Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 23, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
246351 7.8 危険 EdrawSoft - edrawofficeviewer.ocx の特定の ActiveX コントロールにおける任意のファイルを削除される脆弱性 CWE-DesignError
CVE-2007-3168 2012-06-26 15:46 2007-06-11 Show GitHub Exploit DB Packet Storm
246352 5 警告 frederico caldeira knabben - Frederico Caldeira Knabben FCKeditor の filemanager における任意の .php ファイルをアップロードされる脆弱性 - CVE-2007-3163 2012-06-26 15:46 2007-06-11 Show GitHub Exploit DB Packet Storm
246353 10 危険 EGroupware - eGroupWare における詳細不明な脆弱性 - CVE-2007-3155 2012-06-26 15:46 2007-06-11 Show GitHub Exploit DB Packet Storm
246354 10 危険 EGroupware - eGroupWare で使用される Walter Zorn wz_tooltip.js における詳細不明な脆弱性 - CVE-2007-3154 2012-06-26 15:46 2007-06-11 Show GitHub Exploit DB Packet Storm
246355 5 警告 Haxx - Windows 以外のプラットフォームで稼動する c-ares の ares_init:randomize_key 関数における DNS レスポンスを偽装される脆弱性 - CVE-2007-3153 2012-06-26 15:46 2007-06-11 Show GitHub Exploit DB Packet Storm
246356 7.5 危険 Haxx - c-ares における DNS レスポンスを偽装される脆弱性 - CVE-2007-3152 2012-06-26 15:46 2007-06-11 Show GitHub Exploit DB Packet Storm
246357 9.3 危険 Google - Google Desktop における任意のプログラムを実行される脆弱性 - CVE-2007-3150 2012-06-26 15:46 2007-06-11 Show GitHub Exploit DB Packet Storm
246358 5.8 警告 galeon - Galeon におけるフィッシング攻撃の脆弱性 - CVE-2007-3145 2012-06-26 15:46 2007-06-11 Show GitHub Exploit DB Packet Storm
246359 4.3 警告 atom - Atom Photoblog の atomPhotoBlog.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-3135 2012-06-26 15:46 2007-06-8 Show GitHub Exploit DB Packet Storm
246360 4.3 警告 atom - Atom PhotoBlog の atomPhotoBlog.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-3134 2012-06-26 15:46 2007-06-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
201 - - - A vulnerability was identified in the ShadowAttribute proposal creation workflow. The add action accepted user-controlled ShadowAttribute request data without removing the id field before saving the … New CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2026-9136 2026-05-22 01:04 2026-05-21 Show GitHub Exploit DB Packet Storm
202 - - - The CSP report endpoint intended to limit logged CSP reports to 1 KB but incorrectly allowed reports up to 1 MB before truncation. On deployments where the endpoint is reachable by untrusted clients,… New CWE-400
 Uncontrolled Resource Consumption 		CVE-2026-9137 2026-05-22 01:04 2026-05-21 Show GitHub Exploit DB Packet Storm
203 - - - The affected product may expose credentials remotely between low privileged visualization users during concurrent login operations due to insufficient isolation of authentication data. The vulnerabil… New CWE-522
 Insufficiently Protected Credentials 		CVE-2026-0393 2026-05-22 01:04 2026-05-21 Show GitHub Exploit DB Packet Storm
204 - - - Request Tracker is vulnerable to a reflected cross-site scripting (XSS) vulnerability via the "Page" parameter in GET requests. An attacker can craft a URL that, when opened, results in arbitrary Jav… New CWE-79
Cross-site Scripting 		CVE-2026-6841 2026-05-22 01:04 2026-05-21 Show GitHub Exploit DB Packet Storm
205 4.8 MEDIUM
Network 		- - Incorrect Behaviour of Views with TCP PROXY Requests New CWE-284
Improper Access Control 		CVE-2026-41999 2026-05-22 00:27 2026-05-21 Show GitHub Exploit DB Packet Storm
206 6.8 MEDIUM
Network 		- - Insufficient Validation of Names During AXFR New CWE-77
Command Injection 		CVE-2026-42000 2026-05-22 00:27 2026-05-21 Show GitHub Exploit DB Packet Storm
207 7.5 HIGH
Network 		- - Insufficient Validation of Autoprimary SOA Queries New CWE-400
 Uncontrolled Resource Consumption 		CVE-2026-42001 2026-05-22 00:27 2026-05-21 Show GitHub Exploit DB Packet Storm
208 5.9 MEDIUM
Network 		- - Concurrency and locking defects in GSS-TSIG New CWE-364
 Signal Handler Race Condition 		CVE-2026-42002 2026-05-22 00:27 2026-05-21 Show GitHub Exploit DB Packet Storm
209 4.9 MEDIUM
Network 		- - Insufficient Validation of Member Zone Data May Cause Catalog Zone Transfer to Fail New CWE-94
Code Injection 		CVE-2026-42396 2026-05-22 00:27 2026-05-21 Show GitHub Exploit DB Packet Storm
210 8.2 HIGH
Network 		- - NVIDIA TensorRT contains a vulnerability where an attacker could cause an out-of-bounds write. A successful exploit of this vulnerability might lead to data tampering. New CWE-787
 Out-of-bounds Write 		CVE-2026-24188 2026-05-22 00:26 2026-05-21 Show GitHub Exploit DB Packet Storm