Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 16, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3941 6.1 警告
Network 		nuxt Nuxt Devtools nuxtのNuxt Devtoolsにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2025-52662 2026-02-6 10:40 2025-11-7 Show GitHub Exploit DB Packet Storm
3942 7.8 重要
Local 		Synology Inc. BeeDrive Synology Inc.のBeeDriveにおける重要な機能に対する認証の欠如に関する脆弱性 CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2025-54158 2026-02-6 10:40 2025-12-4 Show GitHub Exploit DB Packet Storm
3943 7.5 重要
Network 		Synology Inc. BeeDrive Synology Inc.のBeeDriveにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2025-54159 2026-02-6 10:40 2025-12-4 Show GitHub Exploit DB Packet Storm
3944 7.8 重要
Local 		Synology Inc. BeeDrive Synology Inc.のBeeDriveにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2025-54160 2026-02-6 10:40 2025-12-4 Show GitHub Exploit DB Packet Storm
3945 9.8 緊急
Network 		ThemeMove UniCamp ThemeMoveのWordPress用UniCampにおけるPHP リモートファイルインクルージョンの脆弱性 CWE-98
PHP リモートファイルインクルージョン 		CVE-2025-54701 2026-02-6 10:40 2025-08-14 Show GitHub Exploit DB Packet Storm
3946 5.3 警告
Network 		Codeshare Codeshare Codeshareにおける情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2025-60925 2026-02-6 10:40 2025-11-4 Show GitHub Exploit DB Packet Storm
3947 6.1 警告
Network 		Zucchetti s.p.a. Infinity Zucchetti
ZMaintenance Infinity 		Zucchetti s.p.a.のZMaintenance Infinity等の複数製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2025-61431 2026-02-6 10:40 2025-11-4 Show GitHub Exploit DB Packet Storm
3948 9.1 緊急
Network 		Shopify remix-run/deno
@remix-run/node
@react-router/node 		Shopifyの@react-router/node等の複数製品におけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2025-61686 2026-02-6 10:40 2026-01-10 Show GitHub Exploit DB Packet Storm
3949 9.8 緊急
Network 		EUROLAB srl ELTS 100 Firmware EUROLAB srlのELTS 100 Firmwareにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2025-63225 2026-02-6 10:40 2025-11-18 Show GitHub Exploit DB Packet Storm
3950 3.5
Adjacent 		Freebox Freebox One Firmware
Freebox v5 HD Firmware
Freebox v5 Crystal Firmware
Freebox v6 Revolution Firmware
Freebox Mini 4K&nbs… 		FreeboxのFreebox Mini 4K Firmware等の複数製品における重要な情報の平文での送信に関する脆弱性 CWE-319
重要な情報の平文での送信 		CVE-2025-63292 2026-02-6 10:40 2025-11-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
571 8.8 HIGH
Network 		- - Heap buffer overflow in Codecs in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted video file. (Chromium security severity: Hig… New CWE-122
Heap-based Buffer Overflow 		CVE-2026-8529 2026-05-15 06:19 2026-05-15 Show GitHub Exploit DB Packet Storm
572 8.8 HIGH
Network 		- - Integer overflow in XML in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High) New CWE-472
 External Control of Assumed-Immutable Web Parameter 		CVE-2026-8532 2026-05-15 06:19 2026-05-15 Show GitHub Exploit DB Packet Storm
573 8.8 HIGH
Network 		- - Type Confusion in V8 in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High) New CWE-843
Type Confusion 		CVE-2026-8540 2026-05-15 06:19 2026-05-15 Show GitHub Exploit DB Packet Storm
574 8.8 HIGH
Network 		- - Use after free in Media in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High) New CWE-416
 Use After Free 		CVE-2026-8544 2026-05-15 06:19 2026-05-15 Show GitHub Exploit DB Packet Storm
575 7.5 HIGH
Network 		- - Insufficient policy enforcement in Passwords in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to perform privilege escalation via… New CWE-862
 Missing Authorization 		CVE-2026-8547 2026-05-15 06:19 2026-05-15 Show GitHub Exploit DB Packet Storm
576 8.8 HIGH
Network 		- - Use after free in Media in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High) New CWE-416
 Use After Free 		CVE-2026-8549 2026-05-15 06:19 2026-05-15 Show GitHub Exploit DB Packet Storm
577 8.8 HIGH
Network 		- - Use after free in Downloads in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code via a crafted HTML page… New CWE-416
 Use After Free 		CVE-2026-8551 2026-05-15 06:19 2026-05-15 Show GitHub Exploit DB Packet Storm
578 8.8 HIGH
Network 		- - Use after free in GTK in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: High) New CWE-416
 Use After Free 		CVE-2026-8555 2026-05-15 06:19 2026-05-15 Show GitHub Exploit DB Packet Storm
579 7.5 HIGH
Network 		- - Use after free in Accessibility in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to perform privilege escalation via a crafted HTML page. (C… New CWE-416
 Use After Free 		CVE-2026-8557 2026-05-15 06:19 2026-05-15 Show GitHub Exploit DB Packet Storm
580 8.8 HIGH
Network 		- - Integer overflow in Fonts in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Medium) New CWE-472
 External Control of Assumed-Immutable Web Parameter 		CVE-2026-8577 2026-05-15 06:19 2026-05-15 Show GitHub Exploit DB Packet Storm