Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
245971	10	危険	Digium	-	Asterisk の IAX2 チャネルドライバにおけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-2488	2012-06-26 15:46	2007-05-7	Show	GitHub Exploit DB Packet Storm

245972	7.5	危険	Atomix Productions	-	AtomixMP3 におけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2007-2487	2012-06-26 15:46	2007-05-3	Show	GitHub Exploit DB Packet Storm

245973	7.1	危険	Cerulean Studios	-	Cerulean Studios Trillian Pro における重要な情報を取得される脆弱性	-	CVE-2007-2479	2012-06-26 15:46	2007-05-2	Show	GitHub Exploit DB Packet Storm

245974	9.3	危険	Cerulean Studios	-	Cerulean Studios Trillian Pro の IRC コンポーネントにおけるヒープベースのバッファオーバーフローの脆弱性	-	CVE-2007-2478	2012-06-26 15:46	2007-05-2	Show	GitHub Exploit DB Packet Storm

245975	7.5	危険	CMS Made Simple	-	CMS Made Simple の stylesheet.php における SQL インジェクションの脆弱性	-	CVE-2007-2473	2012-06-26 15:46	2007-04-24	Show	GitHub Exploit DB Packet Storm

245976	5.8	警告	filerun	-	FileRun の index.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-2470	2012-06-26 15:46	2007-05-2	Show	GitHub Exploit DB Packet Storm

245977	7.5	危険	filerun	-	FileRun の index.php における SQL インジェクションの脆弱性	-	CVE-2007-2469	2012-06-26 15:46	2007-05-2	Show	GitHub Exploit DB Packet Storm

245978	7.5	危険	firefly	-	FireFly の modules/admin/include/config.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2460	2012-06-26 15:46	2007-05-2	Show	GitHub Exploit DB Packet Storm

245979	7.5	危険	firefly	-	FireFly における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2456	2012-06-26 15:46	2007-05-2	Show	GitHub Exploit DB Packet Storm

245980	6	警告	GNU Project	-	GNU findutils の locate におけるヒープベースのバッファオーバーフローの脆弱性	-	CVE-2007-2452	2012-06-26 15:46	2007-06-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
441	8.7	HIGH Network	openwebui	open_webui	Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.0, the tool_servers and terminal_servers keys in utils/tools.py do use a prefix. When t… New	CWE-668 Exposure of Resource to Wrong Sphere	CVE-2026-44552	2026-05-19 03:32	2026-05-16	Show	GitHub Exploit DB Packet Storm

442	8.3	HIGH Network	google	chrome	Use after free in HID in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially perform a sandbox escape via a crafted H… New	CWE-416 Use After Free	CVE-2026-8515	2026-05-19 03:32	2026-05-15	Show	GitHub Exploit DB Packet Storm

443	5.3	MEDIUM Network	pyload	pyload	pyLoad is a free and open-source download manager written in Python. Prior to 0.5.0b3.dev100, pyload-ng WebUI returns full Python traceback details to clients on unhandled exceptions. Because /web/<p… Update	CWE-209 Information Exposure Through an Error Message	CVE-2026-44226	2026-05-19 03:25	2026-05-12	Show	GitHub Exploit DB Packet Storm

444	6.5	MEDIUM Network	guimard	apache\	Apache::Session::Generate::SHA256 versions before 1.3.19 for Perl create insecure session ids. Apache::Session::Generate::SHA256 generated session ids insecurely. The default session id generator re… New	CWE-338 CWE-340 Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) Generation of Predictable Numbers or Identifiers	CVE-2026-8503	2026-05-19 03:23	2026-05-15	Show	GitHub Exploit DB Packet Storm

445	5.4	MEDIUM Network	google	chrome	Incorrect security UI in Fullscreen in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium) New	CWE-451 User Interface (UI) Misrepresentation of Critical Information	CVE-2026-8561	2026-05-19 03:22	2026-05-15	Show	GitHub Exploit DB Packet Storm

446	4.3	MEDIUM Network	google	chrome	Side-channel information leakage in Navigation in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Mediu… New	CWE-1300 Improper Protection of Physical Side Channels	CVE-2026-8562	2026-05-19 03:21	2026-05-15	Show	GitHub Exploit DB Packet Storm

447	9.1	CRITICAL Network	-	-	DumbAssets through 1.0.11 contains a path traversal vulnerability in the POST /api/delete-file endpoint and filesToDelete array parameters that allows unauthenticated attackers to delete arbitrary fi… New	CWE-22 Path Traversal	CVE-2026-45230	2026-05-19 03:17	2026-05-19	Show	GitHub Exploit DB Packet Storm

448	10.0	CRITICAL Network	-	-	Improper authentication in Azure Local Disconnected Operations allows an unauthorized attacker to elevate privileges over a network. New	CWE-287 Improper Authentication	CVE-2026-42822	2026-05-19 03:17	2026-05-19	Show	GitHub Exploit DB Packet Storm

449	8.8	HIGH Network	-	-	Thermo Fisher Scientific Torrent Suite Dx through 5.14.2 has a privilege escalation vulnerability that may allow an authenticated user with limited access privileges to gain unauthorized administrato… New	CWE-269 Improper Privilege Management	CVE-2026-41085	2026-05-19 03:17	2026-05-19	Show	GitHub Exploit DB Packet Storm

450	6.2	MEDIUM Local	-	-	OpENer v2.3-558-g1e99582 contains an out-of-bounds read vulnerability in the Common Packet Format (CPF) parser, specifically in CreateCommonPacketFormatStructure() in source/src/enet_encap/cpf.c. A c… New	CWE-125 Out-of-bounds Read	CVE-2026-38719	2026-05-19 03:17	2026-05-19	Show	GitHub Exploit DB Packet Storm