Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
205631 5.3 警告
Network 		MantisBT Group - MantisBT の config_api.php の config_is_private 関数における重要なマスターソルトの設定情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2014-9759 2016-04-13 11:46 2014-10-19 Show GitHub Exploit DB Packet Storm
205632 6.1 警告
Network 		Apache Software Foundation - Apache Struts で使用される JRE の URLDecoder 関数におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-4003 2016-04-13 11:45 2016-03-3 Show GitHub Exploit DB Packet Storm
205633 6.1 警告
Network 		Apache Software Foundation - Apache Ranger の Policy Admin Tool におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2015-0265 2016-04-13 11:45 2015-08-5 Show GitHub Exploit DB Packet Storm
205634 7.5 重要
Network 		レッドハット - Red Hat Enterprise Linux の glibc パッケージの calloc 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2015-5229 2016-04-13 11:34 2015-07-24 Show GitHub Exploit DB Packet Storm
205635 9.8 緊急
Network 		SAP - SAP NetWeaver Java AS の Configuration Wizard における XML 外部エンティティの脆弱性 CWE-Other
その他 		CVE-2016-3974 2016-04-13 11:04 2016-03-8 Show GitHub Exploit DB Packet Storm
205636 6.3 警告
Network 		SAP - SAP NetWeaver AS Java の XML Data Archiving Service における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2015-8840 2016-04-13 11:04 2015-07-15 Show GitHub Exploit DB Packet Storm
205637 6.1 警告
Network 		Debian
WebSVN		 - WebSVN におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-2511 2016-04-12 18:03 2016-02-22 Show GitHub Exploit DB Packet Storm
205638 3.1
Network 		Django Software Foundation - Django の contrib/auth/hashers.py のパスワードハッシャーにおけるユーザを列挙される脆弱性 CWE-200
情報漏えい 		CVE-2016-2513 2016-04-12 17:55 2016-03-1 Show GitHub Exploit DB Packet Storm
205639 7.4 重要
Network 		Django Software Foundation - Django の utils.http.is_safe_url 関数におけるユーザを任意の Web サイトにリダイレクトされる脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-2512 2016-04-12 17:55 2016-03-1 Show GitHub Exploit DB Packet Storm
205640 7.5 重要
Network 		Node.js Foundation
Fedora Project		 - Node.js の HTTP ヘッダ構文解析コードにおける HTTP レスポンス分割保護メカニズムを回避される脆弱性 CWE-20
不適切な入力確認 		CVE-2016-2216 2016-04-12 17:51 2016-02-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291 4.3 MEDIUM
Network 		- - Inappropriate implementation in iOS in Google Chrome on iOS prior to 148.0.7778.216 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: High) New CWE-200
Information Exposure 		CVE-2026-9955 2026-05-30 03:17 2026-05-29 Show GitHub Exploit DB Packet Storm
292 6.5 MEDIUM
Network 		- - Out of bounds read in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium secur… New CWE-125
Out-of-bounds Read 		CVE-2026-9953 2026-05-30 03:17 2026-05-29 Show GitHub Exploit DB Packet Storm
293 3.1 LOW
Network 		- - Insufficient validation of untrusted input in iOS in Google Chrome on iOS prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to bypass same origin policy via a… New CWE-20
 Improper Input Validation  		CVE-2026-9950 2026-05-30 03:17 2026-05-29 Show GitHub Exploit DB Packet Storm
294 3.1 LOW
Network 		- - Uninitialized Use in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. (Chromium sec… New CWE-457
 Use of Uninitialized Variable 		CVE-2026-9944 2026-05-30 03:17 2026-05-29 Show GitHub Exploit DB Packet Storm
295 4.3 MEDIUM
Network 		- - Out of bounds read in WebGL in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: High) New CWE-125
Out-of-bounds Read 		CVE-2026-9943 2026-05-30 03:17 2026-05-29 Show GitHub Exploit DB Packet Storm
296 4.3 MEDIUM
Network 		- - Inappropriate implementation in WebGL in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Hig… New CWE-200
Information Exposure 		CVE-2026-9929 2026-05-30 03:17 2026-05-29 Show GitHub Exploit DB Packet Storm
297 4.3 MEDIUM
Network 		- - Uninitialized Use in WebGL in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker to leak cross-origin information via a crafted HTML page. (Chromium security severity: High) New CWE-457
 Use of Uninitialized Variable 		CVE-2026-9921 2026-05-30 03:17 2026-05-29 Show GitHub Exploit DB Packet Storm
298 3.1 LOW
Network 		- - Uninitialized Use in GPU in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. (Chr… New CWE-457
 Use of Uninitialized Variable 		CVE-2026-9920 2026-05-30 03:17 2026-05-29 Show GitHub Exploit DB Packet Storm
299 4.3 MEDIUM
Network 		- - Out of bounds read in WebGL in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: High) New CWE-125
Out-of-bounds Read 		CVE-2026-9919 2026-05-30 03:17 2026-05-29 Show GitHub Exploit DB Packet Storm
300 6.5 MEDIUM
Network 		- - Uninitialized Use in WebGL in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chro… New CWE-457
 Use of Uninitialized Variable 		CVE-2026-9917 2026-05-30 03:17 2026-05-29 Show GitHub Exploit DB Packet Storm