Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
190881	9.8	緊急 Network	Kubernetes	-	Kubernetes における認可・権限・アクセス制御に関する脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2017-1000056	2017-08-31 15:24	2017-03-22	Show	GitHub Exploit DB Packet Storm

190882	7.5	重要 Network	qs project	-	qs モジュールにおける入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2017-1000048	2017-08-31 15:24	2017-03-6	Show	GitHub Exploit DB Packet Storm

190883	8.8	重要 Network	MetInfo	-	MetInfo における認可・権限・アクセス制御に関する脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2017-11347	2017-08-31 14:43	2017-07-17	Show	GitHub Exploit DB Packet Storm

190884	6.1	警告 Network	MetInfo	-	MetInfo におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2017-9764	2017-08-31 14:43	2017-07-19	Show	GitHub Exploit DB Packet Storm

190885	6.1	警告 Network	Kopano	-	Kopano WebApp におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2017-11666	2017-08-31 14:29	2017-07-26	Show	GitHub Exploit DB Packet Storm

190886	8.8	重要 Network	Koha	-	Koha Library におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2015-4639	2017-08-31 14:15	2015-06-18	Show	GitHub Exploit DB Packet Storm

190887	7.8	重要 Local	OpenCV team	-	OpenCV における境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2017-12603	2017-08-31 14:14	2017-08-23	Show	GitHub Exploit DB Packet Storm

190888	7.5	重要 Network	OpenCV team	-	OpenCV におけるリソース管理に関する脆弱性	CWE-399 リソース管理の問題	CVE-2017-12602	2017-08-31 14:14	2017-08-23	Show	GitHub Exploit DB Packet Storm

190889	7.8	重要 Local	OpenCV team	-	OpenCV におけるバッファエラーの脆弱性	CWE-119 バッファエラー	CVE-2017-12601	2017-08-31 14:14	2017-08-23	Show	GitHub Exploit DB Packet Storm

190890	7.5	重要 Network	OpenCV team	-	OpenCV におけるリソース管理に関する脆弱性	CWE-399 リソース管理の問題	CVE-2017-12600	2017-08-31 14:14	2017-08-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
551	8.4	HIGH Local	-	-	Allok Fast AVI MPEG Splitter 1.2 contains a stack based buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying a malicious license name string. Attackers can… New	CWE-121 Stack-based Buffer Overflow	CVE-2018-25322	2026-05-19 02:29	2026-05-17	Show	GitHub Exploit DB Packet Storm

552	8.4	HIGH Local	-	-	Allok AVI DivX MPEG to DVD Converter 2.6.1217 contains a structured exception handler buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying a malicious payl… New	CWE-120 Classic Buffer Overflow	CVE-2018-25323	2026-05-19 02:29	2026-05-17	Show	GitHub Exploit DB Packet Storm

553	9.1	CRITICAL Network	dovecot open-xchange	dovecot	When safe filter is used with variable expansion, all following pipelines on the same string are incorrectly interpreted as safe too, enabling unsafe data to be unescaped. This can enable SQL / LDAP … Update	CWE-235 Improper Handling of Extra Parameters	CVE-2026-27851	2026-05-19 02:29	2026-05-12	Show	GitHub Exploit DB Packet Storm

554	7.4	HIGH Network	-	-	Dify version 1.14.1 and prior contains an authorization bypass vulnerability that allows authenticated editor users to set and enable trace configurations for any application regardless of tenant own… New	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2026-41947	2026-05-19 02:29	2026-05-19	Show	GitHub Exploit DB Packet Storm

555	7.7	HIGH Network	-	-	Dify version 1.14.1 and prior contain a path traversal vulnerability that allows authenticated users to manipulate requests forwarded to the Plugin Daemon's internal REST API by exploiting insufficie… New	CWE-23 Relative Path Traversal	CVE-2026-41948	2026-05-19 02:29	2026-05-19	Show	GitHub Exploit DB Packet Storm

556	6.1	MEDIUM Network	-	-	Vvveb is a powerful and easy to use CMS with page builder to build websites, blogs or ecommerce stores. Prior to 1.0.8.1, a Stored Cross-Site Scripting (XSS) vulnerability exists in the Vvveb CMS com… New	CWE-79 Cross-site Scripting	CVE-2026-44366	2026-05-19 02:28	2026-05-16	Show	GitHub Exploit DB Packet Storm

557	-		-	-	Vvveb is a powerful and easy to use CMS with page builder to build websites, blogs or ecommerce stores. Prior to 1.0.8.3, there is an unauthenticated reflected cross-site scripting (XSS) issue in the… New	CWE-79 Cross-site Scripting	CVE-2026-45622	2026-05-19 02:28	2026-05-16	Show	GitHub Exploit DB Packet Storm

558	-		-	-	Vvveb is a powerful and easy to use CMS with page builder to build websites, blogs or ecommerce stores. Prior to 1.0.8.3, there is an authenticated SQL injection issue in the frontend user order hist… New	CWE-89 SQL Injection	CVE-2026-45800	2026-05-19 02:28	2026-05-16	Show	GitHub Exploit DB Packet Storm

559	7.5	HIGH Network	-	-	Woocommerce CSV Importer 3.3.6 contains a path traversal vulnerability that allows any registered user to delete arbitrary files by submitting unescaped filenames through the delete_export_file AJAX … New	CWE-22 Path Traversal	CVE-2018-25325	2026-05-19 02:28	2026-05-17	Show	GitHub Exploit DB Packet Storm

560	5.3	MEDIUM Network	-	-	Joomla! Component Js Jobs 1.2.0 contains a cross-site request forgery vulnerability that allows attackers to perform state-changing actions without token validation. Attackers can craft malicious HTM… New	CWE-352 Origin Validation Error	CVE-2018-25327	2026-05-19 02:28	2026-05-17	Show	GitHub Exploit DB Packet Storm