Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 14, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
220671	4.3	警告	IBM	-	IBM Sterling Connect:Enterprise HTTP Option におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-6327	2013-12-19 16:35	2013-12-13	Show	GitHub Exploit DB Packet Storm

220672	6.8	警告	CRU Acquisition Group	-	CRU Ditto Forensic FieldStation のファームウェアにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2013-6883	2013-12-19 15:54	2013-10-15	Show	GitHub Exploit DB Packet Storm

220673	4.3	警告	CRU Acquisition Group	-	CRU Ditto Forensic FieldStation のファームウェアにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-6882	2013-12-19 15:52	2013-12-12	Show	GitHub Exploit DB Packet Storm

220674	2.1	注意	valve software	-	Valve SteamOS の valve-bugreporter パッケージの Valve Bug Reporter における重要な情報を取得される脆弱性	CWE-310 暗号の問題	CVE-2013-7128	2013-12-19 15:51	2013-12-14	Show	GitHub Exploit DB Packet Storm

220675	4.3	警告	ThemeBeans	-	WordPress 用 ThemeBeans Blooog Theme におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-7129	2013-12-19 14:47	2013-12-2	Show	GitHub Exploit DB Packet Storm

220676	2.1	注意	アップル	-	Apple Mac OS X 上で稼働する Safari における重要な情報を取得される脆弱性	CWE-310 暗号の問題	CVE-2013-7127	2013-12-19 14:41	2013-12-13	Show	GitHub Exploit DB Packet Storm

220677	8.8	危険	Google	-	Android におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-6271	2013-12-19 12:13	2013-11-27	Show	GitHub Exploit DB Packet Storm

220678	4.7	警告	Eaton	-	複数の Cooper Power Systems 製品の DNP3 コンポーネントにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-2816	2013-12-19 11:58	2013-12-12	Show	GitHub Exploit DB Packet Storm

220679	7.1	危険	Eaton	-	Cooper Power Systems Cybectec DNP3 Master OPC Server におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-2814	2013-12-19 11:56	2013-12-12	Show	GitHub Exploit DB Packet Storm

220680	7.1	危険	Eaton	-	複数の Cooper Power Systems 製品の DNP3 コンポーネントにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-2813	2013-12-19 11:55	2013-12-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 14, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1731	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: thermal: core: Address thermal zone removal races with resume Since thermal_zone_pm_complete() and thermal_zone_device_resume() r…	CWE-416 Use After Free	CVE-2026-31731	2026-05-8 22:16	2026-05-2	Show	GitHub Exploit DB Packet Storm

1732	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: possible double-free of cctx->remote_heap fastrpc_init_create_static_process() may free cctx->remote_heap on the e…	CWE-415 Double Free	CVE-2026-31730	2026-05-8 22:16	2026-05-2	Show	GitHub Exploit DB Packet Storm

1733	-		-	-	Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.	-	CVE-2026-2710	2026-05-8 08:16	2026-05-8	Show	GitHub Exploit DB Packet Storm

1734	-		-	-	Rejected reason: REJECT DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2026-34429. Reason: This candidate is a duplicate of CVE-2026-34429. Notes: All CVE users should reference CVE-2026-344…	-	CVE-2026-44365	2026-05-8 06:16	2026-05-8	Show	GitHub Exploit DB Packet Storm

1735	7.7	HIGH Network	-	-	FreeScout is a free help desk and shared inbox built with PHP's Laravel framework. Prior to version 1.8.217, Helper::sanitizeRemoteUrl() in app/Misc/Helper.php follows HTTP redirects via curlGetLastR…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-41905	2026-05-8 06:16	2026-05-8	Show	GitHub Exploit DB Packet Storm

1736	7.1	HIGH Local	gitpython_project	gitpython	GitPython is a python library used to interact with Git repositories. Prior to version 3.1.48, a vulnerability in GitPython allows attackers who can supply a crafted reference path to an application …	CWE-22 Path Traversal	CVE-2026-44243	2026-05-8 06:12	2026-05-8	Show	GitHub Exploit DB Packet Storm

1737	5.3	MEDIUM Network	-	-	ParquetSharp is a .NET library for reading and writing Apache Parquet files. From version 18.1.0 to before version 23.0.0.1, DecimalConverter.ReadDecimal makes a stackalloc using what might be an att…	CWE-789 Memory Allocation with Excessive Size Value	CVE-2026-42241	2026-05-8 05:37	2026-05-8	Show	GitHub Exploit DB Packet Storm

1738	8.1	HIGH Network	-	-	Budibase is an open-source low-code platform. Prior to version 3.35.10, the budibase:auth cookie containing the JWT session token is set with httpOnly: false at packages/backend-core/src/utils/utils.…	CWE-1004 Sensitive Cookie Without 'HttpOnly' Flag	CVE-2026-42239	2026-05-8 05:35	2026-05-8	Show	GitHub Exploit DB Packet Storm

1739	7.6	HIGH Network	-	-	manage.get.gov is the .gov TLD registrar maintained by CISA. manage.get.gov allows an organization administrator to assign domain manager privileges for domains not already in another organization. F…	CWE-266 Incorrect Privilege Assignment	CVE-2026-43510	2026-05-8 05:32	2026-05-8	Show	GitHub Exploit DB Packet Storm

1740	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: bpf: sockmap: Fix use-after-free of sk->sk_socket in sk_psock_verdict_data_ready(). syzbot reported use-after-free of AF_UNIX soc…	CWE-416 Use After Free	CVE-2026-43016	2026-05-8 05:31	2026-05-2	Show	GitHub Exploit DB Packet Storm