Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 20, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
194961	9.8	緊急 Network	XOOPS	-	XOOPS の Core ディストリビューションの install/page_dbsettings.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2017-11174	2017-08-17 16:39	2017-07-11	Show	GitHub Exploit DB Packet Storm

194962	9.8	緊急 Network	Newport Corporation	-	Newport XPS-Cx および XPS-Qx における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2017-7919	2017-08-17 16:25	2017-06-27	Show	GitHub Exploit DB Packet Storm

194963	7.5	重要 Network	Puppet	-	Puppet Enterprise における情報漏えいに関する脆弱性	CWE-200 情報漏えい	CVE-2017-2294	2017-08-17 16:25	2017-05-11	Show	GitHub Exploit DB Packet Storm

194964	7.5	重要 Network	IPsec-Tools	-	IPsec-Tools におけるアルゴリズムの複雑さに関する脆弱性	CWE-407 アルゴリズムの複雑性	CVE-2016-10396	2017-08-17 16:25	2016-12-2	Show	GitHub Exploit DB Packet Storm

194965	9.8	緊急 Network	Teltonika	-	Teltonika RUT9XX ルータのファームウェアの管理インターフェースにおける root 権限で任意のコマンドを実行される脆弱性	CWE-284 不適切なアクセス制御	CVE-2017-8116	2017-08-17 16:22	2017-06-20	Show	GitHub Exploit DB Packet Storm

194966	9.8	緊急 Network	ATutor	-	ATutor における認可・権限・アクセス制御に関する脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2017-1000003	2017-08-17 16:01	2017-07-16	Show	GitHub Exploit DB Packet Storm

194967	9.8	緊急 Network	ATutor	-	ATutor におけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2017-1000002	2017-08-17 16:01	2017-07-16	Show	GitHub Exploit DB Packet Storm

194968	6.1	警告 Network	ビー・ブラウンエースクラップ株式会社	-	B. Braun Medical SpaceCom モジュールにおけるオープンリダイレクトの脆弱性	CWE-601 オープンリダイレクト	CVE-2017-6018	2017-08-17 15:05	2017-05-23	Show	GitHub Exploit DB Packet Storm

194969	8.1	重要 Network	The Foreman	-	Foreman におけるユーザの認証情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2015-5152	2017-08-17 12:28	2015-07-15	Show	GitHub Exploit DB Packet Storm

194970	8.8	重要 Network	アドビシステムズ	-	Adobe Flash Player における任意のコードを実行される脆弱性	CWE-704 不正な型変換またはキャスト	CVE-2017-3106	2017-08-17 11:58	2017-08-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 21, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
531	5.3	MEDIUM Local	-	-	Multiple out-of-bounds read vulnerabilities were found in GStreamer's pcapparse element. Malformed PCAP records can trigger reads beyond buffer boundaries during IPv4/TCP header parsing. This element…	CWE-125 Out-of-bounds Read	CVE-2026-52721	2026-06-16 06:09	2026-06-16	Show	GitHub Exploit DB Packet Storm

532	7.1	HIGH Network	-	-	A signed integer overflow vulnerability was found in GStreamer's VMnc decoder. A crafted VMnc stream with large cursor dimensions can overflow signed integer payload-size arithmetic, bypassing a leng…	CWE-190 Integer Overflow or Wraparound	CVE-2026-52722	2026-06-16 06:09	2026-06-16	Show	GitHub Exploit DB Packet Storm

533	7.1	HIGH Network	-	-	A flaw was found in GStreamer's RealMedia demuxer in the gst-plugins-ugly package. When processing a RealMedia file containing a specially crafted FILEINFO metadata section, the demuxer parses variab…	CWE-125 Out-of-bounds Read	CVE-2026-53704	2026-06-16 06:09	2026-06-16	Show	GitHub Exploit DB Packet Storm

534	7.1	HIGH Network	-	-	A vulnerability was found in the GStreamer RealMedia demuxer (gst-plugins-ugly). When processing a RealMedia (.rm) file, the demuxer parses MDPR (media properties) chunks to configure audio streams. …	CWE-125 Out-of-bounds Read	CVE-2026-53703	2026-06-16 06:09	2026-06-16	Show	GitHub Exploit DB Packet Storm

535	7.6	HIGH Network	-	-	A flaw was found in GStreamer's WavPack audio decoder in gst-plugins-good. When processing a specially crafted WavPack file, an integer overflow in the buffer size calculation (4 * block_samples * ch…	CWE-190 Integer Overflow or Wraparound	CVE-2026-53705	2026-06-16 06:09	2026-06-16	Show	GitHub Exploit DB Packet Storm

536	7.7	HIGH Network	-	-	Koel is a free, open-source music streaming solution. Prior to version 9.3.5, Koel validates the podcast feed URL via the SafeUrl rule (DNS resolution + public IP check), but the individual episode <…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-47260	2026-06-16 06:08	2026-06-13	Show	GitHub Exploit DB Packet Storm

537	7.6	HIGH Network	-	-	SQL Injection in reports/catalogue_out.pl in Koha Community Koha through 22.11.37, 23.x, 24.x before 24.11.16, 25.05.x before 25.05.11, 25.11.x before 25.11.05, 26.05.x before 26.05.01, and 26.11.x b…	CWE-89 SQL Injection	CVE-2026-6428	2026-06-16 06:06	2026-06-14	Show	GitHub Exploit DB Packet Storm

538	-		-	-	Typesense is a fast, typo-tolerant search engine. Prior to versions 29.1 and 30.2, there is an unauthenticated denial-of-service vulnerability in the /multi_search endpoint. A specially crafted reque…	CWE-754 Improper Check for Unusual or Exceptional Conditions	CVE-2026-47216	2026-06-16 06:05	2026-06-13	Show	GitHub Exploit DB Packet Storm

539	-		-	-	Typesense is a fast, typo-tolerant search engine. Prior to versions 29.1 and 30.2, there is a cache isolation issue affecting search requests that use both server-side search result caching and Scope…	CWE-524 Use of Cache Containing Sensitive Information	CVE-2026-47225	2026-06-16 06:05	2026-06-13	Show	GitHub Exploit DB Packet Storm

540	-		-	-	Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to versions 8.6.78 and 9.9.1-alpha.2, Parse Server's GraphQL endpoint discloses schema me…	CWE-209 Information Exposure Through an Error Message	CVE-2026-47248	2026-06-16 06:05	2026-06-13	Show	GitHub Exploit DB Packet Storm