2009-07-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 14, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2911 7.1 HIGH
Local 		opencascade open_cascade_technology Two heap-based out-of-bounds read vulnerabilities in the STL ASCII file parser in Open CASCADE Technology (OCCT) V8_0_0_rc5 exist in RWStl_Reader::ReadAscii because buffers returned by Standard_ReadL… CWE-125
Out-of-bounds Read 		CVE-2026-42476 2026-05-2 02:47 2026-05-2 Show GitHub Exploit DB Packet Storm
2912 9.8 CRITICAL
Network 		hashcat hashcat A heap-based buffer overflow in hex_to_binary in the PKZIP hash parser in hashcat v7.1.2 allows an attacker to cause a denial of service or possibly execute arbitrary code via a crafted PKZIP hash fi… CWE-787
 Out-of-bounds Write 		CVE-2026-42484 2026-05-2 02:45 2026-05-1 Show GitHub Exploit DB Packet Storm
2913 10.0 CRITICAL
Network 		traefik traefik Traefik is an HTTP reverse proxy and load balancer. Prior to versions 2.11.43, 3.6.14, and 3.7.0-rc.2, there is an authentication bypass vulnerability in Traefik's ForwardAuth middleware when trustFo… CWE-345
 Insufficient Verification of Data Authenticity 		CVE-2026-35051 2026-05-2 02:45 2026-05-1 Show GitHub Exploit DB Packet Storm
2914 9.8 CRITICAL
Network 		hashcat hashcat A stack-based buffer overflow in mangle_to_hex_lower() and mangle_to_hex_upper() in src/rp_cpu.c in hashcat v7.1.2 allows an attacker to cause a denial of service or possibly execute arbitrary code v… CWE-787
 Out-of-bounds Write 		CVE-2026-42482 2026-05-2 02:45 2026-05-1 Show GitHub Exploit DB Packet Storm
2915 10.0 CRITICAL
Network 		traefik traefik Traefik is an HTTP reverse proxy and load balancer. Prior to versions 2.11.43, 3.6.14, and 3.7.0-rc.2, there is a high severity authentication bypass vulnerability in Traefik's ForwardAuth and snippe… CWE-290
CWE-306
 Authentication Bypass by Spoofing
Missing Authentication for Critical Function 		CVE-2026-39858 2026-05-2 02:44 2026-05-1 Show GitHub Exploit DB Packet Storm
2916 5.3 MEDIUM
Network 		exim exim In Exim before 4.99.2, when utf8 operators are enabled, there is an out-of-bounds read if large UTF-8 trailing characters are present (malformed UTF-8 header data). Information might be divulged with… CWE-125
Out-of-bounds Read 		CVE-2026-40686 2026-05-2 02:44 2026-05-1 Show GitHub Exploit DB Packet Storm
2917 8.2 HIGH
Network 		traefik traefik Traefik is an HTTP reverse proxy and load balancer. Prior to versions 2.11.43, 3.6.14, and 3.7.0-rc.2, there is a high severity authentication bypass vulnerability in Traefik's StripPrefixRegex middl… CWE-706
 Use of Incorrectly-Resolved Name or Reference 		CVE-2026-40912 2026-05-2 02:42 2026-05-1 Show GitHub Exploit DB Packet Storm
2918 7.1 HIGH
Network 		dell idrac10_firmware Dell iDRAC10, versions 1.20.70.50 and 1.30.05.10, contains an Insufficiently Protected Credentials vulnerability. A race condition vulnerability exists that could allow an authenticated low‑privilege… CWE-522
 Insufficiently Protected Credentials 		CVE-2026-35155 2026-05-2 02:40 2026-04-29 Show GitHub Exploit DB Packet Storm
2919 6.1 MEDIUM
Network 		wso2 identity_server The authentication endpoint accepts user-supplied input without enforcing expected validation constraints, leading to a lack of proper output encoding. This allows for the injection of malicious Java… CWE-79
Cross-site Scripting 		CVE-2025-10503 2026-05-2 02:40 2026-04-29 Show GitHub Exploit DB Packet Storm
2920 6.4 MEDIUM
Network 		traefik traefik Traefik is an HTTP reverse proxy and load balancer. Prior to versions 2.11.43, 3.6.14, and 3.7.0-rc.2, there is a potential vulnerability in Traefik's Kubernetes CRD provider cross-namespace isolatio… CWE-653
CWE-863
 Improper Isolation or Compartmentalization
 Incorrect Authorization 		CVE-2026-41174 2026-05-2 02:39 2026-05-1 Show GitHub Exploit DB Packet Storm