Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 12, 2026, 4:12 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
190031 9.8 緊急
Network 		PHP Scripts Mall Pvt Ltd - Online Exam Test Application における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2017-15989 2017-11-22 12:34 2017-10-30 Show GitHub Exploit DB Packet Storm
190032 7.5 重要
Network 		Quagga
Debian		 - Quagga における入力確認に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2017-16227 2017-11-22 11:58 2017-09-8 Show GitHub Exploit DB Packet Storm
190033 9.8 緊急
Network 		Samba Project - rsync におけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2017-15994 2017-11-22 11:54 2017-10-25 Show GitHub Exploit DB Packet Storm
190034 8.8 重要
Network 		Apache Software Foundation - Apache Struts 2 の TextParseUtil.translateVariables メソッドにおける任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2016-3090 2017-11-22 11:52 2016-03-15 Show GitHub Exploit DB Packet Storm
190035 9.8 緊急
Network 		ZeeScripts.com - ZeeBuddy における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2017-15976 2017-11-22 11:47 2017-09-29 Show GitHub Exploit DB Packet Storm
190036 9.8 緊急
Network 		GeniusOcean - Dynamic News Magazine & Blog CMS における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2017-15982 2017-11-22 11:45 2017-10-30 Show GitHub Exploit DB Packet Storm
190037 9.8 緊急
Network 		GeniusOcean - Responsive Newspaper Magazine & Blog CMS における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2017-15981 2017-11-22 11:45 2017-10-30 Show GitHub Exploit DB Packet Storm
190038 9.8 緊急
Network 		rowindex - US Zip Codes Database Script における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2017-15980 2017-11-22 11:45 2017-10-30 Show GitHub Exploit DB Packet Storm
190039 9.8 緊急
Network 		odallated - Shareet - Photo Sharing Social Network における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2017-15979 2017-11-22 11:45 2017-10-30 Show GitHub Exploit DB Packet Storm
190040 9.8 緊急
Network 		AROX - AROX School ERP PHP Script における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2017-15978 2017-11-22 11:45 2017-10-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
781 - - - A path traversal vulnerability has been reported to affect License Center. If a local attacker gains an administrator account, they can then exploit the vulnerability to read the contents of unexpect… New CWE-22
Path Traversal 		CVE-2025-62851 2026-06-10 13:17 2026-06-10 Show GitHub Exploit DB Packet Storm
782 - - - A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerabili… New CWE-476
 NULL Pointer Dereference 		CVE-2025-62850 2026-06-10 13:17 2026-06-10 Show GitHub Exploit DB Packet Storm
783 - - - QuTS hero is not affected. We have already fixed the vulnerability in the following version: QTS 5.2.7.3256 build 20250913 and later New - CVE-2025-66276 2026-06-10 12:16 2026-06-10 Show GitHub Exploit DB Packet Storm
784 - - - QTS, QuTS hero, QuTScloud are not affected. We have already fixed the vulnerability in the following version: New CWE-472
 External Control of Assumed-Immutable Web Parameter 		CVE-2025-59382 2026-06-10 12:16 2026-06-10 Show GitHub Exploit DB Packet Storm
785 - - - A cross-site request forgery (CSRF) vulnerability has been reported to affect Notification Center. The remote attackers can then exploit the vulnerability to gain privileges or hijack user identities… New CWE-352
 Origin Validation Error 		CVE-2025-58468 2026-06-10 12:16 2026-06-10 Show GitHub Exploit DB Packet Storm
786 5.4 MEDIUM
Network 		- - WordPress Popup Builder 3.49 contains a persistent cross-site scripting vulnerability that allows authenticated attackers to inject malicious scripts by breaking out of option tags in the post_title … Update CWE-79
Cross-site Scripting 		CVE-2019-25744 2026-06-10 11:16 2026-06-4 Show GitHub Exploit DB Packet Storm
787 5.4 MEDIUM
Network 		- - WordPress Soliloquy Lite 2.5.6 contains a persistent cross-site scripting vulnerability that allows authenticated attackers to inject malicious scripts by inserting script tags in the post title fiel… Update CWE-79
Cross-site Scripting 		CVE-2019-25743 2026-06-10 11:16 2026-06-4 Show GitHub Exploit DB Packet Storm
788 5.4 MEDIUM
Network 		- - WordPress Theme Zoner Real Estate 4.1.1 contains a persistent cross-site scripting vulnerability that allows authenticated agents to inject malicious scripts through the Address input field when crea… Update CWE-79
Cross-site Scripting 		CVE-2019-25742 2026-06-10 11:16 2026-06-4 Show GitHub Exploit DB Packet Storm
789 5.4 MEDIUM
Network 		- - GigToDo 1.3 contains a persistent cross-site scripting vulnerability that allows authenticated attackers to inject malicious JavaScript and HTML code through the proposal description field. Attackers… Update CWE-79
Cross-site Scripting 		CVE-2019-25739 2026-06-10 11:16 2026-06-4 Show GitHub Exploit DB Packet Storm
790 6.1 MEDIUM
Network 		- - Live Chat Unlimited 2.8.3 contains a stored cross-site scripting vulnerability that allows unauthenticated attackers to inject malicious scripts through the chat input field. Attackers can submit pay… Update CWE-79
Cross-site Scripting 		CVE-2019-25737 2026-06-10 11:16 2026-06-4 Show GitHub Exploit DB Packet Storm