Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 7, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1601	6.7	警告 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows リッチテキストエディットの特権昇格の脆弱性	CWE-415 二重解放	CVE-2026-32170	2026-05-18 12:18	2026-05-12	Show	GitHub Exploit DB Packet Storm

1602	4.4	警告 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows フィルタリングプラットフォーム (WFP) のセキュリティ機能のバイパスの脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-32209	2026-05-18 12:17	2026-05-12	Show	GitHub Exploit DB Packet Storm

1603	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows Event Logging Service の特権の昇格の脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-33834	2026-05-18 12:17	2026-05-12	Show	GitHub Exploit DB Packet Storm

1604	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Wind…	Windows Cloud Files Mini Filter ドライバーの特権の昇格の脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-33835	2026-05-18 12:17	2026-05-12	Show	GitHub Exploit DB Packet Storm

1605	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows TCP/IP Local の特権昇格の脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-33837	2026-05-18 12:17	2026-05-12	Show	GitHub Exploit DB Packet Storm

1606	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows メッセージキュー (MSMQ) の特権昇格の脆弱性	CWE-415 二重解放	CVE-2026-33838	2026-05-18 12:17	2026-05-12	Show	GitHub Exploit DB Packet Storm

1607	7	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Wind…	Win32k の特権の昇格の脆弱性	CWE-362 競合状態	CVE-2026-33839	2026-05-18 12:17	2026-05-12	Show	GitHub Exploit DB Packet Storm

1608	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows 11 24h2 Microsoft Windows 11 26h1 Microsoft Windows Server 2025	Win32k の特権の昇格の脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-33840	2026-05-18 12:17	2026-05-12	Show	GitHub Exploit DB Packet Storm

1609	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Windows 11 24h2 Microsoft Wind…	Windows カーネルの特権の昇格の脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-33841	2026-05-18 12:17	2026-05-12	Show	GitHub Exploit DB Packet Storm

1610	7.5	重要 Network	MediaWiki	MediaWiki	MediaWikiにおける情報漏えいに関する脆弱性	CWE-200 情報漏えい	CVE-2026-34087	2026-05-18 12:17	2026-05-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
345151	-	skadate	skadate_online_dating_software	PHP remote file inclusion vulnerability in index.php in SkaDate Dating allows remote attackers to execute arbitrary PHP code via a URL in the language_id parameter. NOTE: this can also be leveraged …	CWE-94 Code Injection	CVE-2009-4739	2017-09-19 10:30	2010-03-27	Show	GitHub Exploit DB Packet Storm

345152	-	andrew_charlton	my_category_order	SQL injection vulnerability in mycategoryorder.php in the My Category Order plugin 2.8 and earlier for WordPress allows remote attackers to execute arbitrary SQL commands via the parentID parameter i…	CWE-89 SQL Injection	CVE-2009-4748	2017-09-19 10:30	2010-03-27	Show	GitHub Exploit DB Packet Storm

345153	-	phplivesupport	php_live\!	Multiple SQL injection vulnerabilities in PHP Live! 3.2.1 and 3.2.2 allow remote attackers to execute arbitrary SQL commands via the x parameter to (1) message_box.php and (2) request.php.	CWE-89 SQL Injection	CVE-2009-4749	2017-09-19 10:30	2010-03-27	Show	GitHub Exploit DB Packet Storm

345154	-	mercuryaudio	audio_player	Stack-based buffer overflow in Mercury Audio Player 1.21 allows remote attackers to execute arbitrary code via a long string in a malformed playlist (.m3u) file.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2009-4754	2017-09-19 10:30	2010-03-30	Show	GitHub Exploit DB Packet Storm

345155	-	mercuryaudio	audio_player	Multiple stack-based buffer overflows in Mercury Audio Player 1.21 allow remote attackers to execute arbitrary code via a long string in a malformed (1) .b4s or (2) .pls playlist file.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2009-4755	2017-09-19 10:30	2010-03-30	Show	GitHub Exploit DB Packet Storm

345156	-	beatport	beatport_player	Stack-based buffer overflow in TraktorBeatport.exe 1.0.0.283 in Beatport Player 1.0.0.0 allows remote attackers to execute arbitrary code via a long string in a malformed playlist (.m3u) file.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2009-4756	2017-09-19 10:30	2010-03-30	Show	GitHub Exploit DB Packet Storm

345157	-	evils-world	ew-musicplayer	Stack-based buffer overflow in BrotherSoft EW-MusicPlayer 0.8 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long string in a malfor…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2009-4757	2017-09-19 10:30	2010-03-30	Show	GitHub Exploit DB Packet Storm

345158	-	dicas	mpegable_player	Stack-based buffer overflow in dicas Mpegable Player 2.12 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long string in a .YUV file.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2009-4758	2017-09-19 10:30	2010-03-30	Show	GitHub Exploit DB Packet Storm

345159	-	joric	bmxplay	Buffer overflow in BrotherSoft BMXPlay 0.4.4b allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long string in a .BMX file.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2009-4759	2017-09-19 10:30	2010-03-30	Show	GitHub Exploit DB Packet Storm

345160	-	winn	asp_guestbook	Winn ASP Guestbook 1.01 Beta stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for data/guest…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2009-4760	2017-09-19 10:30	2010-03-30	Show	GitHub Exploit DB Packet Storm