Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
249821	7.5	危険	UMN	-	MapServer における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-2703	2012-03-27 18:43	2011-08-1	Show	GitHub Exploit DB Packet Storm

249822	5.8	警告	FreeRADIUS	-	FreeRADIUS の ocsp_check 関数における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2011-2701	2012-03-27 18:43	2011-08-3	Show	GitHub Exploit DB Packet Storm

249823	2.1	注意	Linux	-	Linux kernel の si4713_write_econtrol_string 関数におけるバッファーオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-2700	2012-03-27 18:43	2011-09-6	Show	GitHub Exploit DB Packet Storm

249824	4.3	警告	Wireshark	-	Wireshark の elem_cell_id_aux 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-189 数値処理の問題	CVE-2011-2698	2012-03-27 18:43	2011-07-18	Show	GitHub Exploit DB Packet Storm

249825	4.9	警告	Linux	-	Linux kernel の ext4 サブシステムにおけるサービス運用妨害 (DoS) 脆弱性	CWE-189 数値処理の問題	CVE-2011-2695	2012-03-27 18:43	2011-07-28	Show	GitHub Exploit DB Packet Storm

249826	7.5	危険	jan wolter	-	Apache HTTP Server の mod_authnz_external モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-2688	2012-03-27 18:43	2011-07-28	Show	GitHub Exploit DB Packet Storm

249827	7.5	危険	Drupal	-	Drupal における node_access の制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-2687	2012-03-27 18:43	2011-06-30	Show	GitHub Exploit DB Packet Storm

249828	5	警告	Ruby-lang.org	-	Ruby における乱数の値を推測される脆弱性	CWE-310 暗号の問題	CVE-2011-2686	2012-03-27 18:43	2011-08-5	Show	GitHub Exploit DB Packet Storm

249829	9.3	危険	The Document Foundation	-	LibreOffice の Lotus Word Pro インポートフィルタにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-2685	2012-03-27 18:43	2011-07-21	Show	GitHub Exploit DB Packet Storm

249830	4	警告	IBM	-	IBM Rational DOORS Web Access の Login コンポーネントにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-2682	2012-03-27 18:43	2011-05-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
3051	6.3	MEDIUM Adjacent	-	-	There is an unauthorized access vulnerability in ZTE MU5250. Due to improper permission control of the Web interface, an unauthorized attacker can modify configuration through the interface.	CWE-200 Information Exposure	CVE-2026-44408	2026-05-19 23:50	2026-05-19	Show	GitHub Exploit DB Packet Storm

3052	4.3	MEDIUM Network	-	-	Missing Authorization vulnerability in Brainstorm Force Presto Player allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Presto Player: from n/a through 4.1.…	CWE-862 Missing Authorization	CVE-2026-45442	2026-05-19 23:50	2026-05-19	Show	GitHub Exploit DB Packet Storm

3053	5.3	MEDIUM Network	google	chrome	Out of bounds read in UI in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory vi…	CWE-125 Out-of-bounds Read	CVE-2026-8541	2026-05-19 23:47	2026-05-15	Show	GitHub Exploit DB Packet Storm

3054	-		-	-	The create and edit flows do not restrict which user properties may be submitted and do not enforce access control on the frontend user group assignment. As a result, an attacker can assign an arbitr…	CWE-639 CWE-915 Authorization Bypass Through User-Controlled Key Improperly Controlled Modification of Dynamically-Determined Object Attributes	CVE-2026-46721	2026-05-19 23:47	2026-05-19	Show	GitHub Exploit DB Packet Storm

3055	-		-	-	The OOXML parsing of the file indexer does not disable external entity resolution. A crafted xlsx or pptx document placed in an indexed directory can cause local files to be read or outbound HTTP req…	CWE-611 XXE	CVE-2026-46722	2026-05-19 23:47	2026-05-19	Show	GitHub Exploit DB Packet Storm

3056	-		-	-	The additional_tables configuration of the page and tt_content indexers accepts arbitrary table and field names. A backend user with permission to edit indexer configurations can copy sensitive data …	CWE-668 Exposure of Resource to Wrong Sphere	CVE-2026-46723	2026-05-19 23:47	2026-05-19	Show	GitHub Exploit DB Packet Storm

3057	-		-	-	The file indexer does not normalize the configured directory path. A backend user with permission to edit indexer configurations can index documents from arbitrary locations on the server file system…	CWE-22 Path Traversal	CVE-2026-46724	2026-05-19 23:47	2026-05-19	Show	GitHub Exploit DB Packet Storm

3058	-		-	-	The extension passes an attacker-controlled cookie directly to PHP's unserialize() without safely processing the input. A remote, unauthenticated attacker can supply a crafted serialized payload to t…	CWE-502 Deserialization of Untrusted Data	CVE-2026-46725	2026-05-19 23:47	2026-05-19	Show	GitHub Exploit DB Packet Storm

3059	-		-	-	The extension fails to properly sanitize user input before using it in a database query. As a result, an unauthenticated attacker can inject arbitrary SQL through a URL parameter on pages using the "…	CWE-89 SQL Injection	CVE-2026-8726	2026-05-19 23:47	2026-05-19	Show	GitHub Exploit DB Packet Storm

3060	-		-	-	The Crawler extension passes the X-T3Crawler-Meta response header from crawled URLs directly to PHP's unserialize(). An attacker controlling a crawled endpoint can inject arbitrary serialized PHP obj…	CWE-502 Deserialization of Untrusted Data	CVE-2026-8727	2026-05-19 23:47	2026-05-19	Show	GitHub Exploit DB Packet Storm