Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 6, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
250711 6.9 警告 Linux - Linux kernel の asihpi_hpi_ioctl 関数における配列インデックスエラーの脆弱性 CWE-20
不適切な入力確認 		CVE-2011-1169 2012-03-27 18:43 2011-05-3 Show GitHub Exploit DB Packet Storm
250712 4.3 警告 mark pilgrim - Universal Feed Parser の feedparser.py におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-1158 2012-03-27 18:43 2011-02-18 Show GitHub Exploit DB Packet Storm
250713 4.3 警告 mark pilgrim - Universal Feed Parser の feedparser.py におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-1157 2012-03-27 18:43 2011-02-15 Show GitHub Exploit DB Packet Storm
250714 6.8 警告 Digium - 複数の Asterisk 製品におけるスタックベースおよびヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-1147 2012-03-27 18:43 2011-02-21 Show GitHub Exploit DB Packet Storm
250715 3.3 注意 The PHP Group - PEAR のインストーラにおける任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2011-1144 2012-03-27 18:43 2011-03-2 Show GitHub Exploit DB Packet Storm
250716 5 警告 Wireshark - Wireshark の dissect_ber_choice 関数におけるスタック消費の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-1142 2012-03-27 18:43 2011-03-2 Show GitHub Exploit DB Packet Storm
250717 4.3 警告 Wireshark - Wireshark の dissect_6lowpan_iphc 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2011-1138 2012-03-27 18:43 2011-03-1 Show GitHub Exploit DB Packet Storm
250718 5 警告 Simple Machines - SMF の PlushSearch2 関数における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2011-1131 2012-03-27 18:43 2011-02-11 Show GitHub Exploit DB Packet Storm
250719 7.5 危険 Simple Machines - SMF における SQL インジェクション攻撃を誘発する脆弱性 CWE-20
不適切な入力確認 		CVE-2011-1130 2012-03-27 18:43 2011-02-11 Show GitHub Exploit DB Packet Storm
250720 5 警告 mark pilgrim - Universal Feed Parser の feedparser.py におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-1156 2012-03-27 18:43 2008-01-31 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
4061 4.3 MEDIUM
Network 		- - Mattermost versions 11.5.x <= 11.5.1 fail to validate team-level run_create permission against the target team when creating a playbook run which allows an authenticated team member to create runs in… CWE-863
 Incorrect Authorization 		CVE-2026-4055 2026-05-22 00:26 2026-05-21 Show GitHub Exploit DB Packet Storm
4062 6.1 MEDIUM
Network 		- - Mattermost Mobile Apps versions <=2.37 11.4 2.0.37 11.0.4 11.1.3 11.3.2 10.11.11.0 fail to properly validate the SSO authentication callback origin which allows an attacker controlling a malicious Ma… CWE-352
 Origin Validation Error 		CVE-2026-22880 2026-05-22 00:26 2026-05-21 Show GitHub Exploit DB Packet Storm
4063 8.0 HIGH
Network 		- - Mattermost versions 11.6.x <= 11.6.0, 11.5.x <= 11.5.3, 11.4.x <= 11.4.4, 10.11.x <= 10.11.14 fail to check integration URL for path traversal which allows an malicious authenticated user to call an… CWE-22
Path Traversal 		CVE-2026-4858 2026-05-22 00:26 2026-05-21 Show GitHub Exploit DB Packet Storm
4064 8.4 HIGH
Network 		- - Zohocorp ManageEngine ADSelfService Plus version before 6525, DataSecurity Plus before 6264 and RecoveryManager Plus before 6313 are vulnerable to Authenticated Remote code execution in the agent mac… CWE-77
Command Injection 		CVE-2026-2740 2026-05-22 00:26 2026-05-21 Show GitHub Exploit DB Packet Storm
4065 7.1 HIGH
Network 		- - Exposure of private personal information to an unauthorized actor, Insufficiently Protected Credentials vulnerability in Digital Operations Services Inc. WifiBurada allows Authentication Bypass. Thi… CWE-359
CWE-522
 Exposure of Private Personal Information to an Unauthorized Actor
 Insufficiently Protected Credentials 		CVE-2025-13477 2026-05-22 00:24 2026-05-21 Show GitHub Exploit DB Packet Storm
4066 7.5 HIGH
Network 		- - Authorization bypass through User-Controlled key vulnerability in PosCube Hardware Software and Consulting Ltd. QR Menu allows Exploitation of Trusted Identifiers. This issue affects QR Menu: throug… CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2025-13479 2026-05-22 00:24 2026-05-21 Show GitHub Exploit DB Packet Storm
4067 5.7 MEDIUM
Network 		- - Insufficient session expiration vulnerability in Turkiye Electricity Transmission Corporation (TEİAŞ) Mobile Application allows Session Hijacking. This issue affects Mobile Application: from 1.6.2 b… CWE-613
 Insufficient Session Expiration 		CVE-2026-1815 2026-05-22 00:24 2026-05-22 Show GitHub Exploit DB Packet Storm
4068 6.3 MEDIUM
Network 		- - Improper restriction of excessive authentication attempts vulnerability in Turkiye Electricity Transmission Corporation (TEİAŞ) Mobile Application allows Brute Force. This issue affects Mobile Appli… CWE-307
mproper Restriction of Excessive Authentication Attempts 		CVE-2026-1816 2026-05-22 00:24 2026-05-22 Show GitHub Exploit DB Packet Storm
4069 5.3 MEDIUM
Network 		isc bind An unbounded resend loop vulnerability exists in the BIND 9 resolver state machine during bad-server handling, enabling a remote unauthenticated attacker to cause severe resource exhaustion by sendin… CWE-606
 Unchecked Input for Loop Condition 		CVE-2026-5950 2026-05-22 00:24 2026-05-20 Show GitHub Exploit DB Packet Storm
4070 5.9 MEDIUM
Network 		isc bind Undefined behavior may result due to a race condition leading to a use-after-free violation. If BIND receives an incoming DNS message signed with SIG(0), it begins work to validate that signature. … CWE-362
CWE-416
Race Condition
 Use After Free 		CVE-2026-5947 2026-05-22 00:24 2026-05-20 Show GitHub Exploit DB Packet Storm