Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 10, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
190191	7.5	重要 Network	Fiyo CMS	-	Fiyo CMS における情報漏えいに関する脆弱性	CWE-200 情報漏えい	CVE-2014-9147	2017-11-2 11:51	2014-11-29	Show	GitHub Exploit DB Packet Storm

190192	5.5	警告 Local	Umbraco	-	Umbraco CMS における XML 外部エンティティの脆弱性	CWE-611 XML 外部エンティティ参照の不適切な制限	CVE-2017-15280	2017-11-2 11:50	2017-10-6	Show	GitHub Exploit DB Packet Storm

190193	5.4	警告 Network	Umbraco	-	Umbraco CMS におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2017-15279	2017-11-2 11:50	2017-10-6	Show	GitHub Exploit DB Packet Storm

190194	7.5	重要 Network	Fabrice Bellard	-	QEMU におけるリソース管理に関する脆弱性	CWE-399 リソース管理の問題	CVE-2017-15268	2017-11-2 11:50	2017-10-17	Show	GitHub Exploit DB Packet Storm

190195	6.1	警告 Network	NexusPHP project	-	NexusPHP におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2017-15305	2017-11-2 11:45	2017-10-14	Show	GitHub Exploit DB Packet Storm

190196	9.8	緊急 Network	Store Locator project	-	WordPress 用 Store Locator プラグインにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-8621	2017-11-2 11:41	2014-11-5	Show	GitHub Exploit DB Packet Storm

190197	6.1	警告 Network	post highlights project	-	WordPress 用 post highlights プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-8087	2017-11-2 11:41	2014-11-3	Show	GitHub Exploit DB Packet Storm

190198	7.5	重要 Network	GNU Project	-	GNU Libextractor における NULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2017-15267	2017-11-2 11:40	2017-10-9	Show	GitHub Exploit DB Packet Storm

190199	5.5	警告 Local	GNU Project	-	GNU Libextractor におけるゼロ除算に関する脆弱性	CWE-369 ゼロ除算	CVE-2017-15266	2017-11-2 11:40	2017-10-9	Show	GitHub Exploit DB Packet Storm

190200	5.4	警告 Network	dotCMS	-	dotCMS におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2017-15219	2017-11-2 11:40	2017-10-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
891	-		-	-	In the Linux kernel, the following vulnerability has been resolved: mm/zone_device: do not touch device folio after calling ->folio_free() The contents of a device folio can immediately change afte… New	-	CVE-2026-46277	2026-06-9 02:16	2026-06-9	Show	GitHub Exploit DB Packet Storm

892	-		-	-	In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix zero-size GDS range init on RDNA4 RDNA4 (GFX 12) hardware removes the GDS, GWS, and OA on-chip memory resources. … New	-	CVE-2026-46276	2026-06-9 02:16	2026-06-9	Show	GitHub Exploit DB Packet Storm

893	9.0	CRITICAL Network	termix	termix	Termix is a web-based server management platform with SSH terminal, tunneling, and file editing capabilities. Prior to version 2.3.2, the GET /ssh/file_manager/ssh/resolvePath endpoint in the Termix … Update	CWE-78 CWE-639 OS Command Authorization Bypass Through User-Controlled Key	CVE-2026-45750	2026-06-9 02:16	2026-06-6	Show	GitHub Exploit DB Packet Storm

894	9.8	CRITICAL Network	termix	termix	Termix is a web-based server management platform with SSH terminal, tunneling, and file editing capabilities. The `POST /ssh/tunnel/connect` endpoint in Termix prior to version 2.3.2 builds an SSH tu… Update	CWE-78 OS Command	CVE-2026-45748	2026-06-9 02:16	2026-06-6	Show	GitHub Exploit DB Packet Storm

895	8.1	HIGH Network	termix	termix	Termix is a web-based server management platform with SSH terminal, tunneling, and file editing capabilities. 16 file-manager endpoints in Termix prior to version 2.3.2 do not verify that the request… Update	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2026-45743	2026-06-9 02:16	2026-06-6	Show	GitHub Exploit DB Packet Storm

896	6.5	MEDIUM Network	-	-	IRIS is a web collaborative platform that helps incident responders share technical details during investigations. Versions prior to 2.4.28 return sensitive data to the user which are not required fo… Update	CWE-201 Insertion of Sensitive Information Into Sent Data	CVE-2026-42539	2026-06-9 02:16	2026-06-5	Show	GitHub Exploit DB Packet Storm

897	7.5	HIGH Network	-	-	Shenzhen Tenda Technology Co., Ltd Tenda FH451 V1.0.0.9 was discovered to contain a stack overflow in the page parameter of the fromDhcpListClient function. This vulnerability allows attackers to cau… Update	CWE-121 Stack-based Buffer Overflow	CVE-2026-36785	2026-06-9 02:16	2026-06-6	Show	GitHub Exploit DB Packet Storm

898	9.1	CRITICAL Network	-	-	An issue in the cluster-admin:backup-datastore component of Controller v12.0.5 allows attackers to execute a directory traversal via a crafted request. Update	CWE-22 Path Traversal	CVE-2026-36500	2026-06-9 02:16	2026-06-6	Show	GitHub Exploit DB Packet Storm

899	4.8	MEDIUM Network	-	-	Dovestones Softwares ADPhonebook before v4.0.1.1 is vulnerable to a Cross Site Scripting vulnerability. The /Admin/Save API allows an authenticated admin user to store malicious JavaScript payloads i… Update	CWE-79 Cross-site Scripting	CVE-2026-36460	2026-06-9 02:16	2026-06-4	Show	GitHub Exploit DB Packet Storm

900	5.3	MEDIUM Network	libxls_project	libxls	A use-of-uninitialized memory vulnerability exists in libxls 1.6.3 when parsing malformed XLS files. The issue is reachable via xls_parseWorkBook() and is triggered by uninitialized heap memory origi… Update	CWE-908 Use of Uninitialized Resource	CVE-2026-26825	2026-06-9 02:16	2026-06-4	Show	GitHub Exploit DB Packet Storm