Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 14, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1341 5.9 警告
Local 		libexpat project libexpat libexpat projectのlibexpatにおける解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-50219 2026-06-8 11:45 2026-06-4 Show GitHub Exploit DB Packet Storm
1342 5.3 警告
Network 		morgan project morgan morgan projectのmorganにおける不適切なログ出力の無効化に関する脆弱性 CWE-117
不適切なログ出力の無効化 		CVE-2026-5078 2026-06-8 11:45 2026-06-3 Show GitHub Exploit DB Packet Storm
1343 9.6 緊急
Network 		huggingface transformers huggingfaceのtransformersにおける信頼できない制御領域からの機能の組み込みに関する脆弱性 CWE-829
信頼性のない制御領域からの機能の組み込み 		CVE-2026-5241 2026-06-8 11:45 2026-06-3 Show GitHub Exploit DB Packet Storm
1344 8.1 重要
Network 		Progress Software Corporation Sitefinity Progress Software CorporationのSitefinityにおける入力確認に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2026-7195 2026-06-8 11:45 2026-06-2 Show GitHub Exploit DB Packet Storm
1345 9.8 緊急
Network 		Progress Software Corporation Sitefinity Progress Software CorporationのSitefinityにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-7198 2026-06-8 11:44 2026-06-2 Show GitHub Exploit DB Packet Storm
1346 8.8 重要
Network 		Progress Software Corporation Sitefinity Progress Software CorporationのSitefinityにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-7201 2026-06-8 11:44 2026-06-2 Show GitHub Exploit DB Packet Storm
1347 5.4 警告
Network 		appsmith appsmith appsmithにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-7299 2026-06-8 11:44 2026-06-2 Show GitHub Exploit DB Packet Storm
1348 7.5 重要
Network 		Progress Software Corporation Sitefinity Progress Software CorporationのSitefinityにおける認証情報の不十分な保護に関する脆弱性 CWE-522
認証情報の不十分な保護 		CVE-2026-7312 2026-06-8 11:44 2026-06-2 Show GitHub Exploit DB Packet Storm
1349 4.9 警告
Network 		Progress Software Corporation Sitefinity Progress Software CorporationのSitefinityにおける認証情報の不十分な保護に関する脆弱性 CWE-522
認証情報の不十分な保護 		CVE-2026-7313 2026-06-8 11:44 2026-06-2 Show GitHub Exploit DB Packet Storm
1350 8.8 重要
Network 		SmarterTools Inc. SmarterMail SmarterTools Inc.のSmarterMailにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-7807 2026-06-8 11:44 2026-05-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
344761 - kde
suse 		kde
suse_linux 		kfm as included with KDE 1.x can allow a local attacker to gain additional privileges via a symlink attack in the kfm cache directory in /tmp. NVD-CWE-Other
CVE-2001-0610 2017-12-19 11:29 2001-08-2 Show GitHub Exploit DB Packet Storm
344762 - carello e-commerce Carello E-Commerce 1.2.1 and earlier allows a remote attacker to gain additional privileges and execute arbitrary commands via a specially constructed URL. NVD-CWE-Other
CVE-2001-0614 2017-12-19 11:29 2001-08-22 Show GitHub Exploit DB Packet Storm
344763 - alliedtelesyn at-ar220e Allied Telesyn AT-AR220e cable/DSL router firmware 1.08a RC14 with the portmapper and the 'Virtual Server' enabled can allow a remote attacker to gain access to mapped services even though the single… NVD-CWE-Other
CVE-2001-0617 2017-12-19 11:29 2001-08-22 Show GitHub Exploit DB Packet Storm
344764 - lucent orinoco_rg-1000 Orinoco RG-1000 wireless Residential Gateway uses the last 5 digits of the 'Network Name' or SSID as the default Wired Equivalent Privacy (WEP) encryption key. Since the SSID occurs in the clear dur… NVD-CWE-Other
CVE-2001-0618 2017-12-19 11:29 2001-08-2 Show GitHub Exploit DB Packet Storm
344765 - iplanet calendar_server iPlanet Calendar Server 5.0p2 and earlier allows a local attacker to gain access to the Netscape Admin Server (NAS) LDAP database and read arbitrary files by obtaining the cleartext administrator use… NVD-CWE-Other
CVE-2001-0620 2017-12-19 11:29 2001-08-2 Show GitHub Exploit DB Packet Storm
344766 - sendfile sendfile sendfiled, as included with Simple Asynchronous File Transfer (SAFT), on various Linux systems does not properly drop privileges when sending notification emails, which allows local attackers to gain… NVD-CWE-Other
CVE-2001-0623 2017-12-19 11:29 2001-08-2 Show GitHub Exploit DB Packet Storm
344767 - qnx qnx QNX 2.4 allows a local user to read arbitrary files by directly accessing the mount point for the FAT disk partition, e.g. /fs-dos. NVD-CWE-Other
CVE-2001-0624 2017-12-19 11:29 2001-08-2 Show GitHub Exploit DB Packet Storm
344768 - incredimail incredimail Directory traversal vulnerability in IncrediMail version 1400185 and earlier allows local users to overwrite files on the local hard drive by appending .. (dot dot) sequences to filenames listed in t… NVD-CWE-Other
CVE-2001-0642 2017-12-19 11:29 2001-09-20 Show GitHub Exploit DB Packet Storm
344769 - axent netprowler Symantec/AXENT NetProwler 3.5.x contains several default passwords, which could allow remote attackers to (1) access to the management tier via the "admin" password, or (2) connect to a MySQL ODBC fr… NVD-CWE-Other
CVE-2001-0645 2017-12-19 11:29 2001-09-20 Show GitHub Exploit DB Packet Storm
344770 - apple personal_web_sharing Personal Web Sharing 1.5.5 allows a remote attacker to cause a denial of service via a long HTTP request. NVD-CWE-Other
CVE-2001-0649 2017-12-19 11:29 2001-09-20 Show GitHub Exploit DB Packet Storm