Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 10, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
211541 4.3 警告 Hiox.com - PhpOnlineChat の canned_opr.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-100017 2015-01-19 09:50 2014-09-5 Show GitHub Exploit DB Packet Storm
211542 4.3 警告 Luminary - clientResponse におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-100013 2015-01-19 09:46 2014-11-15 Show GitHub Exploit DB Packet Storm
211543 7.5 危険 TECOrange - Simple e-document の login.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-10020 2015-01-16 18:28 2014-01-23 Show GitHub Exploit DB Packet Storm
211544 6.8 警告 Teracom Limited. - Teracom T2-B-Gawv1.4U10Y-BI モデムの webconfig/wlan/country.html/country におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2014-10019 2015-01-16 18:24 2014-04-20 Show GitHub Exploit DB Packet Storm
211545 4.3 警告 Teracom Limited. - Teracom T2-B-Gawv1.4U10Y-BI モデムの webconfig/wlan/country.html/country におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-10018 2015-01-16 18:24 2014-01-20 Show GitHub Exploit DB Packet Storm
211546 6.4 警告 solidworks - SolidWorks Workgroup PDM の pdmwService.exe におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-100015 2015-01-16 18:21 2014-02-22 Show GitHub Exploit DB Packet Storm
211547 7.5 危険 solidworks - SolidWorks Workgroup PDM の pdmwService.exe におけるスタックベースのバッファオーバーフローの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-100014 2015-01-16 18:17 2014-02-18 Show GitHub Exploit DB Packet Storm
211548 7.5 危険 TRENDnet - TRENDnet SecurView カメラ TV-IP422WN 用 UltraCam ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2014-10011 2015-01-16 16:51 2014-11-25 Show GitHub Exploit DB Packet Storm
211549 5.8 警告 FluxBB - FluxBB の forums/login.php におけるオープンリダイレクトの脆弱性 CWE-Other
その他 		CVE-2014-10030 2015-01-16 16:34 2014-10-20 Show GitHub Exploit DB Packet Storm
211550 7.5 危険 FluxBB - FluxBB の profile.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-10029 2015-01-16 16:34 2014-10-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1101 7.1 HIGH
Adjacent 		- - AGL agl-service-can-low-level thru 17.1.12 contains a heap buffer over-read in the isotp-c library. In isotp_continue_receive (receive.c:87-89), the payload_length for a Single Frame is extracted fro… Update CWE-126
 Buffer Over-read 		CVE-2026-37532 2026-05-8 00:15 2026-05-2 Show GitHub Exploit DB Packet Storm
1102 7.8 HIGH
Local 		- - AGL app-framework-binder (afb-daemon) through v19.90.0 contains a privilege escalation vulnerability in the supervision Do command. The on_supervision_call function in src/afb-supervision.c explicitl… Update CWE-269
 Improper Privilege Management 		CVE-2026-37525 2026-05-8 00:15 2026-05-2 Show GitHub Exploit DB Packet Storm
1103 7.8 HIGH
Local 		- - AGL app-framework-binder (afb-daemon) through v19.90.0 allows any local process to execute privileged supervision commands (Exit, Do, Sclose, Config, Trace, Debug, Token, slist) without authenticatio… Update CWE-284
Improper Access Control 		CVE-2026-37526 2026-05-8 00:15 2026-05-2 Show GitHub Exploit DB Packet Storm
1104 9.8 CRITICAL
Network 		- - AGL app-framework-main thru 17.1.12 contains a Zip Slip path traversal vulnerability (CWE-22) combined with a TOCTOU race condition (CWE-367) in the widget installation flow. The is_valid_filename fu… Update CWE-22
CWE-367
Path Traversal
 Time-of-check Time-of-use (TOCTOU) Race Condition 		CVE-2026-37531 2026-05-8 00:15 2026-05-2 Show GitHub Exploit DB Packet Storm
1105 3.1 LOW
Network 		google chrome Inappropriate implementation in MHTML in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who convinced a user to engage in specific UI gestures to leak cross-origin data via a crafted … New CWE-352
CWE-1021
 Origin Validation Error
 Improper Restriction of Rendered UI Layers or Frames 		CVE-2026-8022 2026-05-8 00:15 2026-05-7 Show GitHub Exploit DB Packet Storm
1106 5.5 MEDIUM
Local 		- - Open CASCADE Technology (OCCT) V8_0_0_rc5 contains multiple vulnerabilities in its IGES and STEP file parsers that can be triggered by crafted IGES or STEP files. These issues include an out-of-bound… Update CWE-125
Out-of-bounds Read 		CVE-2026-42481 2026-05-8 00:15 2026-05-2 Show GitHub Exploit DB Packet Storm
1107 7.5 HIGH
Network 		- - AGL agl-service-can-low-level thru 17.1.12 contains a stack buffer overflow in the uds-c library. The send_diagnostic_request function in uds.c allocates a 6-byte stack buffer (MAX_DIAGNOSTIC_PAYLOAD… Update CWE-121
Stack-based Buffer Overflow 		CVE-2026-37530 2026-05-8 00:15 2026-05-2 Show GitHub Exploit DB Packet Storm
1108 9.8 CRITICAL
Network 		- - Integer underflow vulnerability in Open-SAE-J1939 thru commit b6caf884df46435e539b1ecbf92b6c29b345bdfe (2025-11-30) in SAE_J1939_Read_Transport_Protocol_Data_Transfer,allows attackers to write to arb… Update CWE-191
 Integer Underflow (Wrap or Wraparound) 		CVE-2026-37534 2026-05-8 00:15 2026-05-2 Show GitHub Exploit DB Packet Storm
1109 10.0 CRITICAL
Network 		- - Buffer overflow vulnerability in Open Vehicle Monitoring System 3 (OVMS3) 3.3.005. In canformat_gvret.cpp, the length field in GVRET binary data is not properly validated, allowing remote attackers t… Update CWE-121
Stack-based Buffer Overflow 		CVE-2026-37541 2026-05-8 00:15 2026-05-2 Show GitHub Exploit DB Packet Storm
1110 8.8 HIGH
Network 		- - Buffer overflow vulnerability in Open Vehicle Monitoring System 3 (OVMS3) 3.3.005. In canformat_pcap.cpp , the parser's phdr.len field is not properly validated, allowing remote attackers to cause a … Update CWE-121
Stack-based Buffer Overflow 		CVE-2026-42468 2026-05-8 00:15 2026-05-2 Show GitHub Exploit DB Packet Storm