Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
255221 9.3 危険 アドビシステムズ - Adobe Shockwave Player における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-2876 2010-09-13 15:44 2010-08-24 Show GitHub Exploit DB Packet Storm
255222 9.3 危険 アドビシステムズ - Adobe Shockwave Player における整数符号エラーの脆弱性 CWE-189
数値処理の問題 		CVE-2010-2875 2010-09-13 15:44 2010-08-24 Show GitHub Exploit DB Packet Storm
255223 9.3 危険 アドビシステムズ - Adobe Shockwave Player における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2010-2874 2010-09-13 15:44 2010-08-24 Show GitHub Exploit DB Packet Storm
255224 9.3 危険 アドビシステムズ - Adobe Shockwave Player における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-2873 2010-09-13 15:43 2010-08-24 Show GitHub Exploit DB Packet Storm
255225 9.3 危険 アドビシステムズ - Adobe Shockwave Player における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-2872 2010-09-10 15:17 2010-08-24 Show GitHub Exploit DB Packet Storm
255226 9.3 危険 アドビシステムズ - Adobe Shockwave Player の 3D オブジェクト関数における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2010-2871 2010-09-10 15:17 2010-08-24 Show GitHub Exploit DB Packet Storm
255227 9.3 危険 アドビシステムズ - Adobe Shockwave Player の DIRAPIX.dll における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-2870 2010-09-10 15:17 2010-08-24 Show GitHub Exploit DB Packet Storm
255228 9.3 危険 アドビシステムズ - Adobe Shockwave Player の IML32.dll における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-2869 2010-09-10 15:16 2010-08-24 Show GitHub Exploit DB Packet Storm
255229 9.3 危険 アドビシステムズ - Adobe Shockwave Player の IML32.dll における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-2868 2010-09-10 15:16 2010-08-24 Show GitHub Exploit DB Packet Storm
255230 4.3 警告 futomi - futomi's CGI Cafe 製高機能アクセス解析CGI におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2366 2010-09-10 12:01 2010-09-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
3461 8.8 HIGH
Network 		google chrome Insufficient validation of untrusted input in ChromeDriver in Google Chrome on Windows prior to 148.0.7778.96 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium se… CWE-20
NVD-CWE-noinfo
 Improper Input Validation  		CVE-2026-8000 2026-05-7 22:39 2026-05-7 Show GitHub Exploit DB Packet Storm
3462 7.7 HIGH
Network 		openclaw openclaw OpenClaw before 2026.4.14 contains a server-side request forgery vulnerability in browser SSRF policy that allows private-network navigation by default. Attackers can exploit this misconfiguration to… CWE-918
CWE-1188
Server-Side Request Forgery (SSRF) 
 Insecure Default Initialization of Resource 		CVE-2026-43527 2026-05-7 22:29 2026-05-5 Show GitHub Exploit DB Packet Storm
3463 6.1 MEDIUM
Network 		apache wicket Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Apache Wicket. This issue affects Apache Wicket: from 8.0.0 through 8.17.0, 9.0.0, from 10.0.0 t… CWE-79
Cross-site Scripting 		CVE-2026-42509 2026-05-7 22:16 2026-05-6 Show GitHub Exploit DB Packet Storm
3464 9.1 CRITICAL
Network 		apache wicket Missing invocation of Servlet http web request method changeSessionId after session binding can be exploited for a session fixation attack in Apache Wicket. This issue affects Apache Wicket: from 8.… CWE-384
 Session Fixation 		CVE-2026-40010 2026-05-7 22:16 2026-05-6 Show GitHub Exploit DB Packet Storm
3465 - - - Sandboxie-Plus is an open source sandbox-based isolation software for Windows. In versions 1.17.2 and earlier, NamedPipeServer::OpenHandler copies the server field from NAMED_PIPE_OPEN_REQ into a fix… CWE-121
CWE-170
Stack-based Buffer Overflow
 Improper Null Termination 		CVE-2026-34464 2026-05-7 22:16 2026-05-6 Show GitHub Exploit DB Packet Storm
3466 - - - Sandboxie-Plus is an open source sandbox-based isolation software for Windows. In versions 1.17.2 and earlier, several ProcessServer handlers (KillAllHandler, SuspendAllHandler, and RunSandboxedHandl… CWE-121
CWE-170
Stack-based Buffer Overflow
 Improper Null Termination 		CVE-2026-34462 2026-05-7 22:16 2026-05-6 Show GitHub Exploit DB Packet Storm
3467 - - - Sandboxie-Plus is an open source sandbox-based isolation software for Windows. In versions 1.17.2 and earlier, the SbieIniServer RunSbieCtrl handler contains a stack buffer overflow. The MSGID_SBIE_I… CWE-121
Stack-based Buffer Overflow 		CVE-2026-34461 2026-05-7 22:16 2026-05-6 Show GitHub Exploit DB Packet Storm
3468 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: cifs: some missing initializations on replay In several places in the code, we have a label to signify the start of the code wher… CWE-908
 Use of Uninitialized Resource 		CVE-2026-31693 2026-05-7 21:49 2026-04-30 Show GitHub Exploit DB Packet Storm
3469 6.7 MEDIUM
Local 		mediatek mt6768_firmware
mt6789_firmware
mt6877_firmware
mt6899_firmware
mt6989_firmware
mt6991_firmware
mt6993_firmware
mt8196_firmware
mt8367_firmware
mt8766_firmware
mt8768_fi… 		In geniezone, there is a possible escalation of privilege due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privileg… CWE-125
Out-of-bounds Read 		CVE-2026-20447 2026-05-7 21:43 2026-05-4 Show GitHub Exploit DB Packet Storm
3470 6.7 MEDIUM
Local 		mediatek mt6765_firmware
mt6768_firmware
mt6789_firmware
mt6877_firmware
mt6897_firmware
mt6899_firmware
mt6989_firmware
mt6991_firmware
mt6993_firmware
mt8367_firmware
mt8766_fi… 		In geniezone, there is a possible escalation of privilege due to a missing permission check. This could lead to local escalation of privilege if a malicious actor has already obtained the System priv… CWE-280
Improper Handling of Insufficient Permissions or Privileges  		CVE-2026-20448 2026-05-7 21:43 2026-05-4 Show GitHub Exploit DB Packet Storm