Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 17, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228631	4.9	警告	レッドハット	-	RHEL などの Linux kernel の utrace サポートにおけるメモリ二重解放の脆弱性	CWE-399 リソース管理の問題	CVE-2008-2944	2012-12-20 18:52	2008-06-2	Show	GitHub Exploit DB Packet Storm

228632	7.5	危険	レッドハット	-	Red Hat adminutil におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-2932	2012-12-20 18:52	2008-09-10	Show	GitHub Exploit DB Packet Storm

228633	7.5	危険	Wafer	-	Webmatic における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2925	2012-12-20 18:52	2008-06-30	Show	GitHub Exploit DB Packet Storm

228634	4.3	警告	Wafer	-	Webmatic におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2924	2012-12-20 18:52	2008-06-30	Show	GitHub Exploit DB Packet Storm

228635	7.5	危険	t0pp8uzz	-	artegic Dana IRC クライアントにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-2922	2012-12-20 18:52	2008-06-30	Show	GitHub Exploit DB Packet Storm

228636	7.5	危険	PreProject.com	-	E-SMART CART の productsofcat.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2917	2012-12-20 18:52	2008-06-30	Show	GitHub Exploit DB Packet Storm

228637	6.8	警告	PreProject.com	-	Pre ADS Portal における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2916	2012-12-20 18:52	2008-06-30	Show	GitHub Exploit DB Packet Storm

228638	7.5	危険	PreProject.com	-	Pre Job Board の jobseekers/JobSearch.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2915	2012-12-20 18:52	2008-06-30	Show	GitHub Exploit DB Packet Storm

228639	7.5	危険	PreProject.com	-	PHP JOBWEBSITE PRO の jobseekers/JobSearch3.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2914	2012-12-20 18:52	2008-06-30	Show	GitHub Exploit DB Packet Storm

228640	6.8	警告	webchamado	-	WebChamado の admin/index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2907	2012-12-20 18:52	2008-06-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
3021	-		-	-	CI4MS is a CodeIgniter 4-based CMS skeleton that delivers a production-ready, modular architecture with RBAC authorization and theme support. From version 0.26.0.0 to before version 0.31.7.0, a theme…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2026-41587	2026-05-8 00:16	2026-05-7	Show	GitHub Exploit DB Packet Storm

3022	-		-	-	CI4MS is a CodeIgniter 4-based CMS skeleton that delivers a production-ready, modular architecture with RBAC authorization and theme support. Prior to version 0.31.5.0, ci4ms Theme::upload extracts u…	CWE-22 Path Traversal	CVE-2026-41203	2026-05-8 00:16	2026-05-7	Show	GitHub Exploit DB Packet Storm

3023	7.1	HIGH Adjacent	-	-	AGL agl-service-can-low-level thru 17.1.12 contains a heap buffer over-read in the isotp-c library. In isotp_continue_receive (receive.c:87-89), the payload_length for a Single Frame is extracted fro…	CWE-126 Buffer Over-read	CVE-2026-37532	2026-05-8 00:15	2026-05-2	Show	GitHub Exploit DB Packet Storm

3024	7.8	HIGH Local	-	-	AGL app-framework-binder (afb-daemon) through v19.90.0 contains a privilege escalation vulnerability in the supervision Do command. The on_supervision_call function in src/afb-supervision.c explicitl…	CWE-269 Improper Privilege Management	CVE-2026-37525	2026-05-8 00:15	2026-05-2	Show	GitHub Exploit DB Packet Storm

3025	7.8	HIGH Local	-	-	AGL app-framework-binder (afb-daemon) through v19.90.0 allows any local process to execute privileged supervision commands (Exit, Do, Sclose, Config, Trace, Debug, Token, slist) without authenticatio…	CWE-284 Improper Access Control	CVE-2026-37526	2026-05-8 00:15	2026-05-2	Show	GitHub Exploit DB Packet Storm

3026	9.8	CRITICAL Network	-	-	AGL app-framework-main thru 17.1.12 contains a Zip Slip path traversal vulnerability (CWE-22) combined with a TOCTOU race condition (CWE-367) in the widget installation flow. The is_valid_filename fu…	CWE-22 CWE-367 Path Traversal Time-of-check Time-of-use (TOCTOU) Race Condition	CVE-2026-37531	2026-05-8 00:15	2026-05-2	Show	GitHub Exploit DB Packet Storm

3027	3.1	LOW Network	google	chrome	Inappropriate implementation in MHTML in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who convinced a user to engage in specific UI gestures to leak cross-origin data via a crafted …	CWE-352 CWE-1021 Origin Validation Error Improper Restriction of Rendered UI Layers or Frames	CVE-2026-8022	2026-05-8 00:15	2026-05-7	Show	GitHub Exploit DB Packet Storm

3028	5.5	MEDIUM Local	-	-	Open CASCADE Technology (OCCT) V8_0_0_rc5 contains multiple vulnerabilities in its IGES and STEP file parsers that can be triggered by crafted IGES or STEP files. These issues include an out-of-bound…	CWE-125 Out-of-bounds Read	CVE-2026-42481	2026-05-8 00:15	2026-05-2	Show	GitHub Exploit DB Packet Storm

3029	7.5	HIGH Network	-	-	AGL agl-service-can-low-level thru 17.1.12 contains a stack buffer overflow in the uds-c library. The send_diagnostic_request function in uds.c allocates a 6-byte stack buffer (MAX_DIAGNOSTIC_PAYLOAD…	CWE-121 Stack-based Buffer Overflow	CVE-2026-37530	2026-05-8 00:15	2026-05-2	Show	GitHub Exploit DB Packet Storm

3030	9.8	CRITICAL Network	-	-	Integer underflow vulnerability in Open-SAE-J1939 thru commit b6caf884df46435e539b1ecbf92b6c29b345bdfe (2025-11-30) in SAE_J1939_Read_Transport_Protocol_Data_Transfer,allows attackers to write to arb…	CWE-191 Integer Underflow (Wrap or Wraparound)	CVE-2026-37534	2026-05-8 00:15	2026-05-2	Show	GitHub Exploit DB Packet Storm