Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 24, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2901	8.2	重要 Network	libssh レッドハット	Red Hat OpenShift Container Platform Red Hat Enterprise Linux libssh Red Hat Hardened Images	libssh等の複数ベンダの製品におけるバッファアンダーフローの脆弱性	CWE-124 バッファアンダーフロー	CVE-2026-0966	2026-05-1 10:49	2026-03-26	Show	GitHub Exploit DB Packet Storm

2902	5.3	警告 Network	wolfSSL Inc.	wolfSSL	wolfSSL Inc.のwolfSSLにおける整数アンダーフローの脆弱性	CWE-191 整数アンダーフロー	CVE-2026-1005	2026-05-1 10:49	2026-03-19	Show	GitHub Exploit DB Packet Storm

2903	7.8	重要 Local	マイクロソフト	Microsoft 365 Apps Office Long Term Servicing Channel (LTSC)	Microsoft Word のリモートでコードが実行される脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-23657	2026-05-1 10:49	2026-04-14	Show	GitHub Exploit DB Packet Storm

2904	7.5	重要 Network	wolfSSL Inc.	wolfSSL	wolfSSL Inc.のwolfSSLにおけるセキュリティチェックに関する脆弱性	CWE-358 不適切に実装されたセキュリティチェック	CVE-2026-2645	2026-05-1 10:48	2026-03-19	Show	GitHub Exploit DB Packet Storm

2905	8.1	重要 Network	wolfSSL Inc.	wolfSSL	wolfSSL Inc.のwolfSSLにおける複数の脆弱性	CWE-122 CWE-787	CVE-2026-2646	2026-05-1 10:48	2026-03-19	Show	GitHub Exploit DB Packet Storm

2906	7.5	重要 Network	Linux	Linux Kernel	LinuxのLinux Kernelにおけるリソースのロックに関する脆弱性	CWE-667 不適切なロック	CVE-2026-31598	2026-05-1 10:48	2026-04-24	Show	GitHub Exploit DB Packet Storm

2907	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux KernelにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-31599	2026-05-1 10:48	2026-04-24	Show	GitHub Exploit DB Packet Storm

2908	7.5	重要 Network	Linux	Linux Kernel	LinuxのLinux KernelにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-31600	2026-05-1 10:48	2026-04-24	Show	GitHub Exploit DB Packet Storm

2909	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-31601	2026-05-1 10:48	2026-04-24	Show	GitHub Exploit DB Packet Storm

2910	7.8	重要 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-31602	2026-05-1 10:48	2026-04-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
316701	-	invision_power_services	invision_power_board	Multiple SQL injection vulnerabilities in Invision Power Board (IPB) 1.x and 2.x allow remote attackers to execute arbitrary SQL commands via the (1) idcat and (2) code parameters in a ketqua action …	NVD-CWE-Other	CVE-2006-3543	2024-08-8 04:15	2006-07-13	Show	GitHub Exploit DB Packet Storm

316702	-	invision_power_services	invision_board	Multiple SQL injection vulnerabilities in Invision Power Board (IPB) 1.3 Final allow remote attackers to execute arbitrary SQL commands via the CODE parameter in a (1) Stats, (2) Mail, and (3) Reg ac…	NVD-CWE-Other	CVE-2006-3544	2024-08-8 04:15	2006-07-13	Show	GitHub Exploit DB Packet Storm

316703	-	microsoft	internet_explorer	Microsoft Internet Explorer 7.0 Beta allows remote attackers to cause a denial of service (application crash) via a web page with multiple empty APPLET start tags. NOTE: a third party has disputed t…	NVD-CWE-Other	CVE-2006-3545	2024-08-8 04:15	2006-07-13	Show	GitHub Exploit DB Packet Storm

316704	-	vmware	player	EMC VMware Player allows user-assisted attackers to cause a denial of service (unrecoverable application failure) via a long value of the ide1:0.fileName parameter in the .vmx file of a virtual machi…	NVD-CWE-Other	CVE-2006-3547	2024-08-8 04:15	2006-07-13	Show	GitHub Exploit DB Packet Storm

316705	-	tor	tor	Tor before 0.1.1.20 kills the circuit when it receives an unrecognized relay command, which causes network circuits to be disbanded. NOTE: while this item is listed under the "Security fixes" sectio…	NVD-CWE-Other	CVE-2006-3416	2024-08-8 04:15	2006-07-7	Show	GitHub Exploit DB Packet Storm

316706	-	jelsoft	vbulletin	Cross-site scripting (XSS) vulnerability in member.php in vBulletin 3.5.x allows remote attackers to inject arbitrary web script or HTML via the u parameter. NOTE: the vendor has disputed this repor…	NVD-CWE-Other	CVE-2006-3253	2024-08-8 04:15	2006-06-28	Show	GitHub Exploit DB Packet Storm

316707	-	microsoft	windows_xp	The Task scheduler (at.exe) on Microsoft Windows XP spawns each scheduled process with SYSTEM permissions, which allows local users to gain privileges. NOTE: this issue has been disputed by third pa…	NVD-CWE-Other	CVE-2006-3209	2024-08-8 04:15	2006-06-24	Show	GitHub Exploit DB Packet Storm

316708	-	mysql oracle	mysql	Off-by-one buffer overflow in the Instance_options::complete_initialization function in instance_options.cc in the Instance Manager in MySQL before 5.0.23 and 5.1 before 5.1.12 might allow local user…	CWE-189 Numeric Errors	CVE-2006-3486	2024-08-8 04:15	2006-07-11	Show	GitHub Exploit DB Packet Storm

316709	-	mozilla	firefox	Cross-domain vulnerability in Mozilla Firefox allows remote attackers to access restricted information from other domains via an object tag with a data parameter that references a link on the attacke…	NVD-CWE-Other	CVE-2006-3352	2024-08-8 04:15	2006-07-6	Show	GitHub Exploit DB Packet Storm

316710	-	phorum	phorum	SQL injection vulnerability in search.php in Phorum 5.1.14 and earlier allows remote attackers to execute arbitrary SQL commands via the page parameter. NOTE: the vendor has disputed this report, st…	NVD-CWE-Other	CVE-2006-3249	2024-08-8 04:15	2006-06-27	Show	GitHub Exploit DB Packet Storm