Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 13, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
194681	8.8	重要 Network	Google	-	Windows 上で稼動する Google Chrome の PDFium におけるヒープを破損される脆弱性	CWE-787 境界外書き込み	CVE-2017-5032	2017-05-1 16:30	2017-03-9	Show	GitHub Exploit DB Packet Storm

194682	8.8	重要 Network	Google	-	Windows 上で稼動する Google Chrome の ANGLE における境界外読み取りの脆弱性	CWE-416 解放済みメモリの使用	CVE-2017-5031	2017-05-1 16:30	2017-03-9	Show	GitHub Exploit DB Packet Storm

194683	8.8	重要 Network	Google	-	複数の OS 上で稼動する Google Chrome の V8 における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2017-5030	2017-05-1 16:30	2017-03-9	Show	GitHub Exploit DB Packet Storm

194684	8.8	重要 Network	Google xmlsoft.org	-	複数の OS 上で稼動する Google Chrome の Blink で使用される libxslt の transform.c における境界外書き込みを引き起こされる脆弱性	CWE-787 境界外書き込み	CVE-2017-5029	2017-05-1 16:30	2017-03-9	Show	GitHub Exploit DB Packet Storm

194685	5.5	警告 Local	PoDoFo project	-	PoDoFo の doc/PdfPage.cpp:609:23 コードにおけるサービス運用妨害 (DoS) の脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2017-7381	2017-05-1 16:27	2017-03-31	Show	GitHub Exploit DB Packet Storm

194686	5.5	警告 Local	PoDoFo project	-	PoDoFo の PdfEncoding.cpp の PoDoFo::PdfSimpleEncoding::ConvertToEncoding 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2017-7379	2017-05-1 16:27	2017-03-31	Show	GitHub Exploit DB Packet Storm

194687	5.5	警告 Local	PoDoFo project	-	PoDoFo の PdfPainter.cpp の PoDoFo::PdfPainter::ExpandTabs 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2017-7378	2017-05-1 16:27	2017-03-31	Show	GitHub Exploit DB Packet Storm

194688	6.5	警告 Network	ArtistScope	-	WordPress 用 CopySafe Web Protection プラグインにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2017-8100	2017-05-1 12:29	2017-04-7	Show	GitHub Exploit DB Packet Storm

194689	8.1	重要 Network	Browserweb Inc.	-	WordPress 用 WHIZZ プラグインにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2017-8099	2017-05-1 12:29	2017-04-27	Show	GitHub Exploit DB Packet Storm

194690	7.8	重要 Local	日本ナショナルインスツルメンツ	-	LabVIEW におけるバッファエラーの脆弱性	CWE-119 バッファエラー	CVE-2017-2775	2017-05-1 11:48	2017-03-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 14, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1381	7.6	HIGH Network	-	-	ipl/web is a set of common web components for php projects. Prior to version 0.13.1, the vulnerability allows an attacker to inject malicious Javascript into a victim's browser to run it in the conte…	CWE-79 Cross-site Scripting	CVE-2026-42224	2026-05-9 08:16	2026-05-9	Show	GitHub Exploit DB Packet Storm

1382	-		-	-	pupnp is an SDK for development of UPnP device and control point applications. Prior to version 1.18.5, pupnp is vulnerable to SRRF port confusion due to port truncation via atoi() cast in parse_uri(…	CWE-195 CWE-918 Signed to Unsigned Conversion Error Server-Side Request Forgery (SSRF)	CVE-2026-41682	2026-05-9 08:16	2026-05-9	Show	GitHub Exploit DB Packet Storm

1383	7.9	HIGH Local	-	-	Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Prior to versions 1.17.15, 1.18.9, and 1.19.3, the output of cilium-bugtool can contain sensitive data when …	CWE-200 CWE-312 Information Exposure Cleartext Storage of Sensitive Information	CVE-2026-41520	2026-05-9 08:16	2026-05-9	Show	GitHub Exploit DB Packet Storm

1384	9.8	CRITICAL Network	-	-	ChestnutCMS v1.5.10 has a SQL injection vulnerability. The content parameter of the cms_content tag can be manipulated in the admin backend and injected into a SQL query when the template is rendered.	CWE-94 Code Injection	CVE-2026-36458	2026-05-9 08:16	2026-05-8	Show	GitHub Exploit DB Packet Storm

1385	-		-	-	Uncontrolled Resource Consumption vulnerability in ericmj decimal allows unauthenticated remote Denial of Service. The decimal library does not bound the exponent on parsed input. Storing a decimal …	CWE-400 Uncontrolled Resource Consumption	CVE-2026-32686	2026-05-9 08:16	2026-05-8	Show	GitHub Exploit DB Packet Storm

1386	9.8	CRITICAL Network	-	-	The Optoma CinemaX P2 projector (firmware TVOS-04.24.010.04.01, Android 8.0.0) exposes an HTTP API on TCP port 2345 that allows full unauthenticated remote control of the device. The API supports bot…	CWE-285 Improper Authorization	CVE-2026-30496	2026-05-9 08:16	2026-05-7	Show	GitHub Exploit DB Packet Storm

1387	8.8	HIGH Adjacent	-	-	The Optoma CinemaX P2 projector (firmware TVOS-04.24.010.04.01, Android 8.0.0) exposes Android Debug Bridge (ADB) on TCP port 5555 over the network without requiring authentication. The device is con…	CWE-285 Improper Authorization	CVE-2026-30495	2026-05-9 08:16	2026-05-7	Show	GitHub Exploit DB Packet Storm

1388	6.1	MEDIUM Network	-	-	Sidekiq-cron thru 2.3.1, an open-source scheduling add-on for Sidekiq, is vulnerable to a cross-site scripting (xss) vulnerability via crafted URL being rended from cron.erb.	CWE-79 Cross-site Scripting	CVE-2025-67202	2026-05-9 08:16	2026-05-8	Show	GitHub Exploit DB Packet Storm

1389	9.8	CRITICAL Network	-	-	NPM package next-npm-version1.0.1 is vulnerable to Command injection.	CWE-94 Code Injection	CVE-2025-63706	2026-05-9 08:16	2026-05-8	Show	GitHub Exploit DB Packet Storm

1390	9.8	CRITICAL Network	-	-	npm package parse-ini v1.0.6 is vulnerable to Prototype Pollution in index.js().	CWE-1321 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')	CVE-2025-63703	2026-05-9 08:16	2026-05-8	Show	GitHub Exploit DB Packet Storm