Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 16, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1591 8.8 重要
Network 		radare Radare2 MCP Server radareのRadare2 MCP ServerにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-6942 2026-06-8 11:48 2026-04-23 Show GitHub Exploit DB Packet Storm
1592 7.3 重要
Network 		Securly, Inc. Securly Securly, Inc.のSecurlyにおけるハードコードされた認証情報の使用に関する脆弱性 CWE-798
ハードコードされた認証情報の使用 		CVE-2026-8876 2026-06-8 11:48 2026-06-3 Show GitHub Exploit DB Packet Storm
1593 7.5 重要
Network 		Securly, Inc. Securly Securly, Inc.のSecurlyにおける暗号強度に関する脆弱性 CWE-326
不適切な暗号強度 		CVE-2026-8878 2026-06-8 11:48 2026-06-3 Show GitHub Exploit DB Packet Storm
1594 7.5 重要
Network 		Securly, Inc. Securly Securly, Inc.のSecurlyにおける信頼できない制御領域からの機能の組み込みに関する脆弱性 CWE-829
信頼性のない制御領域からの機能の組み込み 		CVE-2026-8879 2026-06-8 11:48 2026-06-3 Show GitHub Exploit DB Packet Storm
1595 7.8 重要
Local 		Amazon.com, Inc. Kiro CLI Amazon.com, Inc.のKiro CLIにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-9255 2026-06-8 11:48 2026-05-22 Show GitHub Exploit DB Packet Storm
1596 9.9 緊急
Network 		Flowintel Flowintel Flowintelにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-9813 2026-06-8 11:48 2026-05-28 Show GitHub Exploit DB Packet Storm
1597 7.8 重要
Local 		huggingface transformers huggingfaceのtransformersにおける複数の脆弱性 CWE-1066
CWE-502
CVE-2026-4372 2026-06-8 11:48 2026-05-24 Show GitHub Exploit DB Packet Storm
1598 6.1 警告
Network 		Avatar Uploader project Avatar Uploader Avatar Uploader projectのAvatar Uploaderにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2022-50957 2026-06-8 11:48 2026-05-10 Show GitHub Exploit DB Packet Storm
1599 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける有効期限後のメモリの解放の欠如に関する脆弱性 CWE-401
有効期限後のメモリの解放の欠如 		CVE-2025-71273 2026-06-8 11:48 2026-05-6 Show GitHub Exploit DB Packet Storm
1600 7.5 重要
Network 		Mozilla Foundation Mozilla Firefox Mozilla FoundationのMozilla Firefoxにおけるバッファエラーの脆弱性 CWE-119
バッファエラー 		CVE-2026-10701 2026-06-8 11:48 2026-06-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
344601 - lakeweb filemail_cgi_script LakeWeb Filemail CGI script allows remote attackers to execute arbitrary commands via shell metacharacters in the recipient email address. NVD-CWE-Other
CVE-1999-1154 2017-12-19 11:29 1998-11-9 Show GitHub Exploit DB Packet Storm
344602 - lakeweb mail_list_cgi_script LakeWeb Mail List CGI script allows remote attackers to execute arbitrary commands via shell metacharacters in the recipient email address. NVD-CWE-Other
CVE-1999-1155 2017-12-19 11:29 1998-11-9 Show GitHub Exploit DB Packet Storm
344603 - sambar sambar_server Sambar Server 4.1 beta allows remote attackers to obtain sensitive information about the server via an HTTP request for the dumpenv.pl script. NVD-CWE-Other
CVE-1999-1178 2017-12-19 11:29 1998-06-10 Show GitHub Exploit DB Packet Storm
344604 - university_of_washington
freebsd
slackware 		pine
freebsd
slackware_linux 		Pine before version 3.94 allows local users to gain privileges via a symlink attack on a lockfile that is created when a user receives new mail. NVD-CWE-Other
CVE-1999-1187 2017-12-19 11:29 1996-08-26 Show GitHub Exploit DB Packet Storm
344605 - vintra_systems smtp_mailserver Vintra SMTP MailServer allows remote attackers to cause a denial of service via a malformed "EXPN *@" command. NVD-CWE-Other
CVE-1999-1200 2017-12-19 11:29 1998-07-20 Show GitHub Exploit DB Packet Storm
344606 - startech pop3_proxy_server
telnet_server 		StarTech (1) POP3 proxy server and (2) telnet server allows remote attackers to cause a denial of service via a long USER command. NVD-CWE-Other
CVE-1999-1202 2017-12-19 11:29 1998-07-3 Show GitHub Exploit DB Packet Storm
344607 - network_general netxray Buffer overflow in web-admin tool in NetXRay 2.6 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long HTTP request. NVD-CWE-Other
CVE-1999-1207 2017-12-19 11:29 1998-02-18 Show GitHub Exploit DB Packet Storm
344608 - digital unix xterm in Digital UNIX 4.0B *with* patch kit 5 allows local users to overwrite arbitrary files via a symlink attack on a core dump file, which is created when xterm is called with a DISPLAY environmen… NVD-CWE-Other
CVE-1999-1210 2017-12-19 11:29 1997-11-12 Show GitHub Exploit DB Packet Storm
344609 - sun sunos Vulnerability in in.telnetd in SunOS 4.1.1 and earlier allows local users to gain root privileges. NVD-CWE-Other
CVE-1999-1211 2017-12-19 11:29 1991-03-27 Show GitHub Exploit DB Packet Storm
344610 - sun sunos Vulnerability in in.rlogind in SunOS 4.0.3 and 4.0.3c allows local users to gain root privileges. NVD-CWE-Other
CVE-1999-1212 2017-12-19 11:29 1991-03-27 Show GitHub Exploit DB Packet Storm