Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 18, 2026, 4:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
231051 7.3 危険 prosysinfo - ProSysInfo TFTP Server TFTPDWIN の tftpd.exe におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-1404 2012-12-20 18:19 2007-03-10 Show GitHub Exploit DB Packet Storm
231052 7.5 危険 rediff - redifftoolbar.dll の Rediff Toolbar ActiveX コントロールにおけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-1402 2012-12-20 18:19 2007-03-10 Show GitHub Exploit DB Packet Storm
231053 6.9 警告 plesh - Plash における任意のコマンドを実行される脆弱性 - CVE-2007-1400 2012-12-20 18:19 2007-03-10 Show GitHub Exploit DB Packet Storm
231054 7.1 危険 Snort.org - Snort の frag3 プリプロセッサにおけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-1398 2012-12-20 18:19 2007-03-10 Show GitHub Exploit DB Packet Storm
231055 4.3 警告 The phpMyAdmin Project - phpMyAdmin の index.php におけるクロスサイトスクリプティング (XSS) 攻撃を実行される脆弱性 - CVE-2007-1395 2012-12-20 18:19 2007-03-10 Show GitHub Exploit DB Packet Storm
231056 10 危険 webo - Leo West WEBO の modules/abook/foldertree.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-1391 2012-12-20 18:19 2007-03-10 Show GitHub Exploit DB Packet Storm
231057 4.3 警告 Snitz - Snitz Forums 2000 の pop_profile.asp におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-1374 2012-12-20 18:19 2007-03-9 Show GitHub Exploit DB Packet Storm
231058 10 危険 Pegasus Mail - Mercury/32 におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2007-1373 2012-12-20 18:19 2007-03-9 Show GitHub Exploit DB Packet Storm
231059 10 危険 postguestbook - PHP-Nuke 用の PostGuestbook モジュールにおける PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-1372 2012-12-20 18:19 2007-03-9 Show GitHub Exploit DB Packet Storm
231060 6.9 警告 Jon Trulson - Conquest におけるバッファオーバーフローの脆弱性 - CVE-2007-1371 2012-12-20 18:19 2007-03-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1101 6.5 MEDIUM
Network 		mongodb mongodb An authenticated user can cause excess memory usage via bitwise match expression AST processing of $bitsAllSet, $bitsAnySet, $bitsAllClear, and $bitsAnyClear. This contributes to memory pressure and … CWE-1325
 Improperly Controlled Sequential Memory Allocation 		CVE-2026-8199 2026-05-14 07:31 2026-05-13 Show GitHub Exploit DB Packet Storm
1102 6.1 MEDIUM
Network 		mediawiki mediawiki Vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files includes/Actions/ActionEntryPoint.Php, includes/Request/FauxResponse.Php. This issue affects … CWE-668
 Exposure of Resource to Wrong Sphere 		CVE-2026-34095 2026-05-14 07:30 2026-05-12 Show GitHub Exploit DB Packet Storm
1103 - - - Rejected reason: This CVE is a duplicate of another CVE. - CVE-2026-40328 2026-05-14 07:16 2026-05-14 Show GitHub Exploit DB Packet Storm
1104 - - - Rejected reason: This CVE is a duplicate of another CVE. - CVE-2026-40327 2026-05-14 07:16 2026-05-14 Show GitHub Exploit DB Packet Storm
1105 8.8 HIGH
Network 		- - Insufficient input validation of the `plugin` parameter of the `create_user` plugin allows arbitrary Perl code execution on behalf of the already authenticated account's system user. CWE-94
Code Injection 		CVE-2026-29202 2026-05-14 07:16 2026-05-9 Show GitHub Exploit DB Packet Storm
1106 4.3 MEDIUM
Network 		- - Insufficient input validation of the feature file name in `feature::LOADFEATUREFILE` adminbin call can cause arbitrary file read when a relative file path is passed. CWE-23
 Relative Path Traversal 		CVE-2026-29201 2026-05-14 07:16 2026-05-9 Show GitHub Exploit DB Packet Storm
1107 7.5 HIGH
Network 		apple ipados
iphone_os
macos
tvos
visionos
watchos 		A validation issue was addressed with improved logic. This issue is fixed in Safari 26.5, iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS 2… CWE-693
 Protection Mechanism Failure 		CVE-2026-43660 2026-05-14 06:16 2026-05-12 Show GitHub Exploit DB Packet Storm
1108 7.5 HIGH
Network 		apple ipados
iphone_os
macos
tvos
visionos
watchos 		The issue was addressed with improved memory handling. This issue is fixed in Safari 26.5, iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS 26.5. Processing maliciously c… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2026-43658 2026-05-14 06:16 2026-05-12 Show GitHub Exploit DB Packet Storm
1109 4.3 MEDIUM
Network 		apple ipados
iphone_os
macos
visionos 		The issue was addressed with improved UI handling. This issue is fixed in Safari 26.5, iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, visionOS 26.5. A malicious iframe may use another website’s download… CWE-1021
 Improper Restriction of Rendered UI Layers or Frames 		CVE-2026-28971 2026-05-14 06:16 2026-05-12 Show GitHub Exploit DB Packet Storm
1110 7.5 HIGH
Network 		apple ipados
iphone_os
macos
visionos 		This issue was addressed with improved access restrictions. This issue is fixed in Safari 26.5, iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, visionOS 26.5. Processing mal… CWE-200
Information Exposure 		CVE-2026-28962 2026-05-14 06:16 2026-05-12 Show GitHub Exploit DB Packet Storm