Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 15, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252481 9.3 危険 アップル - Apple Safari にて使用される WebKit における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2011-0254 2011-08-9 10:06 2011-07-21 Show GitHub Exploit DB Packet Storm
252482 9.3 危険 アップル - Apple Safari にて使用される WebKit における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2011-0253 2011-08-9 10:05 2011-07-21 Show GitHub Exploit DB Packet Storm
252483 4.3 警告 アップル - Apple Safari の WebKit における任意のファイルを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2011-0244 2011-08-9 10:04 2011-07-21 Show GitHub Exploit DB Packet Storm
252484 4.3 警告 アップル - Apple Safari の WebKit におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-0242 2011-08-9 10:03 2011-07-21 Show GitHub Exploit DB Packet Storm
252485 9.3 危険 アップル - Apple Safari にて使用される WebKit における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2011-0240 2011-08-9 10:02 2011-07-21 Show GitHub Exploit DB Packet Storm
252486 9.3 危険 アップル - Apple Safari にて使用される WebKit における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2011-0238 2011-08-9 10:01 2011-07-21 Show GitHub Exploit DB Packet Storm
252487 9.3 危険 アップル - Apple Safari にて使用される WebKit における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2011-0237 2011-08-8 09:24 2011-07-21 Show GitHub Exploit DB Packet Storm
252488 9.3 危険 アップル - Apple Safari にて使用される WebKit における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2011-0235 2011-08-8 09:23 2011-07-21 Show GitHub Exploit DB Packet Storm
252489 9.3 危険 アップル - Apple Safari にて使用される WebKit における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2011-0234 2011-08-8 09:23 2011-07-21 Show GitHub Exploit DB Packet Storm
252490 9.3 危険 アップル - Apple Safari にて使用される WebKit における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2011-0233 2011-08-8 09:22 2011-07-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
4581 - - - Poetry is a dependency manager for Python. Prior to 2.3.4, the extractall() function in src/poetry/utils/helpers.py:410-426 extracts sdist tarballs without path traversal protection on Python version… CWE-22
Path Traversal 		CVE-2026-41140 2026-04-28 03:53 2026-04-25 Show GitHub Exploit DB Packet Storm
4582 2.2 LOW
Network 		- - @astrojs/cloudflare is an SSR adapter for use with Cloudflare Workers targets. Prior to 13.1.10, the fetch() call for remote images in packages/integrations/cloudflare/src/utils/image-binding-transfo… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-41321 2026-04-28 03:53 2026-04-25 Show GitHub Exploit DB Packet Storm
4583 5.3 MEDIUM
Network 		- - @astrojs/node allows Astro to deploy your SSR site to Node targets. Prior to 10.0.5, requesting a static js/css resources from _astro path with an incorrect/malformed if-match header returns a 500 er… CWE-525
 Use of Web Browser Cache Containing Sensitive Information 		CVE-2026-41322 2026-04-28 03:53 2026-04-25 Show GitHub Exploit DB Packet Storm
4584 8.8 HIGH
Local 		- - SiYuan is an open-source personal knowledge management system. Prior to 3.6.5, SiYuan desktop renders notification messages as raw HTML inside an Electron renderer. The notification route POST /api/n… CWE-78
CWE-79
OS Command 
Cross-site Scripting 		CVE-2026-41421 2026-04-28 03:53 2026-04-25 Show GitHub Exploit DB Packet Storm
4585 - - - SiYuan is an open-source personal knowledge management system. Prior to 3.6.5, the fix for CVE-2026-30869 only added a denylist check (IsSensitivePath) but did not address the root cause — a redundan… CWE-22
Path Traversal 		CVE-2026-41894 2026-04-28 03:53 2026-04-25 Show GitHub Exploit DB Packet Storm
4586 8.4 HIGH
Local 		- - Faleemi Desktop Software 1.8.2 contains a local buffer overflow vulnerability in the Device alias field that allows local attackers to trigger a structured exception handler (SEH) overwrite. Attacker… CWE-120
Classic Buffer Overflow 		CVE-2018-25263 2026-04-28 03:53 2026-04-27 Show GitHub Exploit DB Packet Storm
4587 6.2 MEDIUM
Local 		- - Faleemi Plus 1.0.2 contains a buffer overflow vulnerability that allows local attackers to crash the application by supplying oversized input strings. Attackers can paste a 2000-byte payload into the… CWE-120
Classic Buffer Overflow 		CVE-2018-25275 2026-04-28 03:53 2026-04-27 Show GitHub Exploit DB Packet Storm
4588 6.2 MEDIUM
Local 		- - Bome Restorator 1793 contains a buffer overflow vulnerability that allows local attackers to crash the application by supplying an excessively long string in the Name field. Attackers can create a ma… CWE-120
Classic Buffer Overflow 		CVE-2018-25292 2026-04-28 03:53 2026-04-27 Show GitHub Exploit DB Packet Storm
4589 6.2 MEDIUM
Local 		- - Prime95 29.4b7 contains a buffer overflow vulnerability in the PrimeNet connection dialog that allows local attackers to crash the application by supplying an excessively long string in the optional … CWE-120
Classic Buffer Overflow 		CVE-2018-25293 2026-04-28 03:53 2026-04-27 Show GitHub Exploit DB Packet Storm
4590 7.5 HIGH
Network 		- - CEWE Photoshow 6.3.4 contains a buffer overflow vulnerability in the login dialog that allows attackers to crash the application by submitting oversized input. Attackers can inject 4000 bytes of data… CWE-120
Classic Buffer Overflow 		CVE-2018-25294 2026-04-28 03:53 2026-04-27 Show GitHub Exploit DB Packet Storm