Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252401 7.5 危険 RADVISION - RADVISION iVIEW Suite における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-1328 2011-05-19 12:01 2011-05-19 Show GitHub Exploit DB Packet Storm
252402 10 危険 シスコシステムズ - Cisco IOS の PKI 機能における認証を回避される脆弱性 CWE-310
暗号の問題 		CVE-2011-0935 2011-05-19 11:10 2011-04-14 Show GitHub Exploit DB Packet Storm
252403 7.2 危険 IBM - IBM Lotus Domino のサーバコンソールにおける重要な情報を取得される脆弱性 CWE-287
不適切な認証 		CVE-2011-1520 2011-05-19 11:08 2011-03-25 Show GitHub Exploit DB Packet Storm
252404 10 危険 IBM - IBM Lotus Domino の リモートコンソールにおける認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2011-1519 2011-05-19 11:06 2011-03-25 Show GitHub Exploit DB Packet Storm
252405 4.3 警告 Apache Software Foundation
Steinar H. Gunderson		 - Steinar H. Gunderson mpm-itk Multi-Processing Module における権限を取得される脆弱性 CWE-16
環境設定 		CVE-2011-1176 2011-05-19 11:04 2011-03-29 Show GitHub Exploit DB Packet Storm
252406 4.9 警告 IBM
Apache Software Foundation
アップル
サイバートラスト株式会社
ヒューレット・パッカード
ターボリナックス
オラクル
レッドハット		 - Apache HTTP Server における AllowOverride ディレクティブの処理に関する権限昇格の脆弱性 CWE-16
環境設定 		CVE-2009-1195 2011-05-19 09:46 2009-05-28 Show GitHub Exploit DB Packet Storm
252407 4.3 警告 KDE project
レッドハット		 - KDE SC の Konqueror 内にある KHTMLPart::htmlError 関数におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-1168 2011-05-18 18:30 2011-04-21 Show GitHub Exploit DB Packet Storm
252408 4.3 警告 KDE project
レッドハット		 - kdelibs の kio/kio/tcpslavebase.cpp における任意の SSL サーバになりすまされる脆弱性 CWE-20
不適切な入力確認 		CVE-2011-1094 2011-05-18 18:26 2011-04-21 Show GitHub Exploit DB Packet Storm
252409 5.8 警告 KDE project
レッドハット		 - KDE SC の KGet 内にある KGetMetalink::File::isValidNameAttr 関数におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2011-1586 2011-05-18 18:25 2011-04-21 Show GitHub Exploit DB Packet Storm
252410 9.3 危険 アドビシステムズ - 複数の Adobe 製品の CoolType ライブラリにおける任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2011-0610 2011-05-18 18:24 2011-04-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2741 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix mechToken leak when SPNEGO decode fails after token alloc The kernel ASN.1 BER decoder calls action callbacks incremen… CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2026-31610 2026-04-30 01:51 2026-04-25 Show GitHub Exploit DB Packet Storm
2742 9.8 CRITICAL
Network 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: smb: client: avoid double-free in smbd_free_send_io() after smbd_send_batch_flush() smbd_send_batch_flush() already calls smbd_fr… CWE-415
 Double Free 		CVE-2026-31609 2026-04-30 01:45 2026-04-25 Show GitHub Exploit DB Packet Storm
2743 3.5 LOW
Network 		- - A vulnerability was detected in SourceCodester Pharmacy Sales and Inventory System 1.0. The impacted element is the function Customer of the file /index.php?page=customer. The manipulation of the arg… CWE-79
CWE-94
Cross-site Scripting
Code Injection 		CVE-2026-7390 2026-04-30 01:16 2026-04-30 Show GitHub Exploit DB Packet Storm
2744 7.3 HIGH
Network 		- - A security vulnerability has been detected in EyouCMS up to 1.7.9. The affected element is the function GetSortData of the file application/common.php. The manipulation of the argument sort_asc leads… CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-7389 2026-04-30 01:16 2026-04-30 Show GitHub Exploit DB Packet Storm
2745 4.7 MEDIUM
Network 		- - A weakness has been identified in EyouCMS up to 1.7.9. Impacted is the function editFile of the file application/admin/logic/FilemanagerLogic.php of the component Template File Handler. Executing a m… CWE-74
CWE-94
Injection
Code Injection 		CVE-2026-7388 2026-04-30 01:16 2026-04-30 Show GitHub Exploit DB Packet Storm
2746 7.3 HIGH
Network 		- - A flaw has been found in fatbobman mail-mcp-bridge up to 1.3.3. Affected is an unknown function of the file src/mail_mcp_server.py. Executing a manipulation of the argument message_ids can lead to pa… CWE-22
Path Traversal 		CVE-2026-7386 2026-04-30 01:16 2026-04-30 Show GitHub Exploit DB Packet Storm
2747 8.8 HIGH
Network 		- - Improper neutralization of special elements used in an OS command ('OS command injection') vulnerability in TUBITAK BILGEM Software Technologies Research Institute Pardus OS My Computer allows OS Com… CWE-78
OS Command  		CVE-2026-6849 2026-04-30 01:16 2026-04-30 Show GitHub Exploit DB Packet Storm
2748 - - - http.cookies.Morsel.js_output() returns an inline <script> snippet and only escapes " for JavaScript string context. It does not neutralize the HTML parser-sensitive sequence </script> inside the gen… CWE-150
 Improper Neutralization of Escape, Meta, or Control Sequences 		CVE-2026-6019 2026-04-30 01:16 2026-04-23 Show GitHub Exploit DB Packet Storm
2749 8.8 HIGH
Network 		- - Improper Privilege Management, Improper Access Control, Incorrect privilege assignment vulnerability in TUBITAK BILGEM Software Technologies Research Institute Pardus Software Center allows Hijacking… CWE-266
CWE-269
CWE-284
 Incorrect Privilege Assignment
 Improper Privilege Management
Improper Access Control 		CVE-2026-5141 2026-04-30 01:16 2026-04-30 Show GitHub Exploit DB Packet Storm
2750 - - - If `shutil.unpack_archive()` is given a ZIP archive with an absolute Windows path containing a drive (`C:\\...`) then the archive will be extracted outside the target directory which is different tha… CWE-22
Path Traversal 		CVE-2026-3087 2026-04-30 01:16 2026-04-28 Show GitHub Exploit DB Packet Storm