Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 17, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4161	8.8	重要 Network	デル	Dell Unisphere for PowerMax Virtual Appliance Dell Unisphere for PowerMax	デルのDell Unisphere for PowerMax等の複数製品におけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2025-36588	2026-02-5 15:46	2026-01-22	Show	GitHub Exploit DB Packet Storm

4162	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおけるゼロ除算に関する脆弱性	CWE-369 ゼロ除算	CVE-2025-39954	2026-02-5 15:46	2025-10-9	Show	GitHub Exploit DB Packet Storm

4163	7.8	重要 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2025-39955	2026-02-5 15:46	2025-10-9	Show	GitHub Exploit DB Packet Storm

4164	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2025-39956	2026-02-5 15:46	2025-10-9	Show	GitHub Exploit DB Packet Storm

4165	7.8	重要 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2025-39957	2026-02-5 15:46	2025-10-9	Show	GitHub Exploit DB Packet Storm

4166	7.8	重要 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2025-39958	2026-02-5 15:46	2025-10-9	Show	GitHub Exploit DB Packet Storm

4167	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux KernelにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2025-39959	2026-02-5 15:46	2025-10-9	Show	GitHub Exploit DB Packet Storm

4168	7.8	重要 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2025-39960	2026-02-5 15:46	2025-10-9	Show	GitHub Exploit DB Packet Storm

4169	4.7	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける競合状態に関する脆弱性	CWE-362 競合状態	CVE-2025-39961	2026-02-5 15:46	2025-10-9	Show	GitHub Exploit DB Packet Storm

4170	7.8	重要 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2025-39962	2026-02-5 15:46	2025-10-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
201	8.1	HIGH Network	-	-	Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.6.10, when uploading an audio file, the name of the file is derived from the original HTT… New	CWE-22 Path Traversal	CVE-2026-44565	2026-05-16 07:16	2026-05-16	Show	GitHub Exploit DB Packet Storm

202	7.3	HIGH Network	-	-	Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.8.0, Excel file attachments are previewed in an unsafe way. A crafted XLSX file payload c… New	CWE-79 Cross-site Scripting	CVE-2026-44549	2026-05-16 07:16	2026-05-16	Show	GitHub Exploit DB Packet Storm

203	8.1	HIGH Network	-	-	Code injection in SQL code generation in Apache Flink 1.15.0 through 1.20.x and 2.0.0 through 2.x allows authenticated users with query submission privileges to execute arbitrary code on TaskManagers… New	CWE-94 Code Injection	CVE-2026-35194	2026-05-16 07:16	2026-05-16	Show	GitHub Exploit DB Packet Storm

204	7.5	HIGH Network	-	-	radare2 6.1.5 contains a use-after-free vulnerability in the gdbr_pids_list() function within the GDB client core that allows remote attackers to cause a denial of service or potentially execute arbi… New	CWE-416 Use After Free	CVE-2026-8696	2026-05-16 06:16	2026-05-16	Show	GitHub Exploit DB Packet Storm

205	8.8	HIGH Network	-	-	Out of bounds write in Fonts in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High) New	CWE-787 Out-of-bounds Write	CVE-2026-8558	2026-05-16 06:16	2026-05-15	Show	GitHub Exploit DB Packet Storm

206	7.5	HIGH Network	-	-	phpMyFAQ before 4.1.2 contains an information disclosure vulnerability in the getIdFromSolutionId() method that lacks permission filtering, allowing unauthenticated attackers to enumerate restricted … New	CWE-863 Incorrect Authorization	CVE-2026-46366	2026-05-16 06:16	2026-05-16	Show	GitHub Exploit DB Packet Storm

207	5.4	MEDIUM Network	-	-	phpMyFAQ before 4.1.2 contains a stored cross-site scripting vulnerability in FAQ creation and update endpoints that bypass sanitization through encode-decode cycles. The vulnerability allows authent… New	CWE-79 Cross-site Scripting	CVE-2026-46363	2026-05-16 06:16	2026-05-16	Show	GitHub Exploit DB Packet Storm

208	5.4	MEDIUM Network	-	-	phpMyFAQ before 4.1.2 contains a stored cross-site scripting vulnerability in SvgSanitizer::decodeAllEntities() that limits recursive entity decoding to 5 iterations, allowing attackers to bypass san… New	CWE-79 Cross-site Scripting	CVE-2026-46360	2026-05-16 06:16	2026-05-16	Show	GitHub Exploit DB Packet Storm

209	8.1	HIGH Network	-	-	Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.0, he LDAP and OAuth authentication flows use a TOCTOU (Time-of-Check-Time-of-Use) patt… New	CWE-269 CWE-362 Improper Privilege Management Race Condition	CVE-2026-45675	2026-05-16 06:16	2026-05-16	Show	GitHub Exploit DB Packet Storm

210	8.8	HIGH Network	-	-	Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.8.12, the /api/v1/utils/code/execute endpoint executes arbitrary Python code via Jupyter … New	CWE-863 Incorrect Authorization	CVE-2026-45672	2026-05-16 06:16	2026-05-16	Show	GitHub Exploit DB Packet Storm