Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
206491	9.3	危険	マイクロソフトアドビシステムズ Google	-	Adobe Flash Player および Adobe AIR における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2015-8460	2016-01-4 16:00	2015-12-28	Show	GitHub Exploit DB Packet Storm

206492	10	危険	マイクロソフトアドビシステムズ Google	-	Adobe Flash Player および Adobe AIR における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2015-8459	2016-01-4 16:00	2015-12-28	Show	GitHub Exploit DB Packet Storm

206493	4.3	警告	シスコシステムズ	-	Windows 上で稼動する Cisco Jabber における STARTTLS ダウングレード攻撃を実行される脆弱性	CWE-200 情報漏えい	CVE-2015-6409	2016-01-4 15:30	2015-12-24	Show	GitHub Exploit DB Packet Storm

206494	3.5	注意	日立	-	EUR における複数のクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	-	2015-12-28 13:53	2015-12-7	Show	GitHub Exploit DB Packet Storm

206495	4.9	警告	ヒューレット・パッカード日立	-	HP Universal Configuration Management Database における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2015-5440	2015-12-28 13:52	2015-09-9	Show	GitHub Exploit DB Packet Storm

206496	7.5	危険	Dovestones Software Ltd	-	Dovestones Software AD Self Password Reset に脆弱性	CWE-264 CWE-Other	CVE-2015-8267	2015-12-25 15:32	2015-12-18	Show	GitHub Exploit DB Packet Storm

206497	4.3	警告	Apache Software Foundation	-	Apache Struts におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2015-2992	2015-12-25 13:45	2015-09-4	Show	GitHub Exploit DB Packet Storm

206498	5	警告	Adcon Telemetry	-	Adcon Telemetry A840 Telemetry Gateway ベースステーションの Java クライアントにおけるログファイルのパス名を取得される脆弱性	CWE-200 情報漏えい	CVE-2015-7934	2015-12-25 11:43	2015-12-15	Show	GitHub Exploit DB Packet Storm

206499	5	警告	Adcon Telemetry	-	Adcon Telemetry A840 Telemetry Gateway ベースステーションおける重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2015-7932	2015-12-25 11:43	2015-12-15	Show	GitHub Exploit DB Packet Storm

206500	5.8	警告	Adcon Telemetry	-	Adcon Telemetry A840 Telemetry Gateway ベースステーションの Java クライアントにおけるデバイスになりすまされる脆弱性	CWE-20 CWE-200	CVE-2015-7931	2015-12-25 11:43	2015-12-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
631	6.3	MEDIUM Network	-	-	A weakness has been identified in Z-BlogPHP 1.7.4.3430. This affects the function CheckComment of the file zb_system/function/c_system_event.php of the component Commend Approval Handler. This manipu… Update	CWE-266 CWE-285 Incorrect Privilege Assignment Improper Authorization	CVE-2026-8747	2026-05-19 04:31	2026-05-17	Show	GitHub Exploit DB Packet Storm

632	7.3	HIGH Network	-	-	A flaw has been found in fishaudio Bert-VITS2 up to 8f7fbd8c4770965225d258db548da27dc8dd934c. The affected element is the function _get_all_models of the file hiyoriUI.py of the component Model Handl… Update	CWE-22 Path Traversal	CVE-2026-8755	2026-05-19 04:31	2026-05-17	Show	GitHub Exploit DB Packet Storm

633	7.3	HIGH Network	-	-	A vulnerability has been found in fishaudio Bert-VITS2 up to 8f7fbd8c4770965225d258db548da27dc8dd934c. The impacted element is the function generate_config of the file webui_preprocess.py of the comp… Update	CWE-22 Path Traversal	CVE-2026-8756	2026-05-19 04:31	2026-05-17	Show	GitHub Exploit DB Packet Storm

634	7.2	HIGH Network	-	-	A security vulnerability has been detected in H3C Magic B3 up to 100R002. This affects the function UpdateWanParams of the file /goform/aspForm. Such manipulation of the argument param leads to buffe… New	CWE-119 CWE-120 Incorrect Access of Indexable Resource ('Range Error') Classic Buffer Overflow	CVE-2026-8764	2026-05-19 04:31	2026-05-18	Show	GitHub Exploit DB Packet Storm

635	3.1	LOW Network	-	-	A vulnerability has been found in EMQX up to 6.2.0. This affects an unknown function of the file apps/emqx/src/emqx_persistent_session_ds.erl of the component QoS 2 PUBLISH Packet Handler. Such manip… Update	CWE-362 Race Condition	CVE-2026-8741	2026-05-19 04:31	2026-05-17	Show	GitHub Exploit DB Packet Storm

636	9.8	CRITICAL Network	-	-	A vulnerability was found in lwIP up to 2.2.1. Affected is the function snmp_parse_inbound_frame of the file src/apps/snmp/snmp_msg.c of the component snmpv3 USM Handler. Performing a manipulation of… New	CWE-119 CWE-121 Incorrect Access of Indexable Resource ('Range Error') Stack-based Buffer Overflow	CVE-2026-8836	2026-05-19 04:26	2026-05-19	Show	GitHub Exploit DB Packet Storm

637	7.3	HIGH Network	-	-	A vulnerability was identified in xiandafu beetl up to 3.20.2. Affected is an unknown function of the file beetl-classic-integration/beetl-spring-classic/src/main/java/org/beetl/ext/spring/SpELFuncti… Update	CWE-20 CWE-917 Improper Input Validation Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression Language Injection')	CVE-2026-8759	2026-05-19 04:22	2026-05-18	Show	GitHub Exploit DB Packet Storm

638	5.3	MEDIUM Network	google	chrome	Insufficient validation of untrusted input in DataTransfer in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who convinced a user to engage in specific UI gestures to obtain potentia… Update	CWE-20 Improper Input Validation	CVE-2026-8516	2026-05-19 04:17	2026-05-15	Show	GitHub Exploit DB Packet Storm

639	8.8	HIGH Network	google	chrome	Use after free in Blink in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Critical) Update	CWE-416 Use After Free	CVE-2026-8518	2026-05-19 04:17	2026-05-15	Show	GitHub Exploit DB Packet Storm

640	8.3	HIGH Network	google	chrome	Race in Payments in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical) Update	CWE-362 Race Condition	CVE-2026-8520	2026-05-19 04:17	2026-05-15	Show	GitHub Exploit DB Packet Storm