Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 28, 2026, 4:09 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2691 3.1
Network 		Google Google Chrome GoogleのGoogle Chromeにおける境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2026-7949 2026-05-8 12:17 2026-05-6 Show GitHub Exploit DB Packet Storm
2692 5.4 警告
Network 		Google Google Chrome GoogleのGoogle Chromeにおける複数の脆弱性 CWE-125
CWE-787
CVE-2026-7950 2026-05-8 12:17 2026-05-6 Show GitHub Exploit DB Packet Storm
2693 8.8 重要
Network 		Google Google Chrome GoogleのGoogle Chromeにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2026-7951 2026-05-8 12:17 2026-05-6 Show GitHub Exploit DB Packet Storm
2694 4.2 警告
Network 		Google Google Chrome GoogleのGoogle Chromeにおける保護メカニズムの不具合に関する脆弱性 CWE-693
保護メカニズムの不具合 		CVE-2026-7952 2026-05-8 12:17 2026-05-6 Show GitHub Exploit DB Packet Storm
2695 6.1 警告
Network 		Google Google Chrome GoogleのGoogle Chromeにおける入力確認に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2026-7953 2026-05-8 12:17 2026-05-6 Show GitHub Exploit DB Packet Storm
2696 3.1
Network 		Google Google Chrome GoogleのGoogle Chromeにおける競合状態に関する脆弱性 CWE-362
競合状態 		CVE-2026-7954 2026-05-8 12:17 2026-05-6 Show GitHub Exploit DB Packet Storm
2697 5.3 警告
Network 		Google Google Chrome GoogleのGoogle Chromeにおける初期化されていない変数の使用に関する脆弱性 CWE-457
初期化されていない変数の使用 		CVE-2026-7955 2026-05-8 12:17 2026-05-6 Show GitHub Exploit DB Packet Storm
2698 8.3 重要
Network 		Google Google Chrome GoogleのGoogle Chromeにおける解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-7956 2026-05-8 12:17 2026-05-6 Show GitHub Exploit DB Packet Storm
2699 5.4 警告
Network 		Google Google Chrome GoogleのGoogle Chromeにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-7958 2026-05-8 12:17 2026-05-6 Show GitHub Exploit DB Packet Storm
2700 3.1
Network 		Google Google Chrome GoogleのGoogle Chromeにおける不特定の脆弱性 CWE-noinfo
情報不足 		CVE-2026-7959 2026-05-8 12:16 2026-05-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
312861 4.3 MEDIUM
Network 		splunk splunk
splunk_cloud_platform 		In Splunk Enterprise versions below 9.2.3 and 9.1.6, and Splunk Secure Gateway versions on Splunk Cloud Platform versions below 3.4.259, 3.6.17, and 3.7.0, a low-privileged user that does not hold th… NVD-CWE-noinfo
CVE-2024-45735 2024-10-17 07:20 2024-10-15 Show GitHub Exploit DB Packet Storm
312862 4.3 MEDIUM
Network 		splunk splunk In Splunk Enterprise versions 9.3.0, 9.2.3, and 9.1.6, a low-privileged user that does not hold the "admin" or "power" Splunk roles could view images on the machine that runs Splunk Enterprise by usi… NVD-CWE-noinfo
CVE-2024-45734 2024-10-17 07:20 2024-10-15 Show GitHub Exploit DB Packet Storm
312863 6.5 MEDIUM
Network 		splunk splunk
splunk_cloud_platform 		In Splunk Enterprise versions below 9.3.1, 9.2.3, and 9.1.6 and Splunk Cloud Platform versions below 9.2.2403.107, 9.1.2312.204, and 9.1.2312.111, a low-privileged user that does not hold the "admin"… NVD-CWE-noinfo
CVE-2024-45736 2024-10-17 07:19 2024-10-15 Show GitHub Exploit DB Packet Storm
312864 3.5 LOW
Network 		splunk splunk
splunk_cloud_platform 		In Splunk Enterprise versions below 9.3.1, 9.2.3, and 9.1.6 and Splunk Cloud Platform versions below 9.2.2403.108, and 9.1.2312.204, a low-privileged user that does not hold the "admin" or "power" Sp… CWE-352
 Origin Validation Error 		CVE-2024-45737 2024-10-17 07:18 2024-10-15 Show GitHub Exploit DB Packet Storm
312865 7.5 HIGH
Network 		- - An Out-of-Bounds Read vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated network-based attacker sending a specifically … CWE-125
Out-of-bounds Read 		CVE-2024-39516 2024-10-17 07:15 2024-10-10 Show GitHub Exploit DB Packet Storm
312866 8.8 HIGH
Network 		blood_bank_system_project blood_bank_system A vulnerability, which was classified as critical, was found in code-projects Blood Bank System 1.0. Affected is an unknown function of the file reset.php. The manipulation of the argument useremail … CWE-89
SQL Injection 		CVE-2024-9894 2024-10-17 07:13 2024-10-12 Show GitHub Exploit DB Packet Storm
312867 5.4 MEDIUM
Network 		oretnom23 online_eyewear_shop A vulnerability, which was classified as problematic, was found in SourceCodester Online Eyewear Shop 1.0. Affected is an unknown function of the file /admin/?page=inventory/view_inventory&id=2. The … CWE-79
Cross-site Scripting 		CVE-2024-9906 2024-10-17 07:12 2024-10-13 Show GitHub Exploit DB Packet Storm
312868 8.8 HIGH
Network 		oretnom23 online_eyewear_shop A vulnerability, which was classified as critical, has been found in SourceCodester Online Eyewear Shop 1.0. This issue affects some unknown processing of the file /admin/?page=inventory/view_invento… CWE-89
SQL Injection 		CVE-2024-9905 2024-10-17 07:12 2024-10-13 Show GitHub Exploit DB Packet Storm
312869 9.8 CRITICAL
Network 		usualtool usualtoolcms A vulnerability, which was classified as critical, has been found in HuangDou UTCMS V9. Affected by this issue is some unknown functionality of the file app/modules/ut-cac/admin/cli.php. The manipula… CWE-78
OS Command  		CVE-2024-9916 2024-10-17 07:11 2024-10-14 Show GitHub Exploit DB Packet Storm
312870 9.8 CRITICAL
Network 		ragic enterprise_cloud_database Enterprise Cloud Database from Ragic does not authenticate access to specific functionality, allowing unauthenticated remote attackers to use this functionality to obtain any user's session cookie. CWE-306
Missing Authentication for Critical Function 		CVE-2024-9984 2024-10-17 07:03 2024-10-15 Show GitHub Exploit DB Packet Storm