Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
161 7.5 重要
Network 		NLnet Labs Routinator NLnet LabsのRoutinatorにおけるパストラバーサルの脆弱性 New CWE-22
パス・トラバーサル 		CVE-2026-49233 2026-06-12 14:46 2026-06-8 Show GitHub Exploit DB Packet Storm
162 7.5 重要
Network 		NLnet Labs Routinator NLnet LabsのRoutinatorにおける入力確認に関する脆弱性 New CWE-20
CWE-noinfo
CVE-2026-49234 2026-06-12 14:46 2026-06-8 Show GitHub Exploit DB Packet Storm
163 7.5 重要
Network 		NLnet Labs Routinator NLnet LabsのRoutinatorにおける例外的な状態の処理に関する脆弱性 New CWE-755
例外的な状態における不適切な処理 		CVE-2026-49235 2026-06-12 14:46 2026-06-8 Show GitHub Exploit DB Packet Storm
164 5.5 警告
Local 		NSA Ghidra NSAのGhidraにおける無限ループに関する脆弱性 New CWE-835
無限ループ 		CVE-2026-49495 2026-06-12 14:46 2026-06-10 Show GitHub Exploit DB Packet Storm
165 6.1 警告
Local 		NSA Ghidra NSAのGhidraにおける解放済みメモリの使用に関する脆弱性 New CWE-416
解放済みメモリの使用 		CVE-2026-49496 2026-06-12 14:45 2026-06-10 Show GitHub Exploit DB Packet Storm
166 3.3
Local 		NSA Ghidra NSAのGhidraにおけるパストラバーサルの脆弱性 New CWE-22
パス・トラバーサル 		CVE-2026-49497 2026-06-12 14:45 2026-06-10 Show GitHub Exploit DB Packet Storm
167 8.8 重要
Network 		NSA Ghidra NSAのGhidraにおけるSQL インジェクションの脆弱性 New CWE-89
SQLインジェクション 		CVE-2026-49498 2026-06-12 14:45 2026-06-10 Show GitHub Exploit DB Packet Storm
168 6.5 警告
Network 		フォーティネット FortiPortal フォーティネットのFortiPortalにおけるアクセス制御に関する脆弱性 New CWE-284
不適切なアクセス制御 		CVE-2026-49938 2026-06-12 14:45 2026-06-9 Show GitHub Exploit DB Packet Storm
169 7.8 重要
Local 		レッドハット
X.Org Foundation		 Red Hat Enterprise Linux
xwayland
X.Org X Server 		レッドハット等の複数ベンダの製品における解放済みメモリの使用に関する脆弱性 New CWE-416
解放済みメモリの使用 		CVE-2026-50260 2026-06-12 14:45 2026-06-5 Show GitHub Exploit DB Packet Storm
170 5.5 警告
Local 		レッドハット
X.Org Foundation		 Red Hat Enterprise Linux
xwayland
X.Org X Server 		レッドハット等の複数ベンダの製品における解放済みメモリの使用に関する脆弱性 New CWE-416
解放済みメモリの使用 		CVE-2026-50263 2026-06-12 14:45 2026-06-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
258151 7.8 HIGH
Local 		santeikohyo installer_of_houkokusyo_sakusei_shien_tool Untrusted search path vulnerability in the installer of Houkokusyo Sakusei Shien Tool ver3.0.2 (For the first installation) (The version which was available on the website from 2017 April 4 to 2017 M… CWE-426
 Untrusted Search Path 		CVE-2017-2209 2024-11-21 12:23 2017-06-10 Show GitHub Exploit DB Packet Storm
258152 8.8 HIGH
Network 		saat personal Untrusted search path vulnerability in the installer of SaAT Personal ver.1.0.10.272 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory. CWE-426
 Untrusted Search Path 		CVE-2017-2207 2024-11-21 12:23 2017-06-10 Show GitHub Exploit DB Packet Storm
258153 8.8 HIGH
Network 		saat netizen Untrusted search path vulnerability in the installer of SaAT Netizen ver.1.2.10.510 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory. CWE-426
 Untrusted Search Path 		CVE-2017-2206 2024-11-21 12:23 2017-06-10 Show GitHub Exploit DB Packet Storm
258154 8.8 HIGH
Network 		multi_feed_reader_project multi_feed_reader SQL injection vulnerability in the Multi Feed Reader prior to version 2.2.4 allows authenticated attackers to execute arbitrary SQL commands via unspecified vectors. CWE-89
SQL Injection 		CVE-2017-2195 2024-11-21 12:23 2017-06-10 Show GitHub Exploit DB Packet Storm
258155 7.8 HIGH
Local 		tera_term_project tera_term Untrusted search path vulnerability in the installer of Tera Term 4.94 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory. CWE-426
 Untrusted Search Path 		CVE-2017-2193 2024-11-21 12:23 2017-06-10 Show GitHub Exploit DB Packet Storm
258156 7.8 HIGH
Local 		sharp rw-5100 Untrusted search path vulnerability in RW-5100 tool to verify execution environment for Windows 7 version 1.1.0.0 and RW-5100 tool to verify execution environment for Windows 8.1 version 1.2.0.0 allo… CWE-426
 Untrusted Search Path 		CVE-2017-2192 2024-11-21 12:23 2017-06-10 Show GitHub Exploit DB Packet Storm
258157 7.8 HIGH
Local 		sharp rw-5100_driver_installer_for_windows_7
rw-5100_driver_installer_for_windows_8.1 		Untrusted search path vulnerability in RW-5100 driver installer for Windows 7 version 1.0.0.9 and RW-5100 driver installer for Windows 8.1 version 1.0.1.0 allows an attacker to gain privileges via a … CWE-426
 Untrusted Search Path 		CVE-2017-2191 2024-11-21 12:23 2017-06-10 Show GitHub Exploit DB Packet Storm
258158 7.8 HIGH
Local 		sharp rw-4040 Untrusted search path vulnerability in RW-4040 tool to verify execution environment for Windows 7 version 1.2.0.0 allows an attacker to gain privileges via a Trojan horse DLL in an unspecified direct… CWE-426
 Untrusted Search Path 		CVE-2017-2190 2024-11-21 12:23 2017-06-10 Show GitHub Exploit DB Packet Storm
258159 7.8 HIGH
Local 		sharp rw-4040 Untrusted search path vulnerability in RW-4040 driver installer for Windows 7 version 2.27 allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory. CWE-426
 Untrusted Search Path 		CVE-2017-2189 2024-11-21 12:23 2017-06-10 Show GitHub Exploit DB Packet Storm
258160 6.1 MEDIUM
Network 		3cx live_chat Cross-site scripting vulnerability in WP Live Chat Support prior to version 7.0.07 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2017-2187 2024-11-21 12:23 2017-06-10 Show GitHub Exploit DB Packet Storm