Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 10 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
193741 8.8 重要
Network
TeamWork - TeamWork TicketPlus における危険なタイプのファイルの無制限アップロードに関する脆弱性 CWE-434
危険なタイプのファイルの無制限アップロード
CVE-2017-14840 2017-10-20 16:43 2017-09-26 Show GitHub Exploit DB Packet Storm
193742 8.8 重要
Network
TeamWork - TeamWork Photo Fusion における危険なタイプのファイルの無制限アップロードに関する脆弱性 CWE-434
危険なタイプのファイルの無制限アップロード
CVE-2017-14839 2017-10-20 16:43 2017-09-26 Show GitHub Exploit DB Packet Storm
193743 8.8 重要
Network
TeamWork - TeamWork Job Links における危険なタイプのファイルの無制限アップロードに関する脆弱性 CWE-434
危険なタイプのファイルの無制限アップロード
CVE-2017-14838 2017-10-20 16:43 2017-09-26 Show GitHub Exploit DB Packet Storm
193744 9.8 緊急
Network
The Perl Foundation - Perl におけるバッファエラーの脆弱性 CWE-119
バッファエラー
CVE-2017-12814 2017-10-20 16:40 2017-09-10 Show GitHub Exploit DB Packet Storm
193745 9.8 緊急
Network
Zoho Corporation - ManageEngine Desktop Central における危険なタイプのファイルの無制限アップロードに関する脆弱性 CWE-434
危険なタイプのファイルの無制限アップロード
CVE-2015-8249 2017-10-20 16:29 2015-12-14 Show GitHub Exploit DB Packet Storm
193746 6.1 警告
Network
VASCO - Citrix Web Interface 用 VASCO DIGIPASS Authentication プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2015-7349 2017-10-20 16:17 2015-09-2 Show GitHub Exploit DB Packet Storm
193747 9.8 緊急
Network
シスコシステムズ - Cisco IOS および IOS XE Software におけるバッファエラーの脆弱性 CWE-119
CWE-20
CVE-2017-12240 2017-10-20 15:52 2017-09-27 Show GitHub Exploit DB Packet Storm
193748 6.8 警告
Physics
シスコシステムズ - Cisco IOS XE における認可・権限・アクセス制御に関する脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2017-12239 2017-10-20 15:52 2017-09-27 Show GitHub Exploit DB Packet Storm
193749 6.5 警告
Adjacent
シスコシステムズ - Cisco IOS におけるリソース管理に関する脆弱性 CWE-399
リソース管理の問題
CVE-2017-12238 2017-10-20 15:52 2017-09-27 Show GitHub Exploit DB Packet Storm
193750 7.5 重要
Network
シスコシステムズ - Cisco IOS および IOS XE におけるリソース管理に関する脆弱性 CWE-399
リソース管理の問題
CVE-2017-12237 2017-10-20 15:52 2017-09-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
3991 7.1 HIGH
Adjacent
espressif esp-idf ESF-IDF is the Espressif Internet of Things (IOT) Development Framework. In versions 5.2.6, 5.3.5, 5.4.4, 5.5.4, and 6.0, a heap buffer overflow exists in the Security Scheme 2 (SRP6a) session-setup … CWE-122
Heap-based Buffer Overflow
CVE-2026-45542 2026-06-12 02:41 2026-06-10 Show GitHub Exploit DB Packet Storm
3992 3.9 LOW
Physics
microsoft windows_10_1607
windows_10_1809
windows_10_21h2
windows_10_22h2
windows_11_23h2
windows_11_24h2
windows_11_25h2
windows_11_26h1
windows_server_2012
windows_server_2016
w…
Improper input validation in Microsoft Azure Attestation service and Device Health Attestation Service allows an authorized attacker to perform spoofing with a physical attack. CWE-20
 Improper Input Validation 
CVE-2026-45642 2026-06-12 02:39 2026-06-10 Show GitHub Exploit DB Packet Storm
3993 4.3 MEDIUM
Network
gitlab gitlab GitLab has remediated an issue in GitLab EE affecting all versions from 13.9 before 18.10.8, 18.11 before 18.11.5, and 19.0 before 19.0.2 that under certain conditions could have allowed an authentic… CWE-863
 Incorrect Authorization
CVE-2026-6277 2026-06-12 02:36 2026-06-11 Show GitHub Exploit DB Packet Storm
3994 8.7 HIGH
Network
gitlab gitlab GitLab has remediated an issue in GitLab EE affecting all versions from 15.5 before 18.10.8, 18.11 before 18.11.5, and 19.0 before 19.0.2 that under certain conditions could have allowed an authentic… CWE-639
 Authorization Bypass Through User-Controlled Key
CVE-2026-6552 2026-06-12 02:36 2026-06-11 Show GitHub Exploit DB Packet Storm
3995 4.6 MEDIUM
Adjacent
espressif esp-idf ESF-IDF is the Espressif Internet of Things (IOT) Development Framework. In versions 5.2.6, 5.3.5, 5.4.4, 5.5.3, and 6.0, an out-of-bounds read exists in the BlueDroid AVRCP vendor-command parser (av… CWE-125
Out-of-bounds Read
CVE-2026-46532 2026-06-12 02:36 2026-06-10 Show GitHub Exploit DB Packet Storm
3996 9.8 CRITICAL
Network
microsoft windows_10_1607
windows_10_1809
windows_10_21h2
windows_10_22h2
windows_11_23h2
windows_11_24h2
windows_11_25h2
windows_11_26h1
windows_server_2012
windows_server_2016
w…
Stack-based buffer overflow in Windows DHCP Client allows an unauthorized attacker to execute code over a network. CWE-121
Stack-based Buffer Overflow
CVE-2026-44815 2026-06-12 02:35 2026-06-10 Show GitHub Exploit DB Packet Storm
3997 3.7 LOW
Network
gitlab gitlab GitLab has remediated an issue in GitLab CE/EE affecting all versions from 15.9 before 18.10.8, 18.11 before 18.11.5, and 19.0 before 19.0.2 that under certain conditions could have allowed an authen… CWE-639
 Authorization Bypass Through User-Controlled Key
CVE-2026-6976 2026-06-12 02:34 2026-06-11 Show GitHub Exploit DB Packet Storm
3998 7.5 HIGH
Network
gitlab gitlab GitLab has remediated an issue in GitLab CE/EE affecting all versions from 12.10 before 18.10.8, 18.11 before 18.11.5, and 19.0 before 19.0.2 that under certain conditions could have allowed an unaut… CWE-770
 Allocation of Resources Without Limits or Throttling
CVE-2026-7250 2026-06-12 02:34 2026-06-11 Show GitHub Exploit DB Packet Storm
3999 4.3 MEDIUM
Network
gitlab gitlab GitLab has remediated an issue in GitLab CE/EE affecting all versions from 15.9 before 18.10.8, 18.11 before 18.11.5, and 19.0 before 19.0.2 that under certain conditions, could have allowed an unaut… CWE-153
 Improper Neutralization of Substitution Characters
CVE-2026-9694 2026-06-12 02:32 2026-06-11 Show GitHub Exploit DB Packet Storm
4000 6.1 MEDIUM
Network
adobe experience_manager Adobe Experience Manager Forms JEE versions LTS SP1, 6.5.24.0 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by an attacker to inject malicious scr… CWE-79
Cross-site Scripting
CVE-2026-34691 2026-06-12 02:29 2026-06-10 Show GitHub Exploit DB Packet Storm