Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 31, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
4741 7.6 重要
Network 		FreeScout FreeScout FreeScoutにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-39384 2026-04-27 10:48 2026-04-7 Show GitHub Exploit DB Packet Storm
4742 3.1
Network 		OpenBao OpenBao OpenBaoにおける証明書検証に関する脆弱性 CWE-295
不正な証明書検証 		CVE-2026-39388 2026-04-27 10:48 2026-04-21 Show GitHub Exploit DB Packet Storm
4743 4.9 警告
Network 		OpenBao OpenBao OpenBaoにおけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2026-39946 2026-04-27 10:48 2026-04-21 Show GitHub Exploit DB Packet Storm
4744 5.7 警告
Adjacent 		OpenClaw OpenClaw OpenClawにおける重要な情報の平文での送信に関する脆弱性 CWE-319
重要な情報の平文での送信 		CVE-2026-40045 2026-04-27 10:48 2026-04-21 Show GitHub Exploit DB Packet Storm
4745 6.5 警告
Network 		Mervin Praison (MervinPraison) PraisonAI Mervin Praison (MervinPraison)のPraisonAIにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-40150 2026-04-27 10:48 2026-04-9 Show GitHub Exploit DB Packet Storm
4746 8.8 重要
Network 		Mervin Praison (MervinPraison) PraisonAI Mervin Praison (MervinPraison)のPraisonAIにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-40157 2026-04-27 10:48 2026-04-10 Show GitHub Exploit DB Packet Storm
4747 6.5 警告
Network 		Linux Foundation tekton pipelines Linux Foundationのtekton pipelinesにおける送信データへの重要な情報の挿入に関する脆弱性 CWE-201
CWE-noinfo
CVE-2026-40161 2026-04-27 10:48 2026-04-21 Show GitHub Exploit DB Packet Storm
4748 8.1 重要
Network 		SysAdmins Media HomeBox SysAdmins MediaのHomeBoxにおける不適切な所有権の割り当てに関する脆弱性 CWE-708
不適切な所有権の割り当て 		CVE-2026-40196 2026-04-27 10:48 2026-04-17 Show GitHub Exploit DB Packet Storm
4749 2.7
Network 		OpenBao OpenBao OpenBaoにおけるセキュリティトークンの割り当ての制限に関する脆弱性 CWE-1259
セキュリティトークンの割り当ての不適切な制限 		CVE-2026-40264 2026-04-27 10:48 2026-04-21 Show GitHub Exploit DB Packet Storm
4750 4.3 警告
Network 		dnnsoftware dotnetnuke dnnsoftwareのdotnetnukeにおける認可に関する脆弱性 CWE-285
不適切な認可 		CVE-2026-40305 2026-04-27 10:48 2026-04-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
791 - - - Use after free in SurfaceCapture in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) New CWE-416
 Use After Free 		CVE-2026-9961 2026-05-29 11:35 2026-05-29 Show GitHub Exploit DB Packet Storm
792 - - - Out of bounds write in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) New CWE-787
 Out-of-bounds Write 		CVE-2026-9965 2026-05-29 11:35 2026-05-29 Show GitHub Exploit DB Packet Storm
793 - - - Insufficient validation of untrusted input in Input in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted … New CWE-20
 Improper Input Validation  		CVE-2026-9979 2026-05-29 11:35 2026-05-29 Show GitHub Exploit DB Packet Storm
794 - - - Insufficient validation of untrusted input in Printing in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a craft… New CWE-20
 Improper Input Validation  		CVE-2026-9980 2026-05-29 11:35 2026-05-29 Show GitHub Exploit DB Packet Storm
795 - - - Inappropriate implementation in Skia in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chrom… New - CVE-2026-9981 2026-05-29 11:35 2026-05-29 Show GitHub Exploit DB Packet Storm
796 - - - Inappropriate implementation in Media in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to bypass same origin policy via a crafted video file. (Chromium security severity: High) New - CVE-2026-9989 2026-05-29 11:35 2026-05-29 Show GitHub Exploit DB Packet Storm
797 - - - Use after free in WebAppInstalls in Google Chrome on Mac prior to 148.0.7778.216 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruptio… New CWE-416
 Use After Free 		CVE-2026-9990 2026-05-29 11:35 2026-05-29 Show GitHub Exploit DB Packet Storm
798 4.7 MEDIUM
Network 		- - typescript-utcp is a typescript implementation of UTCP. Prior to 1.1.2, the @utcp/http package is vulnerable to a blind Server-Side Request Forgery (SSRF) caused by a trust-boundary inconsistency bet… New CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-45366 2026-05-29 07:17 2026-05-29 Show GitHub Exploit DB Packet Storm
799 7.3 HIGH
Network 		- - Better Auth is an authentication and authorization library for TypeScript. Prior to 1.4.17 and 1.5.0-beta.9, Better Auth's HTTP rate limiter keyed each request by the exact textual IP address it rece… New CWE-307
mproper Restriction of Excessive Authentication Attempts 		CVE-2026-45364 2026-05-29 07:17 2026-05-29 Show GitHub Exploit DB Packet Storm
800 7.5 HIGH
Network 		- - Lakeside SysTrack Agent versions prior to 11.2.1.28, 11.3.0.38, 11.4.0.24, 11.5.0.15 contain an out-of-bounds read vulnerability in the Command ID 30 UDP packet handler that allows remote attackers t… New CWE-125
CWE-754
Out-of-bounds Read
 Improper Check for Unusual or Exceptional Conditions 		CVE-2026-39929 2026-05-29 07:16 2026-05-29 Show GitHub Exploit DB Packet Storm