Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 22, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
193201 6.5 警告
Network 		OpenVPN Technologies - OpenVPN におけるサービス運用妨害 (DoS) の脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2017-7522 2017-07-13 16:27 2017-06-27 Show GitHub Exploit DB Packet Storm
193202 7.5 重要
Network 		OpenVPN Technologies - OpenVPN におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2017-7508 2017-07-13 16:27 2017-06-27 Show GitHub Exploit DB Packet Storm
193203 7.8 重要
Local 		Linux - Linux Kernel の sound/oss/msnd_pinnacle.c の intr 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-125
境界外読み取り 		CVE-2017-9986 2017-07-13 16:10 2017-06-20 Show GitHub Exploit DB Packet Storm
193204 7.8 重要
Local 		Linux - Linux Kernel の sound/isa/msnd/msnd_midi.c の snd_msndmidi_input_read 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-125
境界外読み取り 		CVE-2017-9985 2017-07-13 16:10 2017-06-20 Show GitHub Exploit DB Packet Storm
193205 7.8 重要
Local 		Linux - Linux Kernel の sound/isa/msnd/msnd_pinnacle.c の snd_msnd_interrupt 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-125
境界外読み取り 		CVE-2017-9984 2017-07-13 16:10 2017-06-20 Show GitHub Exploit DB Packet Storm
193206 7.5 重要
Network 		マイクロソフト - Microsoft Internet Explorer における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2014-6354 2017-07-13 15:42 2014-08-12 Show GitHub Exploit DB Packet Storm
193207 7.8 重要
Local 		Flatpak - Flatpak における認可・権限・アクセス制御に関する脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2017-9780 2017-07-13 15:35 2017-06-22 Show GitHub Exploit DB Packet Storm
193208 6.8 警告
Network 		Cambium Networks, LTD - Cambium Networks ePMP におけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2017-7918 2017-07-13 15:28 2017-06-14 Show GitHub Exploit DB Packet Storm
193209 7.6 重要
Network 		Cambium Networks, LTD - Cambium Networks ePMP における認可・権限・アクセス制御に関する脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2017-7922 2017-07-13 15:27 2017-06-14 Show GitHub Exploit DB Packet Storm
193210 5.5 警告
Local 		GNU Project - GNU Debugger におけるリソース管理に関する脆弱性 CWE-399
リソース管理の問題 		CVE-2017-9778 2017-07-13 15:25 2017-06-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2401 6.4 MEDIUM
Network 		- - Filterable Portfolio Gallery 1.0 contains a stored cross-site scripting vulnerability that allows authenticated attackers to inject malicious JavaScript by entering payloads in the title field. Attac… CWE-79
Cross-site Scripting 		CVE-2021-47929 2026-05-14 00:30 2026-05-10 Show GitHub Exploit DB Packet Storm
2402 6.4 MEDIUM
Network 		- - Exponent CMS 2.6 contains a stored cross-site scripting vulnerability that allows authenticated attackers to inject malicious scripts through the Title and Text Block parameters in the text editing e… CWE-79
Cross-site Scripting 		CVE-2021-47931 2026-05-14 00:30 2026-05-10 Show GitHub Exploit DB Packet Storm
2403 7.5 HIGH
Network 		- - memono Notepad 4.2 contains a denial of service vulnerability that allows attackers to crash the application by pasting excessively long character buffers into note fields. Attackers can generate a p… CWE-789
 Memory Allocation with Excessive Size Value 		CVE-2021-47944 2026-05-14 00:30 2026-05-10 Show GitHub Exploit DB Packet Storm
2404 7.8 HIGH
Local 		- - Argus Surveillance DVR 4.0 contains an unquoted service path vulnerability in the DVRWatchdog service that allows local attackers to escalate privileges by exploiting the service binary path. Attacke… CWE-428
 Unquoted Search Path or Element 		CVE-2021-47945 2026-05-14 00:30 2026-05-10 Show GitHub Exploit DB Packet Storm
2405 6.1 MEDIUM
Local 		- - Summarize versions through 0.14.1, fixed in commit 0cfb0fb, creates the daemon configuration directory and file with default filesystem permissions that may be world-readable on Unix-like systems, al… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2026-45222 2026-05-14 00:30 2026-05-12 Show GitHub Exploit DB Packet Storm
2406 8.1 HIGH
Network 		- - MailEnable Enterprise Premium 10.55 and earlier contains an improper authorization vulnerability in the WebAdmin mobile portal that allows attackers to bypass authentication checks by reusing Authent… CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2026-44400 2026-05-14 00:30 2026-05-9 Show GitHub Exploit DB Packet Storm
2407 8.1 HIGH
Network 		- - SmarterTools SmarterMail builds prior to 9560 contain a local file inclusion vulnerability in the /api/v1/report/summary/{type} API endpoint that allows authenticated users to read arbitrary .json fi… CWE-22
Path Traversal 		CVE-2026-7807 2026-05-14 00:29 2026-05-9 Show GitHub Exploit DB Packet Storm
2408 8.8 HIGH
Network 		- - CyberPanel 2.1 contains a command execution vulnerability that allows authenticated attackers to read arbitrary files and execute remote code by exploiting symlink attacks through the filemanager con… CWE-59
Link Following 		CVE-2021-47949 2026-05-14 00:29 2026-05-10 Show GitHub Exploit DB Packet Storm
2409 6.1 MEDIUM
Network 		- - Drupal avatar_uploader 7.x-1.0-beta8 contains a reflected cross-site scripting vulnerability that allows unauthenticated attackers to inject malicious scripts by manipulating the file parameter. Atta… CWE-79
Cross-site Scripting 		CVE-2022-50957 2026-05-14 00:29 2026-05-10 Show GitHub Exploit DB Packet Storm
2410 6.1 MEDIUM
Network 		- - Moodle LMS 4.0 contains a cross-site scripting vulnerability that allows unauthenticated attackers to inject malicious scripts by submitting payloads through the search parameter. Attackers can injec… CWE-79
Cross-site Scripting 		CVE-2022-50943 2026-05-14 00:27 2026-05-10 Show GitHub Exploit DB Packet Storm