Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 31, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
205691	9.8	緊急 Network	ヒューレット・パッカード・エンタープライズ	-	HPE Asset Manager および Asset Manager CloudSystem Chargeback における任意のコマンドを実行される脆弱性	CWE-Other その他	CVE-2016-2000	2016-04-7 10:40	2016-03-30	Show	GitHub Exploit DB Packet Storm

205692	10	危険	Google	-	Google Chrome および Chrome OS における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-0485	2016-04-6 17:41	2011-01-12	Show	GitHub Exploit DB Packet Storm

205693	5	警告	GPLHost	-	DTC の client/new_account_form.php における重要な情報を取得される脆弱性	CWE-310 暗号の問題	CVE-2011-0436	2016-04-6 17:24	2011-03-7	Show	GitHub Exploit DB Packet Storm

205694	9.3	危険	Schneider Electric アドバンテック株式会社	-	ISSymbol 仮想マシンの ISSymbol ActiveX コントロールにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-0340	2016-04-6 17:24	2011-05-4	Show	GitHub Exploit DB Packet Storm

205695	9.3	危険	マイクロソフト	-	複数の Microsoft Office 製品の整数符号エラーの脆弱性	CWE-189 数値処理の問題	CVE-2011-0098	2016-04-6 16:48	2011-04-12	Show	GitHub Exploit DB Packet Storm

205696	4.7	警告	マイクロソフト	-	複数の Microsoft 製品の Client/Server Run-time Subsystem における権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-0030	2016-04-6 16:48	2011-02-8	Show	GitHub Exploit DB Packet Storm

205697	7.5	重要 Network	オートデスク株式会社	-	Autodesk Backburner にスタックバッファオーバーフローの脆弱性	CWE-119 CWE-Other	CVE-2016-2344	2016-04-6 11:35	2016-03-28	Show	GitHub Exploit DB Packet Storm

205698	10	危険	Zhuhai RaySharp Technology Co., Ltd.	-	Zhuhai RaySharp のファームウェアにおけるアクセス権を取得される脆弱性	CWE-Other CWE-Other	CVE-2015-8286	2016-04-5 12:25	2016-02-17	Show	GitHub Exploit DB Packet Storm

205699	9.8	緊急 Network	Patterson Dental Supply, Inc.	-	Eaglesoft (Patterson Dental) でパスワードがハードコードされている問題	CWE-Other その他	CVE-2016-2343	2016-04-5 12:24	2016-03-30	Show	GitHub Exploit DB Packet Storm

205700	7.5	重要 Network	レッドハット	-	Windows 上で稼動する WildFly のサーブレットフィルタ制限のメカニズムにおける重要なファイルを読まれる脆弱性	CWE-200 情報漏えい	CVE-2016-0793	2016-04-5 11:58	2016-02-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
451	9.6	CRITICAL Network	-	-	MeshCore Card provides MeshCore Lovelace card for Home Assistant. Prior to 0.3.3, Meshcore node names are rendered without HTML escaping in meshcore-card, allowing any node within direct or indirect … New	CWE-79 Cross-site Scripting	CVE-2026-45323	2026-05-30 01:25	2026-05-29	Show	GitHub Exploit DB Packet Storm

452	8.3	HIGH Network	-	-	Home Assistant is open source home automation software that puts local control and privacy first. Prior to 2026.4.1 for iOS and 2026.4.4 for Android, he Home Assistant Companion apps for Android and … New	CWE-94 CWE-346 CWE-749 CWE-940 Code Injection Origin Validation Error Exposed Dangerous Method or Function Improper Verification of Source of a Communication Channel	CVE-2026-44698	2026-05-30 01:25	2026-05-29	Show	GitHub Exploit DB Packet Storm

453	-		-	-	Mermaid is a JavaScript tool that uses Markdown-inspired text to create and modify diagrams and charts. Prior to 10.9.6 and 11.15.0, Mermaid's default configuration allows injecting CSS that applies… New	CWE-94 Code Injection	CVE-2026-41159	2026-05-30 01:25	2026-05-30	Show	GitHub Exploit DB Packet Storm

454	7.5	HIGH Network	google	chrome	Use after free in iOS in Google Chrome on iOS prior to 148.0.7778.216 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code via a crafted HTML pag… New	CWE-416 Use After Free	CVE-2026-9956	2026-05-30 01:20	2026-05-29	Show	GitHub Exploit DB Packet Storm

455	-		-	-	Prometheus is an open-source monitoring system and time series database. From 2.49.0 to before 3.5.3 and 3.11.3, in the Prometheus server's legacy web UI (enabled via the command-line flag --enable-f… Update	CWE-79 Cross-site Scripting	CVE-2026-44903	2026-05-30 01:19	2026-05-27	Show	GitHub Exploit DB Packet Storm

456	8.2	HIGH Network	-	-	LangChain is a framework for building agents and LLM-powered applications. Prior to 0.3.85 and 1.3.3, LangChain contains older runtime code paths that deserialize run inputs, run outputs, or other ap… Update	CWE-502 Deserialization of Untrusted Data	CVE-2026-44843	2026-05-30 01:19	2026-05-27	Show	GitHub Exploit DB Packet Storm

457	6.5	MEDIUM Network	-	-	Starlette is a lightweight ASGI framework/toolkit. Prior to version 1.0.1, the HTTP `Host` request header was not validated before being used to reconstruct `request.url`. Because the routing algorit… Update	CWE-444 HTTP Request Smuggling	CVE-2026-48710	2026-05-30 01:19	2026-05-27	Show	GitHub Exploit DB Packet Storm

458	-		-	-	A Server-Side Request Forgery (SSRF) vulnerability was identified in GitHub Enterprise Server that allowed an attacker to cause the server to issue HTTP requests to internal services via the security… Update	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-8606	2026-05-30 01:19	2026-05-27	Show	GitHub Exploit DB Packet Storm

459	-		-	-	A server-side request forgery (SSRF) vulnerability was identified in GitHub Enterprise Server that allowed an unauthenticated attacker to send crafted requests to internal services by exploiting insu… Update	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-9312	2026-05-30 01:19	2026-05-27	Show	GitHub Exploit DB Packet Storm

460	7.4	HIGH Local	-	-	In GDAL 3.1.0 through 3.13.0, scanForGeometryContainers in the netCDF driver allows code execution via a stack-based buffer overflow. It reads a geometry attribute into a fixed-size stack buffer with… Update	CWE-121 Stack-based Buffer Overflow	CVE-2026-49014	2026-05-30 01:19	2026-05-27	Show	GitHub Exploit DB Packet Storm