Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 6, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
192891	6.1	警告 Network	NETIKUS.NET ltd	-	Netikus EventSentry におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-5077	2017-05-12 18:00	2016-09-7	Show	GitHub Exploit DB Packet Storm

192892	6.1	警告 Network	Paessler AG	-	Paessler PRTG におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-5078	2017-05-12 17:54	2016-09-7	Show	GitHub Exploit DB Packet Storm

192893	6.1	警告 Network	SmartBear Software	-	Swagger-UI におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-5682	2017-05-12 17:52	2016-09-2	Show	GitHub Exploit DB Packet Storm

192894	5.4	警告 Network	Opmantek	-	Opmantek NMIS におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-5642	2017-05-12 17:50	2016-09-7	Show	GitHub Exploit DB Packet Storm

192895	6.1	警告 Network	Spiceworks Inc.	-	Spiceworks Desktop におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2015-6021	2017-05-12 17:39	2015-12-16	Show	GitHub Exploit DB Packet Storm

192896	7.5	重要 Network	ImageMagick	-	ImageMagick における無限ループに関する脆弱性	CWE-835 無限ループ	CVE-2017-7619	2017-05-12 17:32	2017-03-2	Show	GitHub Exploit DB Packet Storm

192897	7.5	重要 Network	Opmantek	-	Opmantek NMIS におけるコマンドインジェクションの脆弱性	CWE-77 コマンドインジェクション	CVE-2016-6534	2017-05-12 17:31	2016-09-7	Show	GitHub Exploit DB Packet Storm

192898	7.5	重要 Network	NetApp	-	NetApp Clustered Data ONTAP におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2017-5988	2017-05-12 17:21	2017-03-31	Show	GitHub Exploit DB Packet Storm

192899	7.5	重要 Network	フィリップス	-	Philips In.Sight B120/37 における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2015-2884	2017-05-12 17:19	2015-09-2	Show	GitHub Exploit DB Packet Storm

192900	5.4	警告 Network	フィリップス	-	Philips In.Sight B120/37 におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2015-2883	2017-05-12 17:19	2015-09-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1001	4.3	MEDIUM Network	google	chrome	Integer overflow in ANGLE in Google Chrome on Windows prior to 147.0.7727.138 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: M…	CWE-472 External Control of Assumed-Immutable Web Parameter	CVE-2026-7340	2026-05-1 01:36	2026-04-29	Show	GitHub Exploit DB Packet Storm

1002	8.8	HIGH Network	google	chrome	Use after free in WebRTC in Google Chrome prior to 147.0.7727.138 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)	CWE-416 Use After Free	CVE-2026-7341	2026-05-1 01:36	2026-04-29	Show	GitHub Exploit DB Packet Storm

1003	8.8	HIGH Network	google	chrome	Use after free in WebView in Google Chrome on Android prior to 147.0.7727.138 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity…	CWE-416 Use After Free	CVE-2026-7342	2026-05-1 01:36	2026-04-29	Show	GitHub Exploit DB Packet Storm

1004	7.5	HIGH Network	google	chrome	Use after free in Views in Google Chrome on Windows prior to 147.0.7727.138 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HT…	CWE-416 Use After Free	CVE-2026-7343	2026-05-1 01:36	2026-04-29	Show	GitHub Exploit DB Packet Storm

1005	8.8	HIGH Network	google	chrome	Use after free in Accessibility in Google Chrome on Windows prior to 147.0.7727.138 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a cr…	CWE-416 Use After Free	CVE-2026-7344	2026-05-1 01:36	2026-04-29	Show	GitHub Exploit DB Packet Storm

1006	8.3	HIGH Network	google	chrome	Insufficient validation of untrusted input in Feedback in Google Chrome prior to 147.0.7727.138 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox esc…	CWE-20 Improper Input Validation	CVE-2026-7345	2026-05-1 01:36	2026-04-29	Show	GitHub Exploit DB Packet Storm

1007	8.8	HIGH Network	tenda	hg3_firmware	A security flaw has been discovered in Tenda HG3 2.0 300003070. This vulnerability affects the function formgponConf of the file /boaform/admin/formgponConf. The manipulation of the argument fmgpon_l…	CWE-77 CWE-78 Command Injection OS Command	CVE-2026-7096	2026-05-1 01:18	2026-04-27	Show	GitHub Exploit DB Packet Storm

1008	4.8	MEDIUM Network	-	-	Improper Certificate Validation via Global SSL Context Downgrade in Apache Storm Prometheus Reporter Versions Affected: from 2.6.3 to 2.8.6 Description: In production deployments where an admin…	CWE-295 Improper Certificate Validation	CVE-2026-40557	2026-05-1 01:16	2026-04-27	Show	GitHub Exploit DB Packet Storm

1009	9.8	CRITICAL Network	-	-	Cockpit v2.13.5 and earlier is vulnerable to arbitrary code execution via the filter parameter within multiple endpoints. This vulnerability allows an attacker to run system commands on the underlyin…	CWE-94 Code Injection	CVE-2026-38992	2026-05-1 01:16	2026-04-30	Show	GitHub Exploit DB Packet Storm

1010	-		-	-	Rejected reason: DO NOT USE THIS CVE RECORD. ConsultIDs: none. Reason: This record was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none.	-	CVE-2026-34998	2026-05-1 01:16	2026-05-1	Show	GitHub Exploit DB Packet Storm