Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
248811	6.9	警告	アップル	-	Apple Mac OS X の Bluetooth における権限を取得される脆弱性	CWE-362 競合状態	CVE-2012-0649	2012-05-14 14:38	2012-05-11	Show	GitHub Exploit DB Packet Storm

248812	7.5	危険	アップル Google	-	WebKit における同一生成元ポリシーを回避される脆弱性	CWE-20 不適切な入力確認	CVE-2011-3056	2012-05-11 15:40	2012-03-21	Show	GitHub Exploit DB Packet Storm

248813	10	危険	アップル Google	-	WebKit の拡張サブシステムにおける任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-3046	2012-05-11 15:37	2012-03-8	Show	GitHub Exploit DB Packet Storm

248814	9	危険	ヒューレット・パッカード	-	HP Performance Insight for Networks における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-2009	2012-05-10 18:57	2012-05-7	Show	GitHub Exploit DB Packet Storm

248815	4.3	警告	ヒューレット・パッカード	-	HP Performance Insight for Networks におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2008	2012-05-10 18:56	2012-05-7	Show	GitHub Exploit DB Packet Storm

248816	7.5	危険	ヒューレット・パッカード	-	HP Performance Insight for Networks における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-2007	2012-05-10 18:55	2012-05-7	Show	GitHub Exploit DB Packet Storm

248817	9.3	危険	XnSoft	-	XnViewer における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2012-0685	2012-05-10 18:21	2012-05-9	Show	GitHub Exploit DB Packet Storm

248818	9.3	危険	XnSoft	-	XnViewer における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2012-0684	2012-05-10 18:21	2012-05-9	Show	GitHub Exploit DB Packet Storm

248819	9.3	危険	FFmpeg	-	FFmpeg の asfrtp_parse_packet 関数における整数アンダーフローの脆弱性	CWE-189 数値処理の問題	CVE-2011-4031	2012-05-10 18:19	2012-05-9	Show	GitHub Exploit DB Packet Storm

248820	9.3	危険	マイクロソフト	-	Microsoft .NET Framework における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2012-0161	2012-05-10 18:16	2012-05-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1991	-		-	-	OneDev is a Git server with CI/CD, kanban, and packages. Prior to 15.0.2, there is behavior that breaks the expected boundary between repository-controlled LFS metadata and server-local filesystem pa…	CWE-22 Path Traversal	CVE-2026-44647	2026-05-15 23:55	2026-05-15	Show	GitHub Exploit DB Packet Storm

1992	7.7	HIGH Network	-	-	python-utcp is the python implementation of UTCP. Prior to 1.1.3, _prepare_environment() in cli_communication_protocol.py passes a full copy of os.environ to every CLI subprocess. When combined with …	CWE-526 Cleartext Storage of Sensitive Information in an Environment Variable	CVE-2026-45370	2026-05-15 23:55	2026-05-15	Show	GitHub Exploit DB Packet Storm

1993	-		-	-	rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.10.0 to before 0.10.79, CipherCtxRef::cipher_update, CipherCtxRef::cipher_update_vec, and symm::Crypter::update incorr…	CWE-122 Heap-based Buffer Overflow	CVE-2026-44662	2026-05-15 23:53	2026-05-15	Show	GitHub Exploit DB Packet Storm

1994	-		-	-	Tuist is a virtual platform team for Swift app devs. In 1.180.8 and earlier, the DELETE /api/projects/{account_handle}/{project_handle}/previews/{preview_id} endpoint loads the preview by its UUID wi…	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2026-44678	2026-05-15 23:53	2026-05-15	Show	GitHub Exploit DB Packet Storm

1995	4.7	MEDIUM Network	-	-	python-utcp is the python implementation of UTCP. Prior to 1.1.3, the utcp-http plugin is vulnerable to a blind Server-Side Request Forgery (SSRF) caused by a trust-boundary inconsistency between man…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-44661	2026-05-15 23:53	2026-05-15	Show	GitHub Exploit DB Packet Storm

1996	-		-	-	Tuist is a virtual platform team for Swift app devs. Prior to 1.180.10, the forgot password flow allows an unauthenticated attacker to repeatedly trigger password reset emails for a known account wit…	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2026-44679	2026-05-15 23:53	2026-05-15	Show	GitHub Exploit DB Packet Storm

1997	-		-	-	Elixir WebRTC is an Elixir implementation of the W3C WebRTC API. Prior to 0.15.1 and 0.16.1, missing DTLS peer certificate fingerprint validation in the DTLS client (active) role removes one side of …	CWE-295 Improper Certificate Validation	CVE-2026-44700	2026-05-15 23:53	2026-05-15	Show	GitHub Exploit DB Packet Storm

1998	3.7	LOW Network	-	-	Nuxt OG Image generates OG Images with Vue templates in Nuxt. The isBlockedUrl() denylist introduced in nuxt-og-image@6.2.5 to remediate GHSA-pqhr-mp3f-hrpp (Dmitry Prokhorov / Positive Technologies,…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-44589	2026-05-15 23:44	2026-05-15	Show	GitHub Exploit DB Packet Storm

1999	9.4	CRITICAL Network	-	-	Gradient is a nix-based continuous integration system. In 1.1.0, when GRADIENT_DISCOVERABLE=true (the default, and the NixOS module default), anyone who can reach /proto can register as a worker with…	CWE-306 CWE-345 CWE-862 Missing Authentication for Critical Function Insufficient Verification of Data Authenticity Missing Authorization	CVE-2026-44592	2026-05-15 23:44	2026-05-15	Show	GitHub Exploit DB Packet Storm

2000	8.1	HIGH Network	-	-	Live Helper Chat is an open-source application that enables live support websites. In 4.84v, the Live Helper Chat REST API chat update endpoint allows a REST user with lhchat/use to update a chat in …	CWE-863 Incorrect Authorization	CVE-2026-44633	2026-05-15 23:44	2026-05-15	Show	GitHub Exploit DB Packet Storm