Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
246841	7.5	危険	cybozu labs	-	Musoo における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-3297	2012-06-26 15:46	2007-06-20	Show	GitHub Exploit DB Packet Storm

246842	6.8	警告	アバイア	-	Avaya IP Softphone の ActiveX コントロールにおける任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2007-3286	2012-06-26 15:46	2007-09-11	Show	GitHub Exploit DB Packet Storm

246843	7.8	危険	アップル	-	Apple Safari の corefoundation.dll におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-3284	2012-06-26 15:46	2007-06-19	Show	GitHub Exploit DB Packet Storm

246844	7.8	危険	アップルマイクロソフト	-	Apple Safari におけるサービス運用妨害 (アプリケーションクラッシュ) 状態となる脆弱性	-	CVE-2007-3274	2012-06-26 15:46	2007-06-19	Show	GitHub Exploit DB Packet Storm

246845	7.5	危険	FuseTalk	-	FuseTalk の index.cfm における SQL インジェクションの脆弱性	-	CVE-2007-3273	2012-06-26 15:46	2007-06-19	Show	GitHub Exploit DB Packet Storm

246846	4.3	警告	fuzzylime forum	-	Fuzzylime Forum の low.php におけるクロスサイトスクリプティングの脆弱性の脆弱性	-	CVE-2007-3267	2012-06-26 15:46	2007-06-19	Show	GitHub Exploit DB Packet Storm

246847	4.3	警告	dkret	-	dKret の widgets/widget_search.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3261	2012-06-26 15:46	2007-06-19	Show	GitHub Exploit DB Packet Storm

246848	7.8	危険	Astaro	-	ASG におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-3253	2012-06-26 15:46	2007-06-18	Show	GitHub Exploit DB Packet Storm

246849	7.8	危険	e-vision	-	e-Vision CMS におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-3251	2012-06-26 15:46	2007-06-18	Show	GitHub Exploit DB Packet Storm

246850	7.5	危険	Elxis	-	Elxis CMS の mod_banners.php における SQL インジェクションの脆弱性	-	CVE-2007-3250	2012-06-26 15:46	2007-06-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
491	8.3	HIGH Network	google	chrome	Use after free in UI in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High) New	CWE-416 Use After Free	CVE-2026-9951	2026-05-30 01:28	2026-05-29	Show	GitHub Exploit DB Packet Storm

492	8.8	HIGH Network	google	chrome	Use after free in WebAudio in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High) New	CWE-416 Use After Free	CVE-2026-9952	2026-05-30 01:27	2026-05-29	Show	GitHub Exploit DB Packet Storm

493	5.9	MEDIUM Network	-	-	SharpCompress is a fully managed C# library to deal with many compression types and formats. In 0.47.4 and earlier, a path traversal vulnerability in IArchive.WriteToDirectory() allows a malicious ar… Update	CWE-22 Path Traversal	CVE-2026-44788	2026-05-30 01:25	2026-05-27	Show	GitHub Exploit DB Packet Storm

494	6.5	MEDIUM Network	-	-	Streamlink is a CLI utility which pipes video streams from various services into a video player. Prior to 8.4.0, Streamlink's HLS and DASH parsers do not validate the URI scheme of segment entries an… Update	CWE-22 Path Traversal	CVE-2026-44353	2026-05-30 01:25	2026-05-28	Show	GitHub Exploit DB Packet Storm

495	6.1	MEDIUM Network	-	-	Authlib is a Python library which builds OAuth and OpenID Connect servers. Prior to 1.6.12 and 1.7.1, an unauthenticated open redirect in Authlib's OpenIDImplicitGrant and OpenIDHybridGrant authoriza… New	CWE-601 CWE-863 Open Redirect Incorrect Authorization	CVE-2026-44681	2026-05-30 01:25	2026-05-28	Show	GitHub Exploit DB Packet Storm

496	7.5	HIGH Network	-	-	MapServer is a system for developing web-based GIS applications. From 6.4.0 to before 8.6.3, msSLDParseUserStyle always calls _SLDApplyRuleValues(psRule, psLayer, 1); for any <Rule> carrying <ElseFil… New	CWE-129 CWE-476 Improper Validation of Array Index NULL Pointer Dereference	CVE-2026-45104	2026-05-30 01:25	2026-05-28	Show	GitHub Exploit DB Packet Storm

497	-		-	-	CloudNativePG is a platform designed to manage PostgreSQL databases within Kubernetes environments. Prior to 1.29.1 and 1.28.3, the CloudNativePG metrics exporter opens its PostgreSQL connection as t… New	CWE-250 CWE-271 CWE-426 Execution with Unnecessary Privileges Privilege Dropping / Lowering Errors Untrusted Search Path	CVE-2026-44477	2026-05-30 01:25	2026-05-29	Show	GitHub Exploit DB Packet Storm

498	9.6	CRITICAL Network	-	-	MeshCore Card provides MeshCore Lovelace card for Home Assistant. Prior to 0.3.3, Meshcore node names are rendered without HTML escaping in meshcore-card, allowing any node within direct or indirect … New	CWE-79 Cross-site Scripting	CVE-2026-45323	2026-05-30 01:25	2026-05-29	Show	GitHub Exploit DB Packet Storm

499	8.3	HIGH Network	-	-	Home Assistant is open source home automation software that puts local control and privacy first. Prior to 2026.4.1 for iOS and 2026.4.4 for Android, he Home Assistant Companion apps for Android and … New	CWE-94 CWE-346 CWE-749 CWE-940 Code Injection Origin Validation Error Exposed Dangerous Method or Function Improper Verification of Source of a Communication Channel	CVE-2026-44698	2026-05-30 01:25	2026-05-29	Show	GitHub Exploit DB Packet Storm

500	-		-	-	Mermaid is a JavaScript tool that uses Markdown-inspired text to create and modify diagrams and charts. Prior to 10.9.6 and 11.15.0, Mermaid's default configuration allows injecting CSS that applies… New	CWE-94 Code Injection	CVE-2026-41159	2026-05-30 01:25	2026-05-30	Show	GitHub Exploit DB Packet Storm