Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 21, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
224501 5 警告 Acquia Inc. - Drupal Commons モジュールで使用される Drupal 用 Commons Groups モジュールにおけるグループに任意のコンテンツを投稿される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-1907 2013-07-19 12:19 2013-03-27 Show GitHub Exploit DB Packet Storm
224502 10 危険 富士通
ターボリナックス
IBM
Apache Software Foundation
オラクル		 - Apache HTTP Server の mod_isapi における脆弱性 CWE-noinfo
情報不足 		CVE-2010-0425 2013-07-18 19:23 2010-03-5 Show GitHub Exploit DB Packet Storm
224503 4.3 警告 アップル
IBM
Apache Software Foundation
オラクル		 - Apache HTTP Server の mod_proxy_http における重要なレスポンスを取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-2068 2013-07-18 18:37 2010-06-18 Show GitHub Exploit DB Packet Storm
224504 4.3 警告 日本電気
IBM
Apache Software Foundation
アップル
サイバートラスト株式会社
富士通
サン・マイクロシステムズ
ターボリナックス
ヒューレット・パッカード
オラクル
日立
レッドハット		 - Apache HTTP Server の mod_imap および mod_imagemap におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-5000 2013-07-18 18:29 2007-12-13 Show GitHub Exploit DB Packet Storm
224505 5 警告 IBM
Apache Software Foundation
アップル
サイバートラスト株式会社
富士通
ヒューレット・パッカード
オラクル
日立
レッドハット		 - Apache HTTP Server の mod_proxy モジュールにおけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-3847 2013-07-18 18:22 2007-08-23 Show GitHub Exploit DB Packet Storm
224506 4.3 警告 ヒューレット・パッカード
Apache Software Foundation
オラクル		 - Apache HTTP Server の mod_proxy_ajp モジュールにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-3348 2013-07-18 18:21 2011-09-14 Show GitHub Exploit DB Packet Storm
224507 5 警告 オラクル - Oracle and Sun Systems Products Suite の Oracle SPARC Enterprise M シリーズサーバ における XSCF Control Package (XCP) に関する脆弱性 CWE-noinfo
情報不足 		CVE-2013-3773 2013-07-18 15:46 2013-07-16 Show GitHub Exploit DB Packet Storm
224508 4.3 警告 オラクル - Oracle iLearning における Learner Pages に関する脆弱性 CWE-noinfo
情報不足 		CVE-2013-3775 2013-07-18 15:46 2013-07-16 Show GitHub Exploit DB Packet Storm
224509 4 警告 オラクル - Oracle Industry Applications の Oracle Policy Automation における Determinations Engine に関する脆弱性 CWE-noinfo
情報不足 		CVE-2013-3816 2013-07-18 15:46 2013-07-16 Show GitHub Exploit DB Packet Storm
224510 5 警告 オラクル - Oracle Sun Solaris における Utility/Remote Execution Server に関する脆弱性 CWE-noinfo
情報不足 		CVE-2013-0398 2013-07-18 15:46 2013-07-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
481 9.8 CRITICAL
Network 		- - The Piotnet Addons for Elementor Pro plugin for WordPress is vulnerable to arbitrary file upload due to missing file type validation in the 'pafe_ajax_form_builder' function in all versions up to, an… New CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2026-4885 2026-05-19 23:38 2026-05-19 Show GitHub Exploit DB Packet Storm
482 9.8 CRITICAL
Network 		- - The Piotnet Forms plugin for WordPress is vulnerable to arbitrary file upload due to missing file type validation in the 'piotnetforms_ajax_form_builder' function in all versions up to, and including… New CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2026-4883 2026-05-19 23:38 2026-05-19 Show GitHub Exploit DB Packet Storm
483 7.5 HIGH
Network 		- - The Contest Gallery plugin for WordPress is vulnerable to SQL Injection via the 'form_input' parameter in versions up to, and including, 28.1.6. This is due to insufficient escaping on the user suppl… New CWE-89
SQL Injection 		CVE-2026-8912 2026-05-19 23:38 2026-05-19 Show GitHub Exploit DB Packet Storm
484 6.3 MEDIUM
Network 		tencent weknora A vulnerability has been found in Tencent WeKnora up to 0.3.6. Affected by this issue is the function getKnowledgeBaseForInitialization of the file internal/handler/initialization.go of the component… New CWE-285
CWE-639
Improper Authorization
 Authorization Bypass Through User-Controlled Key 		CVE-2026-8786 2026-05-19 23:30 2026-05-18 Show GitHub Exploit DB Packet Storm
485 5.3 MEDIUM
Network 		google chrome Object lifecycle issue in Dawn in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium se… Update CWE-664
 Improper Control of a Resource Through its Lifetime 		CVE-2026-8582 2026-05-19 23:30 2026-05-15 Show GitHub Exploit DB Packet Storm
486 7.5 HIGH
Network 		vercel ai A vulnerability has been found in vercel ai up to 3.0.97. Impacted is the function run of the file .github/workflows/prettier-on-automerge.yml of the component PR Branch Name Interpolation. The manip… New CWE-77
CWE-78
Command Injection
OS Command  		CVE-2026-8767 2026-05-19 23:29 2026-05-18 Show GitHub Exploit DB Packet Storm
487 4.3 MEDIUM
Network 		google chrome Heap buffer overflow in GPU in Google Chrome on Android prior to 148.0.7778.168 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity… Update CWE-122
Heap-based Buffer Overflow 		CVE-2026-8552 2026-05-19 23:27 2026-05-15 Show GitHub Exploit DB Packet Storm
488 3.1 LOW
Network 		google chrome Type Confusion in ANGLE in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to perform an out of bounds memory write via a crafted H… Update CWE-843
Type Confusion 		CVE-2026-8554 2026-05-19 23:27 2026-05-15 Show GitHub Exploit DB Packet Storm
489 4.3 MEDIUM
Network 		google chrome Heap buffer overflow in SwiftShader in Google Chrome on Mac and iOS prior to 148.0.7778.168 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium securi… Update CWE-122
Heap-based Buffer Overflow 		CVE-2026-8560 2026-05-19 23:27 2026-05-15 Show GitHub Exploit DB Packet Storm
490 4.3 MEDIUM
Network 		google chrome Integer overflow in Internationalization in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium secu… Update CWE-472
 External Control of Assumed-Immutable Web Parameter 		CVE-2026-8559 2026-05-19 23:26 2026-05-15 Show GitHub Exploit DB Packet Storm