Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
231081 7.5 危険 yenerturk - YenerTurk Haber Script の default.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2006-4064 2012-12-20 18:02 2006-08-9 Show GitHub Exploit DB Packet Storm
231082 7.5 危険 web-scripts - Visual Events Calendar の calendar.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4060 2012-12-20 18:02 2006-08-9 Show GitHub Exploit DB Packet Storm
231083 7.5 危険 usolved - USOLVED NEWSolved Lite における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4059 2012-12-20 18:02 2006-08-9 Show GitHub Exploit DB Packet Storm
231084 6.8 警告 simplog - Simpliciti Locked Browser におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-4058 2012-12-20 18:02 2006-08-9 Show GitHub Exploit DB Packet Storm
231085 7.5 危険 the address book reloaded
the address book		 - katzlbt Address Book などの認証プロセスにおける SQL インジェクションの脆弱性 - CVE-2006-4056 2012-12-20 18:02 2006-08-9 Show GitHub Exploit DB Packet Storm
231086 7.5 危険 tsep - Olaf Noehring TSEP における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4055 2012-12-20 18:02 2006-08-9 Show GitHub Exploit DB Packet Storm
231087 7.5 危険 turnkey web tools - Turnkey Web Tools PHP Simple Shop における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4052 2012-12-20 18:02 2006-08-9 Show GitHub Exploit DB Packet Storm
231088 7.5 危険 turnkey web tools - Turnkey Web Tools PHP Live Helper の global.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4051 2012-12-20 18:02 2006-08-9 Show GitHub Exploit DB Packet Storm
231089 2.1 注意 サン・マイクロシステムズ - Sun Ray Server Software のユーティリティ utxconfig における任意のファイルを上書きされる脆弱性 - CVE-2006-4049 2012-12-20 18:02 2006-07-7 Show GitHub Exploit DB Packet Storm
231090 7.5 危険 torbstoff - Torbstoff News の news.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4045 2012-12-20 18:02 2006-08-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
321 - - - Integer overflow in the UEFI firmware for the Slim Bootloader may allow an escalation of privilege. System software adversary with a privileged user combined with a low complexity attack may enable l… New CWE-190
 Integer Overflow or Wraparound 		CVE-2026-20753 2026-05-13 02:16 2026-05-13 Show GitHub Exploit DB Packet Storm
322 - - - Out-of-bounds read for the Intel(R) Data Center Graphics Driver for VMware ESXi software before version 2.0.2 within Ring 1: Device Drivers may allow a denial of service. System software adversary wi… New CWE-125
Out-of-bounds Read 		CVE-2026-20751 2026-05-13 02:16 2026-05-13 Show GitHub Exploit DB Packet Storm
323 - - - Untrusted pointer dereference for some Intel(R) QuickAssist Adapter 8960 software before version 1.13 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adve… New CWE-822
 Untrusted Pointer Dereference 		CVE-2026-20738 2026-05-13 02:16 2026-05-13 Show GitHub Exploit DB Packet Storm
324 - - - Incorrect default permissions for some Intel(R) NPU Driver software installers before version 32.0.100.4511 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged softwar… New CWE-276
Incorrect Default Permissions  		CVE-2026-20718 2026-05-13 02:16 2026-05-13 Show GitHub Exploit DB Packet Storm
325 - - - Improper input validation for some Intel(R) QAT software drivers for Windows before version 1.13 within Ring 3: User Applications may allow a denial of service. Unprivileged software adversary with a… New CWE-20
 Improper Input Validation  		CVE-2026-20717 2026-05-13 02:16 2026-05-13 Show GitHub Exploit DB Packet Storm
326 - - - An issue in Open Source Kubectl MCP Server v1.1.1 allows attackers to execute arbitrary code on a victim system via user interaction with a crafted HTML page. New - CVE-2025-65719 2026-05-13 02:16 2026-05-13 Show GitHub Exploit DB Packet Storm
327 - - - Uncontrolled search path for some AI Playground software before version 3.0.0 alpha within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an auth… New CWE-427
 Uncontrolled Search Path Element 		CVE-2025-36515 2026-05-13 02:16 2026-05-13 Show GitHub Exploit DB Packet Storm
328 - - - Improper buffer restrictions for some Display Virtualization for Windows OS driver software within Ring 2: Device Drivers may allow a denial of service. Unprivileged software adversary with an authen… New CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2025-36510 2026-05-13 02:16 2026-05-13 Show GitHub Exploit DB Packet Storm
329 - - - Improper initialization in the UEFI firmware for some Intel platforms within Ring 0: Bare Metal OS may allow an information disclosure. System software adversary with a privileged user combined with … New CWE-665
 Improper Initialization 		CVE-2025-35991 2026-05-13 02:16 2026-05-13 Show GitHub Exploit DB Packet Storm
330 - - - Improper input validation for some Intel Endpoint Management Assistant (EMA) software before version 1.14.5 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged softwar… New CWE-20
 Improper Input Validation  		CVE-2025-35990 2026-05-13 02:16 2026-05-13 Show GitHub Exploit DB Packet Storm