Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 1, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
196991 6.5 警告
Network 		マイクロソフト - Microsoft Outlook for Mac における Web コンテンツを偽造される脆弱性 CWE-284
不適切なアクセス制御 		CVE-2017-0207 2017-04-25 12:17 2017-04-11 Show GitHub Exploit DB Packet Storm
196992 4.3 警告
Network 		マイクロソフト - Microsoft Edge における情報を公開される脆弱性 CWE-200
情報漏えい 		CVE-2017-0208 2017-04-25 12:13 2017-04-11 Show GitHub Exploit DB Packet Storm
196993 5.8 警告
Network 		マイクロソフト
日立		 - 複数の Microsoft Windows 製品におけるサービス運用妨害 (DoS) の脆弱性 CWE-284
不適切なアクセス制御 		CVE-2017-0191 2017-04-25 12:04 2017-04-11 Show GitHub Exploit DB Packet Storm
196994 5.5 警告
Local 		マイクロソフト - 複数の Microsoft 製品におけるプロセスメモリから重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2017-0194 2017-04-25 11:59 2017-04-11 Show GitHub Exploit DB Packet Storm
196995 6.1 警告
Network 		IBM - IBM WebSphere Portal におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2017-1120 2017-04-25 11:58 2017-03-23 Show GitHub Exploit DB Packet Storm
196996 5.4 警告
Network 		IBM - IBM TRIRIGA におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-9737 2017-04-25 11:58 2016-12-16 Show GitHub Exploit DB Packet Storm
196997 8.8 重要
Network 		IBM - IBM Cognos Business Intelligence における認可・権限・アクセス制御に関する脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-8960 2017-04-25 11:58 2016-11-6 Show GitHub Exploit DB Packet Storm
196998 3.7
Network 		IBM - IBM Security Key Lifecycle Manager における情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2016-6102 2017-04-25 11:58 2016-06-29 Show GitHub Exploit DB Packet Storm
196999 5.4 警告
Network 		IBM - IBM Call Center for Commerce におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-6056 2017-04-25 11:58 2016-06-29 Show GitHub Exploit DB Packet Storm
197000 6.1 警告
Network 		Yii Framework - Yii Framework における反射型クロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2017-7271 2017-04-25 11:35 2017-02-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2091 7.3 HIGH
Network 		- - A security vulnerability has been detected in yashpokharna2555 StudentManagementSystem cb2f558ddf8d19396de0f92abf2d224d46a0a203. This affects the function confirm_logged_in of the file student_trans.… CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-9470 2026-05-27 04:54 2026-05-26 Show GitHub Exploit DB Packet Storm
2092 3.5 LOW
Network 		- - A vulnerability was detected in yashpokharna2555 StudentManagementSystem cb2f558ddf8d19396de0f92abf2d224d46a0a203. This impacts an unknown function of the file /student.php. Performing a manipulation… CWE-79
CWE-94
Cross-site Scripting
Code Injection 		CVE-2026-9471 2026-05-27 04:54 2026-05-26 Show GitHub Exploit DB Packet Storm
2093 6.3 MEDIUM
Network 		- - A flaw has been found in dazeb markdown-downloader up to 3d4394b34b6c99d81af817623af55e3384df5a6a. Affected is the function download_markdown/list_downloaded_files/create_subdirectory of the file src… CWE-22
Path Traversal 		CVE-2026-9472 2026-05-27 04:54 2026-05-26 Show GitHub Exploit DB Packet Storm
2094 7.3 HIGH
Network 		- - A vulnerability was found in yashpokharna2555 StudentManagementSystem up to cb2f558ddf8d19396de0f92abf2d224d46a0a203. Affected by this issue is the function confirm_logged_in of the file /studentdel.… CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-9474 2026-05-27 04:54 2026-05-26 Show GitHub Exploit DB Packet Storm
2095 9.8 CRITICAL
Network 		- - A vulnerability was identified in Totolink A8000RU 7.1cu.643_b20200521. This vulnerability affects the function setPasswordCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interfa… CWE-77
CWE-78
Command Injection
OS Command  		CVE-2026-9476 2026-05-27 04:54 2026-05-26 Show GitHub Exploit DB Packet Storm
2096 9.8 CRITICAL
Network 		- - A security flaw has been discovered in Totolink A8000RU 7.1cu.643_b20200521. This issue affects the function setAccessDeviceCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interf… CWE-77
CWE-78
Command Injection
OS Command  		CVE-2026-9477 2026-05-27 04:54 2026-05-26 Show GitHub Exploit DB Packet Storm
2097 9.8 CRITICAL
Network 		- - A weakness has been identified in Totolink A8000RU 7.1cu.643_b20200521. Impacted is the function setParentalRules of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Executing… CWE-77
CWE-78
Command Injection
OS Command  		CVE-2026-9478 2026-05-27 04:54 2026-05-26 Show GitHub Exploit DB Packet Storm
2098 6.3 MEDIUM
Network 		- - A flaw has been found in changmingxie tcc-transaction up to 2.1.0. This issue affects the function Fastjson.parseObject of the component Fastjson AutoType REST API. This manipulation causes deseriali… CWE-20
CWE-502
 Improper Input Validation 
 Deserialization of Untrusted Data 		CVE-2026-9497 2026-05-27 04:54 2026-05-26 Show GitHub Exploit DB Packet Storm
2099 6.3 MEDIUM
Network 		- - A vulnerability has been found in Dromara lamp-cloud up to 5.6.2. Impacted is the function GroovyClassLoader.parseClass of the component Message Template Handler. Such manipulation of the argument De… CWE-791
CWE-1336
 Incomplete Filtering of Special Elements
 Improper Neutralization of Special Elements Used in a Template Engine 		CVE-2026-9498 2026-05-27 04:54 2026-05-26 Show GitHub Exploit DB Packet Storm
2100 3.3 LOW
Local 		- - A vulnerability was determined in GNU LibreDWG up to 0.14. The impacted element is the function decompress_R2004_section of the file src/decode.c of the component Dwgread Utility. Executing a manipul… CWE-617
 Reachable Assertion 		CVE-2026-9501 2026-05-27 04:54 2026-05-26 Show GitHub Exploit DB Packet Storm