Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 22, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
189411	8.8	重要 Network	Foxit Software Inc	-	Foxit Reader における不正な型変換に関する脆弱性	CWE-704 不正な型変換またはキャスト	CVE-2017-14826	2018-01-15 17:39	2017-11-14	Show	GitHub Exploit DB Packet Storm

189412	8.8	重要 Network	Foxit Software Inc	-	Foxit Reader における不正な型変換に関する脆弱性	CWE-704 不正な型変換またはキャスト	CVE-2017-14825	2018-01-15 17:39	2017-11-14	Show	GitHub Exploit DB Packet Storm

189413	8.8	重要 Network	Foxit Software Inc	-	Foxit Reader における不正な型変換に関する脆弱性	CWE-704 不正な型変換またはキャスト	CVE-2017-14824	2018-01-15 17:39	2017-11-14	Show	GitHub Exploit DB Packet Storm

189414	8.8	重要 Network	Foxit Software Inc	-	Foxit Reader における不正な型変換に関する脆弱性	CWE-704 不正な型変換またはキャスト	CVE-2017-14823	2018-01-15 17:39	2017-11-14	Show	GitHub Exploit DB Packet Storm

189415	3.3	低 Local	IBM	-	IBM Security Guardium におけるセッションの固定化の脆弱性	CWE-384 セッションの固定化	CVE-2017-1270	2018-01-15 17:16	2017-12-18	Show	GitHub Exploit DB Packet Storm

189416	5.4	警告 Network	IBM	-	IBM Security Guardium におけるパーミッションに関する脆弱性	CWE-275 パーミッションの問題	CVE-2017-1266	2018-01-15 17:16	2017-12-18	Show	GitHub Exploit DB Packet Storm

189417	6.1	警告 Network	IBM	-	IBM Security Guardium における HTTP レスポンス分割に関する脆弱性	CWE-113 HTTP レスポンスの分割	CVE-2017-1262	2018-01-15 17:16	2017-12-18	Show	GitHub Exploit DB Packet Storm

189418	3.3	低 Local	IBM	-	IBM Security Guardium における情報漏えいに関する脆弱性	CWE-200 情報漏えい	CVE-2017-1261	2018-01-15 16:59	2017-12-18	Show	GitHub Exploit DB Packet Storm

189419	4.3	警告 Network	IBM	-	IBM Security Guardium における情報漏えいに関する脆弱性	CWE-200 情報漏えい	CVE-2017-1257	2018-01-15 16:59	2017-12-18	Show	GitHub Exploit DB Packet Storm

189420	8.8	重要 Network	IBM	-	IBM Security Guardium Database Activity Monitor における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2017-1757	2018-01-15 16:58	2017-12-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 22, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1911	4.8	MEDIUM Network	-	-	Spring Data Relational does not properly escape binding values of externally-controlled input when using StringMatcher (STARTING, ENDING, or CONTAINING) in Query By Example (QBE). An attacker can sup…	CWE-943 Improper Neutralization of Special Elements in Data Query Logic	CVE-2026-41697	2026-06-10 09:16	2026-06-10	Show	GitHub Exploit DB Packet Storm

1912	5.9	MEDIUM Network	-	-	Spring Data MongoDB repository query methods annotated with @Query that use regex parameter binding perform insufficient validation of the bound parameter. An attacker can supply a crafted string to …	CWE-943 Improper Neutralization of Special Elements in Data Query Logic	CVE-2026-41696	2026-06-10 09:16	2026-06-10	Show	GitHub Exploit DB Packet Storm

1913	7.5	HIGH Network	-	-	Spring Data Commons applications may be vulnerable to denial of service through resource exhaustion when attacker-controlled property path strings are passed to MappingContext property path resolutio…	CWE-400 Uncontrolled Resource Consumption	CVE-2026-41695	2026-06-10 09:16	2026-06-10	Show	GitHub Exploit DB Packet Storm

1914	6.1	MEDIUM Network	-	-	Spring Security Authorization Server's authorization endpoint performs insufficient validation of the request_uri parameter. An attacker can craft a malicious authorization request containing an inva…	CWE-601 Open Redirect	CVE-2026-41008	2026-06-10 09:16	2026-06-10	Show	GitHub Exploit DB Packet Storm

1915	7.3	HIGH Adjacent	-	-	An attacker with write permissions to the database table managed by JdbcAssertingPartyMetadataRepository (saml2_asserting_party_metadata) may be able to store malicious serialized payloads in the col…	CWE-502 Deserialization of Untrusted Data	CVE-2026-40993	2026-06-10 09:16	2026-06-10	Show	GitHub Exploit DB Packet Storm

1916	5.9	MEDIUM Network	-	-	When using spring-restdocs-webtestclient or spring-restdocs-restassured to document a remote API accessed over HTTP, an attacker who compromises the API or tricks the user into documenting a maliciou…	CWE-611 XXE	CVE-2026-40991	2026-06-10 09:16	2026-06-10	Show	GitHub Exploit DB Packet Storm

1917	-		-	-	Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.	-	CVE-2026-10238	2026-06-10 08:16	2026-06-10	Show	GitHub Exploit DB Packet Storm

1918	8.1	HIGH Network	-	-	Insecure permissions in bookcars v8.3 allows authenticated attackers to escalate privileges from user to admin via modifying their user type.	CWE-284 Improper Access Control	CVE-2026-36720	2026-06-10 07:16	2026-06-10	Show	GitHub Exploit DB Packet Storm

1919	7.8	HIGH Local	-	-	Multiple Microsoft-sigend UEFI SHIM bootloaders are vulnerable to SecureBoot bypass. An attacker with administrative privileges or the ability to modify the boot process could use one of the vulnerab…	-	CVE-2026-8863	2026-06-10 06:17	2026-06-10	Show	GitHub Exploit DB Packet Storm

1920	6.3	MEDIUM Network	-	-	SemCms 5.0 is vulnerable to Cross Site Request Forgery (CSRF) via crafted POST request to /admin/semcms_user.php.	CWE-352 Origin Validation Error	CVE-2026-39170	2026-06-10 06:17	2026-06-10	Show	GitHub Exploit DB Packet Storm