Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 23, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
244411 6.8 警告 graphiks - Graphiks MyForum の lecture.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4760 2012-06-26 16:02 2008-10-27 Show GitHub Exploit DB Packet Storm
244412 5 警告 buzzscripts - BuzzyWall の download.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-4759 2012-06-26 16:02 2008-10-27 Show GitHub Exploit DB Packet Storm
244413 7.5 危険 aj square inc - AJ Square RSS Reader の EditUrl.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4753 2012-06-26 16:02 2008-10-27 Show GitHub Exploit DB Packet Storm
244414 4.3 警告 epistream - iPei Guestbook の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4751 2012-06-26 16:02 2008-10-27 Show GitHub Exploit DB Packet Storm
244415 9.3 危険 db soft lab - DB Software Laboratory VImp X におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-4750 2012-06-26 16:02 2008-10-27 Show GitHub Exploit DB Packet Storm
244416 9.3 危険 db soft lab - DB Software Laboratory VImp X の VImpX.ocx における任意のファイルを上書きされる脆弱性 CWE-Other
その他 		CVE-2008-4749 2012-06-26 16:02 2008-10-27 Show GitHub Exploit DB Packet Storm
244417 7.5 危険 dxproscripts - DXShopCart の product_detail.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4744 2012-06-26 16:02 2008-10-27 Show GitHub Exploit DB Packet Storm
244418 5 警告 far-php - FAR-PHP の index.php ファイルにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-4741 2012-06-26 16:02 2008-10-27 Show GitHub Exploit DB Packet Storm
244419 7.5 危険 aves - RPG.Board の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4736 2012-06-26 16:02 2008-10-24 Show GitHub Exploit DB Packet Storm
244420 8.5 危険 coastal - Concord Asset, Software, and Ticket system における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-4735 2012-06-26 16:02 2008-10-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
501 8.0 HIGH
Network 		- - Cross-Site request forgery (CSRF) vulnerability in Sitemio Information Technologies Trade Ltd. Co. WISECP allows Cross Site Request Forgery. This issue affects WISECP: through 20022026. NOTE: The ve… CWE-352
 Origin Validation Error 		CVE-2025-11954 2026-05-20 23:04 2026-05-20 Show GitHub Exploit DB Packet Storm
502 7.8 HIGH
Local 		- - Improper Access Control vulnerability in Mesalvo Meona Client Launcher Component, Mesalvo Meona Server Component enables a normal user gaining access to the admin panel. This issue affects Meona Clie… CWE-284
Improper Access Control 		CVE-2026-0856 2026-05-20 23:03 2026-05-20 Show GitHub Exploit DB Packet Storm
503 6.0 MEDIUM
Local 		- - Cleartext Storage of Sensitive Information in Memory vulnerability in Mesalvo Meona Client Launcher Component, Mesalvo Meona Server Component. This issue affects Meona Client Launcher Component: thr… CWE-316
 Cleartext Storage of Sensitive Information in Memory 		CVE-2026-0857 2026-05-20 23:03 2026-05-20 Show GitHub Exploit DB Packet Storm
504 9.0 CRITICAL
Network 		- - Improper Control of Generation of Code ('Code Injection') vulnerability in Mesalvo Meona Client Launcher Component, Mesalvo Meona Server Component enables code execution on other users' systems. This… CWE-94
Code Injection 		CVE-2026-22314 2026-05-20 23:03 2026-05-20 Show GitHub Exploit DB Packet Storm
505 7.2 HIGH
Network 		- - Incorrect Privilege Assignment vulnerability in Mesalvo Meona Client Launcher Component, Mesalvo Meona Server Component enables the export  of user data, including cleartext passwords, via the SQL ed… CWE-266
 Incorrect Privilege Assignment 		CVE-2026-22315 2026-05-20 23:03 2026-05-20 Show GitHub Exploit DB Packet Storm
506 4.4 MEDIUM
Local 		- - Insufficient Verification of Data Authenticity vulnerability in Mesalvo Meona Client Launcher Component, Mesalvo Meona Server Component makes it possible to send messages to any email address. This i… CWE-345
 Insufficient Verification of Data Authenticity 		CVE-2026-25602 2026-05-20 23:03 2026-05-20 Show GitHub Exploit DB Packet Storm
507 - - - NLnet Labs Unbound 1.6.2 up to and including version 1.25.0 has a denial of service vulnerability when compiled with DNSCrypt support ('--enable-dnscrypt'). A bad DNSCrypt query could underflow Unbou… CWE-125
CWE-166
Out-of-bounds Read
 Improper Handling of Missing Special Element 		CVE-2026-32792 2026-05-20 23:02 2026-05-20 Show GitHub Exploit DB Packet Storm
508 - - - NLnet Labs Unbound 1.19.1 up to and including version 1.25.0 has a vulnerability in the DNSSEC validator that enables denial of service and possible remote code execution as a result of deep copying … CWE-416
CWE-672
 Use After Free
 Operation on a Resource after Expiration or Release 		CVE-2026-33278 2026-05-20 23:02 2026-05-20 Show GitHub Exploit DB Packet Storm
509 - - - NLnet Labs Unbound 1.16.2 up to and including version 1.25.0 has a vulnerability of the 'ghost domain names' family of attacks that could extend the ghost domain window by up to one cached TTL config… CWE-346
 Origin Validation Error 		CVE-2026-40622 2026-05-20 23:02 2026-05-20 Show GitHub Exploit DB Packet Storm
510 - - - NLnet Labs Unbound up to and including version 1.25.0 is vulnerable to a degradation of service attack related to parsing long lists of incoming EDNS options. An adversary sending queries with too ma… CWE-407
CWE-770
 Inefficient Algorithmic Complexity
 Allocation of Resources Without Limits or Throttling 		CVE-2026-41292 2026-05-20 23:02 2026-05-20 Show GitHub Exploit DB Packet Storm