Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
194591	8.8	重要 Network	The Foreman	-	Foreman における認可・権限・アクセス制御に関する脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2017-7505	2017-06-29 19:51	2017-06-2	Show	GitHub Exploit DB Packet Storm

194592	6.1	警告 Network	Markdown on Save Improved	-	WordPress 用 Markdown on Save Improved プラグインにおける格納型クロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2017-9337	2017-06-29 18:37	2017-06-1	Show	GitHub Exploit DB Packet Storm

194593	6.1	警告 Network	JaxsonWang	-	WordPress 用 WP Editor.MD プラグインにおける格納型クロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2017-9336	2017-06-29 18:37	2017-06-1	Show	GitHub Exploit DB Packet Storm

194594	9.8	緊急 Network	Soffid	-	Soffid IAM コンソールにおける信頼性のないデータのデシリアライゼーションに関する脆弱性	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2017-9363	2017-06-29 18:12	2017-06-1	Show	GitHub Exploit DB Packet Storm

194595	5.3	警告 Network	cryptopp project	-	Crypto++ の Inflator フィルタの zinflate.cpp におけるサービス運用妨害 (DoS) の脆弱性	CWE-125 境界外読み取り	CVE-2017-9434	2017-06-29 17:14	2017-05-11	Show	GitHub Exploit DB Packet Storm

194596	7.5	重要 Network	Apache Software Foundation	-	Apache Hadoop の LinuxContainerExecutor における root 権限で docker コマンドを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2017-7669	2017-06-29 17:07	2017-06-2	Show	GitHub Exploit DB Packet Storm

194597	4.8	警告 Network	Telaxus LLC	-	Telaxus EPESI の modules/Base/Dashboard/Dashboard_0.php における格納型クロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2017-9366	2017-06-29 17:06	2017-05-31	Show	GitHub Exploit DB Packet Storm

194598	6.1	警告 Network	The Jamroom Network	-	Jamroom におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-6705	2017-06-29 16:56	2012-02-19	Show	GitHub Exploit DB Packet Storm

194599	7.8	重要 Local	Google	-	Android の Resource Power Manager におけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2015-9006	2017-06-29 16:56	2017-05-1	Show	GitHub Exploit DB Packet Storm

194600	6.5	警告 Network	Google	-	Android OS の Android におけるブラウザのアドレスバーを偽装される脆弱性	CWE-20 不適切な入力確認	CVE-2015-3830	2017-06-29 16:56	2015-05-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1	7.5	HIGH Network	oracle	database_server	Vulnerability in the Net Service component of Oracle Database Server. Supported versions that are affected are 23.4.0-23.26.2. Easily exploitable vulnerability allows unauthenticated attacker with n… Update	CWE-400 Uncontrolled Resource Consumption	CVE-2026-46834	2026-06-4 03:57	2026-05-29	Show	GitHub Exploit DB Packet Storm

2	9.9	CRITICAL Network	linuxfoundation	cloudnativepg	CloudNativePG is a platform designed to manage PostgreSQL databases within Kubernetes environments. Prior to 1.29.1 and 1.28.3, the CloudNativePG metrics exporter opens its PostgreSQL connection as t… Update	CWE-250 CWE-271 CWE-426 Execution with Unnecessary Privileges Privilege Dropping / Lowering Errors Untrusted Search Path	CVE-2026-44477	2026-06-4 03:56	2026-05-29	Show	GitHub Exploit DB Packet Storm

3	8.0	HIGH Network	microsoft	sharepoint_server	Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network. New	CWE-78 OS Command	CVE-2026-47294	2026-06-4 03:42	2026-06-2	Show	GitHub Exploit DB Packet Storm

4	6.3	MEDIUM Network	vivotek	fd8136_firmware	A stack-based buffer overflow in the export_language.cgi binary in VIVOTEK FD8136 firmware FD8136-VVTK-0300a allows authenticated remote attackers to execute arbitrary code as root via a crafted POST… New	CWE-121 Stack-based Buffer Overflow	CVE-2026-35717	2026-06-4 03:42	2026-06-2	Show	GitHub Exploit DB Packet Storm

5	7.3	HIGH Network	vivotek	fd8136_firmware	Buffer Overflow vulnerability in VIVOTEK INC FD8136-VVTK-0300a allows a remote attacker to execute arbitrary code via the set_getparam.cgi component New	CWE-121 Stack-based Buffer Overflow	CVE-2026-30649	2026-06-4 03:41	2026-06-3	Show	GitHub Exploit DB Packet Storm

6	8.8	HIGH Network	vivotek	fd8136_firmware	A post-authentication remote buffer overflow vulnerability exists in the /cgi-bin/admin/eventtask.cgi endpoint of the admin interface of Vivotek FD8136 cameras running firmware version FD8136-VVTK-03… New	CWE-120 Classic Buffer Overflow	CVE-2026-30650	2026-06-4 03:41	2026-06-3	Show	GitHub Exploit DB Packet Storm

7	8.8	HIGH Network	vivotek	fd8136_firmware	A remote buffer overflow vulnerability exists in the /cgi-bin/dido/setdo.cgi endpoint of the admin interface of Vivotek FD8136 cameras running firmware version FD8136-VVTK-0300a. This flaw allows an … New	CWE-120 Classic Buffer Overflow	CVE-2026-30652	2026-06-4 03:40	2026-06-3	Show	GitHub Exploit DB Packet Storm

8	6.3	MEDIUM Network	vivotek	fd8136_firmware	A stack-based buffer overflow in the motion_privacy.cgi binary in VIVOTEK FD8136 firmware FD8136-VVTK-0300a allows authenticated remote attackers to execute arbitrary code as root via an oversized n1… New	CWE-121 Stack-based Buffer Overflow	CVE-2026-35716	2026-06-4 03:40	2026-06-3	Show	GitHub Exploit DB Packet Storm

9	6.5	MEDIUM Network	vivotek	fd8136_firmware	A path traversal vulnerability in the /admin/downloadMedias.cgi endpoint of VIVOTEK INC FD8136-VVTK firmware 0300a allows authenticated attackers to read any file on the device via sending a crafted … New	CWE-22 Path Traversal	CVE-2026-35718	2026-06-4 03:39	2026-06-3	Show	GitHub Exploit DB Packet Storm

10	9.9	CRITICAL Network	oracle	rest_data_services	Vulnerability in Oracle REST Data Services (component: Core). Supported versions that are affected are 24.2.0-26.1.0. Easily exploitable vulnerability allows low privileged attacker with network acc… Update	CWE-400 CWE-284 Uncontrolled Resource Consumption Improper Access Control	CVE-2026-46775	2026-06-4 03:35	2026-05-29	Show	GitHub Exploit DB Packet Storm