Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 17, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
224641 2.1 注意 オラクル - Oracle Sun Solaris 8、9、10、および 11 における Libraries/Libc の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-0570 2013-04-18 15:21 2013-04-16 Show GitHub Exploit DB Packet Storm
224642 5 警告 Google - Google Chrome OS における ドメインホワイトリスト保護メカニズムを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-2835 2013-04-18 14:09 2013-04-15 Show GitHub Exploit DB Packet Storm
224643 5 警告 Google - Google Chrome OS におけるドメインホワイトリスト保護メカニズムを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-2834 2013-04-18 14:07 2013-04-15 Show GitHub Exploit DB Packet Storm
224644 10 危険 Google - Google Chrome OS におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2013-2833 2013-04-18 14:03 2013-04-15 Show GitHub Exploit DB Packet Storm
224645 5 警告 Google - Google Chrome OS の O3D プラグインにおける重要な情報を取得される脆弱性 CWE-119
バッファエラー 		CVE-2013-2832 2013-04-18 14:02 2013-04-15 Show GitHub Exploit DB Packet Storm
224646 6.8 警告 シスコシステムズ - Cisco Unified Presence のサーバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-1197 2013-04-17 19:30 2013-04-16 Show GitHub Exploit DB Packet Storm
224647 5 警告 シスコシステムズ - Cisco ASA および Cisco Firewall Services Module の SSH の実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-DesignError
CVE-2013-1193 2013-04-17 19:28 2013-04-12 Show GitHub Exploit DB Packet Storm
224648 5 警告 シスコシステムズ - Cisco Jabber Extensible Communications Platform の Connection Manager におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-1187 2013-04-17 19:26 2013-04-12 Show GitHub Exploit DB Packet Storm
224649 5.4 警告 シスコシステムズ - Cisco Adaptive Security Appliances におけるサービス運用妨害 (DoS) の脆弱性 CWE-362
競合状態 		CVE-2012-5415 2013-04-17 19:23 2013-04-16 Show GitHub Exploit DB Packet Storm
224650 6.8 警告 bestwebsharing - Groovy Media Player におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-2760 2013-04-17 14:41 2013-04-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
71 6.4 MEDIUM
Network 		- - Cookie Law Bar 1.2.1 contains a stored cross-site scripting vulnerability that allows authenticated attackers to inject malicious scripts by submitting unsanitized input to the Bar Message field. Att… New CWE-79
Cross-site Scripting 		CVE-2021-47957 2026-05-17 01:16 2026-05-17 Show GitHub Exploit DB Packet Storm
72 8.2 HIGH
Network 		- - EgavilanMedia PHPCRUD 1.0 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the firstname parameter. Attackers… New CWE-89
SQL Injection 		CVE-2021-47956 2026-05-17 01:16 2026-05-17 Show GitHub Exploit DB Packet Storm
73 5.4 MEDIUM
Network 		- - CouchCMS 2.2.1 contains a cross-site scripting vulnerability that allows authenticated attackers to execute arbitrary JavaScript by uploading malicious SVG files through the file upload functionality… New CWE-79
Cross-site Scripting 		CVE-2021-47955 2026-05-17 01:16 2026-05-17 Show GitHub Exploit DB Packet Storm
74 8.2 HIGH
Network 		- - LayerBB 1.1.4 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the search_query parameter. Attackers can send… New CWE-89
SQL Injection 		CVE-2021-47954 2026-05-17 01:16 2026-05-17 Show GitHub Exploit DB Packet Storm
75 9.8 CRITICAL
Network 		- - python jsonpickle 2.0.0 contains a remote code execution vulnerability that allows attackers to execute arbitrary Python commands by deserializing malicious JSON payloads containing py/repr objects. … New CWE-94
Code Injection 		CVE-2021-47952 2026-05-17 01:16 2026-05-17 Show GitHub Exploit DB Packet Storm
76 7.5 HIGH
Network 		- - Home Assistant Community Store (HACS) 1.10.0 contains a path traversal vulnerability that allows unauthenticated attackers to read sensitive files by traversing directories via the /hacsfiles/ endpoi… New CWE-22
Path Traversal 		CVE-2021-47942 2026-05-17 01:16 2026-05-17 Show GitHub Exploit DB Packet Storm
77 5.3 MEDIUM
Network 		- - MyBB Timeline Plugin 1.0 contains cross-site scripting vulnerabilities that allow attackers to inject malicious scripts through thread titles, post content, and user profile fields like Location and … New CWE-79
Cross-site Scripting 		CVE-2021-47934 2026-05-17 01:16 2026-05-17 Show GitHub Exploit DB Packet Storm
78 7.8 HIGH
Local 		- - Kite 4.2.0.1 U1 contains an unquoted service path vulnerability in the KiteService Windows service that allows local attackers to escalate privileges by exploiting the service binary path. Attackers … New CWE-428
 Unquoted Search Path or Element 		CVE-2020-37247 2026-05-17 01:16 2026-05-17 Show GitHub Exploit DB Packet Storm
79 6.2 MEDIUM
Local 		- - Supsystic Backup 2.3.9 contains a local file inclusion vulnerability that allows unauthenticated attackers to read and delete arbitrary files by manipulating the download path parameter. Attackers ca… New CWE-98
 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') 		CVE-2020-37246 2026-05-17 01:16 2026-05-17 Show GitHub Exploit DB Packet Storm
80 7.5 HIGH
Network 		- - Supsystic Digital Publications 1.6.9 contains a path traversal vulnerability in the Folder input field that allows attackers to access files outside the web root by injecting directory traversal sequ… New CWE-79
Cross-site Scripting 		CVE-2020-37245 2026-05-17 01:16 2026-05-17 Show GitHub Exploit DB Packet Storm