Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 8, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
220121	4.3	警告	NagiosQL	-	NagiosQL にクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-6039	2013-12-18 14:03	2013-12-5	Show	GitHub Exploit DB Packet Storm

220122	2.1	注意	Novell Percona	-	Percona XtraBackup における暗号保護メカニズムを破られる脆弱性	CWE-310 暗号の問題	CVE-2013-6394	2013-12-17 19:28	2013-11-25	Show	GitHub Exploit DB Packet Storm

220123	5.2	警告	Linux	-	Linux Kernel の KVM サブシステムの arch/x86/kvm/lapic.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-189 数値処理の問題	CVE-2013-6376	2013-12-17 19:10	2013-12-12	Show	GitHub Exploit DB Packet Storm

220124	4.3	警告	xmlsoft.org	-	libxslt の xslt.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-DesignError	CVE-2013-4520	2013-12-17 19:03	2013-11-21	Show	GitHub Exploit DB Packet Storm

220125	6.8	警告	Beyond grep	-	ack における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2013-7069	2013-12-17 19:02	2013-11-8	Show	GitHub Exploit DB Packet Storm

220126	5.1	警告	GNU Project	-	libmicrohttpd の MHD_digest_auth_check 関数におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2013-7039	2013-12-17 19:01	2013-12-3	Show	GitHub Exploit DB Packet Storm

220127	6.4	警告	GNU Project	-	libmicrohttpd の MHD_http_unescape 関数における重要な情報を取得される脆弱性	CWE-119 バッファエラー	CVE-2013-7038	2013-12-17 19:01	2013-12-3	Show	GitHub Exploit DB Packet Storm

220128	5	警告	OpenTTD	-	OpenTTD の aircraft_cmd.cpp の HandleCrashedAircraft 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2013-6411	2013-12-17 18:39	2013-11-28	Show	GitHub Exploit DB Packet Storm

220129	5.8	警告	OpenStack	-	OpenStack Identity の ec2tokens API における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-6391	2013-12-17 18:39	2013-12-14	Show	GitHub Exploit DB Packet Storm

220130	5.8	警告	Devscripts Devel Team	-	devscripts の Uscan における任意のファイルを削除される脆弱性	CWE-20 不適切な入力確認	CVE-2013-7085	2013-12-17 18:33	2013-12-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1091	4.4	MEDIUM Local	google	chrome	Insufficient policy enforcement in Downloads in Google Chrome prior to 148.0.7778.96 allowed a local attacker to bypass navigation restrictions via a crafted HTML page. (Chromium security severity: M… New	NVD-CWE-noinfo	CVE-2026-7932	2026-05-7 08:36	2026-05-7	Show	GitHub Exploit DB Packet Storm

1092	4.3	MEDIUM Network	google	chrome	Out of bounds read in WebCodecs in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to perform an out of bounds memory read via a crafted video file. (Chromium security severity: Medium) New	CWE-125 Out-of-bounds Read	CVE-2026-7933	2026-05-7 08:34	2026-05-7	Show	GitHub Exploit DB Packet Storm

1093	4.2	MEDIUM Network	google	chrome	Insufficient validation of untrusted input in Popup Blocker in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to bypass navigation restriction… New	CWE-20 Improper Input Validation	CVE-2026-7934	2026-05-7 08:34	2026-05-7	Show	GitHub Exploit DB Packet Storm

1094	5.4	MEDIUM Network	google	chrome	Inappropriate implementation in Speech in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium) New	CWE-451 User Interface (UI) Misrepresentation of Critical Information	CVE-2026-7935	2026-05-7 08:34	2026-05-7	Show	GitHub Exploit DB Packet Storm

1095	4.3	MEDIUM Network	google	chrome	Object lifecycle issue in V8 in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: Medium) New	CWE-125 Out-of-bounds Read	CVE-2026-7936	2026-05-7 08:34	2026-05-7	Show	GitHub Exploit DB Packet Storm

1096	3.1	LOW Network	google	chrome	Insufficient policy enforcement in DevTools in Google Chrome prior to 148.0.7778.96 allowed an attacker who convinced a user to install a malicious extension to bypass navigation restrictions via a c… New	CWE-693 Protection Mechanism Failure	CVE-2026-7937	2026-05-7 08:34	2026-05-7	Show	GitHub Exploit DB Packet Storm

1097	8.8	HIGH Network	google	chrome	Use after free in CSS in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Medium) New	CWE-416 Use After Free	CVE-2026-7938	2026-05-7 08:34	2026-05-7	Show	GitHub Exploit DB Packet Storm

1098	5.4	MEDIUM Network	google	chrome	Inappropriate implementation in SanitizerAPI in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to inject arbitrary scripts or HTML (UXSS) via a crafted HTML page. (Chromium security s… New	CWE-79 Cross-site Scripting	CVE-2026-7939	2026-05-7 08:33	2026-05-7	Show	GitHub Exploit DB Packet Storm

1099	8.8	HIGH Network	google	chrome	Use after free in V8 in Google Chrome prior to 148.0.7778.96 allowed an attacker who convinced a user to install a malicious extension to execute arbitrary code inside a sandbox via a crafted Chrome … New	CWE-416 Use After Free	CVE-2026-7940	2026-05-7 08:33	2026-05-7	Show	GitHub Exploit DB Packet Storm

1100	4.4	MEDIUM Local	google	chrome	Insufficient validation of untrusted input in Mobile in Google Chrome on Android prior to 148.0.7778.96 allowed a local attacker to inject arbitrary scripts or HTML (UXSS) via a crafted Chrome Extens… New	CWE-20 Improper Input Validation	CVE-2026-7941	2026-05-7 08:33	2026-05-7	Show	GitHub Exploit DB Packet Storm