Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 22, 2026, 12:09 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
281 8.5 重要
Network 		openwebui open webui openwebuiのopen webuiにおけるサーバサイドのリクエストフォージェリの脆弱性 New CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-45400 2026-05-21 10:50 2026-05-15 Show GitHub Exploit DB Packet Storm
282 8.5 重要
Network 		openwebui open webui openwebuiのopen webuiにおけるサーバサイドのリクエストフォージェリの脆弱性 New CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-45401 2026-05-21 10:50 2026-05-15 Show GitHub Exploit DB Packet Storm
283 8.8 重要
Network 		Apache Software Foundation Apache OFBiz Apache Software FoundationのApache OFBizにおける認証に関する脆弱性 New CWE-287
不適切な認証 		CVE-2026-45434 2026-05-21 10:50 2026-05-19 Show GitHub Exploit DB Packet Storm
284 5.4 警告
Network 		Outlook.com Microsoft Edge Chromium Microsoft Edge (Chrome ベース) のセキュリティ機能のバイパスの脆弱性 New CWE-20
CWE-noinfo
CVE-2026-45492 2026-05-21 10:50 2026-05-18 Show GitHub Exploit DB Packet Storm
285 6.1 警告
Network 		Outlook.com Microsoft Edge Chromium Microsoft Edge (Chromium ベース) のなりすましの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-45494 2026-05-21 10:50 2026-05-18 Show GitHub Exploit DB Packet Storm
286 9.8 緊急
Network 		Outlook.com Microsoft Edge Chromium Microsoft Edge (Chromium ベース) のリモートでコードが実行される脆弱性 New CWE-119
CWE-20
CWE-94
CVE-2026-45495 2026-05-21 10:50 2026-05-18 Show GitHub Exploit DB Packet Storm
287 8.8 重要
Network 		openwebui open webui openwebuiのopen webuiにおける不正な認証に関する脆弱性 New CWE-863
不正な認証 		CVE-2026-45672 2026-05-21 10:50 2026-05-15 Show GitHub Exploit DB Packet Storm
288 7.5 重要
Network 		ws project ws ws projectのwsにおける初期化されていないリソースの使用に関する脆弱性 New CWE-908
初期化されていないリソースの使用 		CVE-2026-45736 2026-05-21 10:50 2026-05-15 Show GitHub Exploit DB Packet Storm
289 5.5 警告
Local 		freedesktop.org GStreamer Good Plug-ins freedesktop.orgのGStreamer Good Plug-insにおけるゼロ除算に関する脆弱性 New CWE-369
ゼロ除算 		CVE-2026-46469 2026-05-21 10:50 2026-05-14 Show GitHub Exploit DB Packet Storm
290 9.1 緊急
Network 		freedesktop.org GStreamer Good Plug-ins freedesktop.orgのGStreamer Good Plug-insにおけるゼロ除算に関する脆弱性 New CWE-369
ゼロ除算 		CVE-2026-46470 2026-05-21 10:50 2026-05-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
346081 - midnight_commander
debian
gentoo
redhat
suse
turbolinux 		midnight_commander
debian_linux
linux
enterprise_linux
linux_advanced_workstation
suse_linux
turbolinux_server
turbolinux_workstation 		Midnight commander (mc) 4.5.55 and earlier allows remote attackers to cause a denial of service via "a corrupt section header." NVD-CWE-Other
CVE-2004-1090 2017-07-11 10:30 2005-04-14 Show GitHub Exploit DB Packet Storm
346082 - midnight_commander
debian
gentoo
redhat
suse
turbolinux 		midnight_commander
debian_linux
linux
enterprise_linux
linux_advanced_workstation
suse_linux
turbolinux_server
turbolinux_workstation 		Midnight commander (mc) 4.5.55 and earlier allows remote attackers to cause a denial of service by triggering a null dereference. NVD-CWE-Other
CVE-2004-1091 2017-07-11 10:30 2005-04-14 Show GitHub Exploit DB Packet Storm
346083 - midnight_commander
debian
gentoo
redhat
suse
turbolinux 		midnight_commander
debian_linux
linux
enterprise_linux
linux_advanced_workstation
suse_linux
turbolinux_server
turbolinux_workstation 		Midnight commander (mc) 4.5.55 and earlier allows remote attackers to cause a denial of service by causing mc to free unallocated memory. NVD-CWE-Other
CVE-2004-1092 2017-07-11 10:30 2005-04-14 Show GitHub Exploit DB Packet Storm
346084 - midnight_commander
debian
gentoo
redhat
suse
turbolinux 		midnight_commander
debian_linux
linux
enterprise_linux
linux_advanced_workstation
suse_linux
turbolinux_server
turbolinux_workstation 		Midnight commander (mc) 4.5.55 and earlier allows remote attackers to cause a denial of service via "use of already freed memory." NVD-CWE-Other
CVE-2004-1093 2017-07-11 10:30 2005-04-14 Show GitHub Exploit DB Packet Storm
346085 - zgv
debian 		xzgv_image_viewer
zgv_image_viewer
debian_linux 		Multiple integer overflows in (1) readbmp.c, (2) readgif.c, (3) readgif.c, (4) readmrf.c, (5) readpcx.c, (6) readpng.c,(7) readpnm.c, (8) readprf.c, (9) readtiff.c, (10) readxbm.c, (11) readxpm.c in … NVD-CWE-Other
CVE-2004-1095 2017-07-11 10:30 2005-01-10 Show GitHub Exploit DB Packet Storm
346086 - cherokee cherokee_httpd Format string vulnerability in the cherokee_logger_ncsa_write_string function in Cherokee 0.4.17 and earlier, when authenticating via auth_pam, allows remote attackers to cause a denial of service (a… NVD-CWE-Other
CVE-2004-1097 2017-07-11 10:30 2005-01-10 Show GitHub Exploit DB Packet Storm
346087 - roaring_penguin
mandrakesoft
suse 		mimedefang
mandrake_linux
mandrake_linux_corporate_server
suse_linux 		MIMEDefang in MIME-tools 5.414 allows remote attackers to bypass virus scanning capabilities via an e-mail attachment with a virus that contains an empty boundary string in the Content-Type header. NVD-CWE-Other
CVE-2004-1098 2017-07-11 10:30 2005-01-10 Show GitHub Exploit DB Packet Storm
346088 - tips mailpost Cross-site scripting (XSS) vulnerability in mailpost.exe in MailPost 5.1.1sv, and possibly earlier versions, when debug mode is enabled, allows remote attackers to execute arbitrary web script or HTM… NVD-CWE-Other
CVE-2004-1100 2017-07-11 10:30 2005-01-10 Show GitHub Exploit DB Packet Storm
346089 - tips mailpost Successful exploitation requires that debug mode is enabled. NVD-CWE-Other
CVE-2004-1100 2017-07-11 10:30 2005-01-10 Show GitHub Exploit DB Packet Storm
346090 - tips mailpost mailpost.exe in MailPost 5.1.1sv, and possibly earlier versions, allows remote attackers to cause a denial of service (server crash), leak sensitive pathname information in the resulting error messag… NVD-CWE-Other
CVE-2004-1101 2017-07-11 10:30 2005-01-10 Show GitHub Exploit DB Packet Storm