Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 24, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
188261	8.8	重要 Network	House Internet S.R.L.	-	Asternic Flash Operator Panel におけるコマンドインジェクションの脆弱性	CWE-77 コマンドインジェクション	CVE-2018-5694	2018-02-21 14:37	2018-01-14	Show	GitHub Exploit DB Packet Storm

188262	6.1	警告 Network	ILIAS	-	ILIAS におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2018-5688	2018-02-21 14:37	2018-01-14	Show	GitHub Exploit DB Packet Storm

188263	6.1	警告 Network	FoxSash	-	FoxSash ImgHosting におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2018-5479	2018-02-21 14:37	2018-01-15	Show	GitHub Exploit DB Packet Storm

188264	8.8	重要 Network	ZUUSE	-	ZUUSE BEIMS ContractorWeb .NET におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2018-5329	2018-02-21 14:37	2018-01-10	Show	GitHub Exploit DB Packet Storm

188265	9.8	緊急 Network	ZUUSE	-	ZUUSE BEIMS ContractorWeb .NET における認可・権限・アクセス制御に関する脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2018-5328	2018-02-21 14:37	2018-01-10	Show	GitHub Exploit DB Packet Storm

188266	6.5	警告 Network	IBM	-	IBM Rational Team Concert における XML 外部エンティティの脆弱性	CWE-611 XML 外部エンティティ参照の不適切な制限	CVE-2016-0219	2018-02-21 14:37	2016-05-20	Show	GitHub Exploit DB Packet Storm

188267	6.5	警告 Network	IBM	-	IBM DB2 における入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2016-0215	2018-02-21 14:37	2016-04-7	Show	GitHub Exploit DB Packet Storm

188268	5.5	警告 Local	minizip project	-	minizip におけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2014-9485	2018-02-21 14:37	2014-12-31	Show	GitHub Exploit DB Packet Storm

188269	6.1	警告 Network	TorrentFlux	-	TorrentFlux におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-6027	2018-02-21 14:37	2014-08-28	Show	GitHub Exploit DB Packet Storm

188270	7.5	重要 Network	Yandex	-	Yandex Browser における入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2017-7325	2018-02-21 14:36	2017-03-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 24, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1	8.1	HIGH Network	zoom	meeting_software_development_kit workplace	Improper Authorization in Handler for Custom URL Scheme in Zoom Workplace before version 7.0.4 for Android and before 7.0.3 for iOS may allow an unauthenticated user to conduct an escalation of privi…	CWE-939 Improper Authorization in Handler for Custom URL Scheme	CVE-2026-53408	2026-06-17 03:59	2026-06-13	Show	GitHub Exploit DB Packet Storm

2	7.2	HIGH Network	mariadb	mariadb	MariaDB server is a community developed fork of MySQL server. From versions 10.6.1 to before 10.6.27, 10.11.1 to before 10.11.18, 11.4.1 to before 11.4.12, 11.8.1 to before 11.8.8, and 12.3.1, a high…	CWE-78 OS Command	CVE-2026-48165	2026-06-17 03:58	2026-06-13	Show	GitHub Exploit DB Packet Storm

3	6.1	MEDIUM Local	docker mobyproject	engine moby moby\/v2	Moby is an open source container framework. In Docker Engine prior to version 29.5.1, Docker Daemon versions 28.5.2 and prior, and Moby Daemon prior to version 2.0.0-beta.14, a race condition during …	CWE-81 CWE-367 Improper Neutralization of Script in an Error Message Web Page Time-of-check Time-of-use (TOCTOU) Race Condition	CVE-2026-41568	2026-06-17 03:31	2026-06-13	Show	GitHub Exploit DB Packet Storm

4	7.2	HIGH Local	docker mobyproject	engine moby moby\/v2	Moby is an open source container framework. In Docker Engine prior to version 29.5.1, Docker Daemon versions 28.5.2 and prior, and Moby Daemon prior to version 2.0.0-beta.14, a race condition during …	CWE-61 CWE-367 UNIX Symbolic Link (Symlink) Following Time-of-check Time-of-use (TOCTOU) Race Condition	CVE-2026-42306	2026-06-17 03:31	2026-06-13	Show	GitHub Exploit DB Packet Storm

5	5.5	MEDIUM Local	amd	uprof	Unrestricted resource allocation in AMD uProf may be exploitable to consume excessive system resources, potentially leading to a loss of availability.	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2026-28237	2026-06-17 03:08	2026-06-10	Show	GitHub Exploit DB Packet Storm

6	5.5	MEDIUM Local	amd	uprof	Improper access control in AMD uProf may allow a local attacker with user privileges to write to the kernel-shared memory section, potentially resulting in crash or denial of service.	CWE-497 Exposure of Sensitive System Information to an Unauthorized Control Sphere	CVE-2026-0466	2026-06-17 03:05	2026-06-10	Show	GitHub Exploit DB Packet Storm

7	5.5	MEDIUM Local	gpac	gpac	A heap use-after-free in the gf_node_get_tag function (scenegraph/base_scenegraph.c) of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service (DoS) via supplying a crafted MP4 file.	CWE-416 Use After Free	CVE-2025-55650	2026-06-17 02:39	2026-06-16	Show	GitHub Exploit DB Packet Storm

8	5.5	MEDIUM Local	gpac	gpac	A NULL pointer dereference in the gf_media_map_esd function (media_tools/isom_tools.c) of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service (DoS) via supplying a crafted MP4 file.	CWE-476 NULL Pointer Dereference	CVE-2025-55649	2026-06-17 02:39	2026-06-16	Show	GitHub Exploit DB Packet Storm

9	5.5	MEDIUM Local	gpac	gpac	A heap buffer overflow in the gf_opus_parse_packet_header function (media_tools/av_parsers.c) of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service (DoS) via supplying a crafted MP4 file.	CWE-122 Heap-based Buffer Overflow	CVE-2025-55648	2026-06-17 02:39	2026-06-16	Show	GitHub Exploit DB Packet Storm

10	5.5	MEDIUM Local	gpac	gpac	An Out-of-Memory in the mp4_mux_cenc_insert_pssh function (filters/mux_isom.c) of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service (DoS) via supplying a crafted MP4 file.	CWE-190 Integer Overflow or Wraparound	CVE-2025-55647	2026-06-17 02:38	2026-06-16	Show	GitHub Exploit DB Packet Storm