Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 11, 2026, 6:13 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2541 4.8 警告
Network 		openwebui open webui openwebuiのopen webuiにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-44568 2026-05-20 13:27 2026-05-15 Show GitHub Exploit DB Packet Storm
2542 8.3 重要
Network 		openwebui open webui openwebuiのopen webuiにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-44570 2026-05-20 13:27 2026-05-15 Show GitHub Exploit DB Packet Storm
2543 6.5 警告
Network 		openwebui open webui openwebuiのopen webuiにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-44571 2026-05-20 13:27 2026-05-15 Show GitHub Exploit DB Packet Storm
2544 7.3 重要
Network 		openwebui open webui openwebuiのopen webuiにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-44721 2026-05-20 13:27 2026-05-15 Show GitHub Exploit DB Packet Storm
2545 5.5 警告
Local 		Vim Vim Vimにおける複数の脆弱性 CWE-122
CWE-190
CVE-2026-45130 2026-05-20 13:27 2026-05-8 Show GitHub Exploit DB Packet Storm
2546 5.4 警告
Network 		openwebui open webui openwebuiのopen webuiにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-45299 2026-05-20 13:27 2026-05-15 Show GitHub Exploit DB Packet Storm
2547 8.1 重要
Network 		openwebui open webui openwebuiのopen webuiにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-45301 2026-05-20 13:27 2026-05-15 Show GitHub Exploit DB Packet Storm
2548 7.7 重要
Network 		openwebui open webui openwebuiのopen webuiにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-45303 2026-05-20 13:27 2026-05-15 Show GitHub Exploit DB Packet Storm
2549 6.1 警告
Network 		openwebui open webui openwebuiのopen webuiにおける代替 XSS 構文の不適切な無効化に関する脆弱性 CWE-87
代替 XSS 構文の不適切な無効化 		CVE-2026-45314 2026-05-20 13:26 2026-05-15 Show GitHub Exploit DB Packet Storm
2550 8.7 重要
Network 		openwebui open webui openwebuiのopen webuiにおける複数の脆弱性 CWE-434
CWE-646
CWE-79
CVE-2026-45315 2026-05-20 13:26 2026-05-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
344941 - mozilla firefox Multiple "missing security checks" in Firefox before 1.0.3 allow remote attackers to inject arbitrary Javascript into privileged pages using the _search target of the Firefox sidebar. NVD-CWE-Other
CVE-2005-1158 2017-10-11 10:30 2005-05-2 Show GitHub Exploit DB Packet Storm
344942 - mozilla firefox
mozilla 		The native implementations of InstallTrigger and other functions in Firefox before 1.0.3 and Mozilla Suite before 1.7.7 do not properly verify the types of objects being accessed, which causes the Ja… NVD-CWE-Other
CVE-2005-1159 2017-10-11 10:30 2005-05-2 Show GitHub Exploit DB Packet Storm
344943 - mozilla firefox
mozilla 		The privileged "chrome" UI code in Firefox before 1.0.3 and Mozilla Suite before 1.7.7 allows remote attackers to gain privileges by overriding certain properties or methods of DOM nodes, as demonstr… NVD-CWE-Other
CVE-2005-1160 2017-10-11 10:30 2005-05-2 Show GitHub Exploit DB Packet Storm
344944 - hp hp-ux Unknown vulnerability in HP-UX B.11.00, B.11.04, B.11.11, B.11.22, and B.11.23, when running TCP/IP on IPv4, allows remote attackers to cause a denial of service via certain packets, related to the P… NVD-CWE-Other
CVE-2005-1192 2017-10-11 10:30 2005-05-2 Show GitHub Exploit DB Packet Storm
344945 - redhat enterprise_linux
enterprise_linux_desktop
linux_advanced_workstation 		Stack-based buffer overflow in the ieee_putascii function for nasm 0.98 and earlier allows attackers to execute arbitrary code via a crafted asm file, a different vulnerability than CVE-2004-1287. NVD-CWE-Other
CVE-2005-1194 2017-10-11 10:30 2005-05-4 Show GitHub Exploit DB Packet Storm
344946 - gnu gzip Directory traversal vulnerability in gunzip -N in gzip 1.2.4 through 1.3.5 allows remote attackers to write to arbitrary directories via a .. (dot dot) in the original filename within a compressed fi… NVD-CWE-Other
CVE-2005-1228 2017-10-11 10:30 2005-05-2 Show GitHub Exploit DB Packet Storm
344947 - china-on-site flexphpnews SQL injection vulnerability in news.php in FlexPHPNews 0.0.3 allows remote attackers to execute arbitrary SQL commands via the newsid parameter. NVD-CWE-Other
CVE-2005-1237 2017-10-11 10:30 2005-05-2 Show GitHub Exploit DB Packet Storm
344948 - apple itunes Buffer overflow in Apple iTunes before 4.8 allows remote attackers to execute arbitrary code via a crafted MPEG4 file. NVD-CWE-Other
CVE-2005-1248 2017-10-11 10:30 2005-05-16 Show GitHub Exploit DB Packet Storm
344949 - graphicsmagick
imagemagick 		graphicsmagick
imagemagick 		Heap-based buffer overflow in the ReadPNMImage function in pnm.c for ImageMagick 6.2.1 and earlier allows remote attackers to cause a denial of service (application crash) via a PNM file with a small… NVD-CWE-Other
CVE-2005-1275 2017-10-11 10:30 2005-04-25 Show GitHub Exploit DB Packet Storm
344950 - squid squid Squid 2.5.STABLE9 and earlier does not trigger a fatal error when it identifies missing or invalid ACLs in the http_access configuration, which could lead to less restrictive ACLs than intended by th… NVD-CWE-Other
CVE-2005-1345 2017-10-11 10:30 2005-05-2 Show GitHub Exploit DB Packet Storm