Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 16, 2026, 4:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
197101	6.5	警告 Network	Google	-	Google Chrome の FFMPEG の libavformat/mov.c におけるメモリ二重解放の脆弱性	CWE-415 二重解放	CVE-2015-1207	2017-06-13 17:02	2015-01-6	Show	GitHub Exploit DB Packet Storm

197102	5.5	警告 Local	lrzip project	-	lrzip で使用される LZO の lzo1x_d.ch の lzo1x_decompress 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-125 境界外読み取り	CVE-2017-8845	2017-06-13 16:55	2017-03-25	Show	GitHub Exploit DB Packet Storm

197103	5.5	警告 Local	Linux	-	Linux Kernel の drivers/usb/serial/omninet.c の omninet_open 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2017-8925	2017-06-13 16:34	2017-03-18	Show	GitHub Exploit DB Packet Storm

197104	4.6	警告 Physics	Linux	-	Linux Kernel の drivers/usb/serial/io_ti.c の edge_bulk_in_callback 関数における重要な情報を取得される脆弱性	CWE-191 整数アンダーフロー	CVE-2017-8924	2017-06-13 16:34	2017-03-18	Show	GitHub Exploit DB Packet Storm

197105	9.8	緊急 Network	DELL EMC (旧 EMC Corporation)	-	EMC Mainframe Enablers ResourcePak Base における認可・権限・アクセス制御に関する脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2017-4982	2017-06-13 16:18	2017-05-8	Show	GitHub Exploit DB Packet Storm

197106	6.1	警告 Network	BlackBerry	-	BlackBerry Unified Endpoint Manager におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2017-3894	2017-06-13 16:02	2017-05-9	Show	GitHub Exploit DB Packet Storm

197107	6.1	警告 Network	SunnyThemes	-	WordPress 用 Spiffy Calendar プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2017-9420	2017-06-13 15:32	2017-06-2	Show	GitHub Exploit DB Packet Storm

197108	6.1	警告 Network	Michael De Wildt	-	WordPress Backup to Dropbox プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-9310	2017-06-13 15:32	2014-12-22	Show	GitHub Exploit DB Packet Storm

197109	9.8	緊急 Network	Atlassian	-	Atlassian SourceTree における OS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2017-8768	2017-06-13 15:26	2017-05-3	Show	GitHub Exploit DB Packet Storm

197110	8.1	重要 Network	Foxit Software Inc	-	iOS 用 Foxit PDF におけるログイン情報を傍受される脆弱性	CWE-295 不正な証明書検証	CVE-2017-8059	2017-06-13 15:17	2017-05-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2931	-		-	-	Concrete CMS below 9.5.2 is vulnerable to PHP Object Injection via unserialize() calls in the Workflow, Form block, and File/Set components that lack the allowed_classes restriction. An unauthenticat…	CWE-502 Deserialization of Untrusted Data	CVE-2026-7888	2026-06-5 00:20	2026-06-4	Show	GitHub Exploit DB Packet Storm

2932	9.8	CRITICAL Network	-	-	Authorization bypass through User-Controlled SQL primary key vulnerability in Akmer Informatics Automation Industry and Trade Ltd. Co. TeknoPass allows SQL Injection. This issue affects TeknoPass: f…	CWE-89 SQL Injection	CVE-2026-4104	2026-06-5 00:20	2026-06-4	Show	GitHub Exploit DB Packet Storm

2933	7.5	HIGH Network	-	-	It is possible for an unauthenticated adjacent attacker to download log files of the controller, which may disclose some restricted information.	CWE-200 Information Exposure	CVE-2026-41032	2026-06-5 00:16	2026-06-3	Show	GitHub Exploit DB Packet Storm

2934	6.8	MEDIUM Local	-	-	An out-of-bounds read vulnerability in the morse.ko HaLow Wi-Fi kernel driver in Morse Micro HaLowLink 2 software versions prior to 2.11.12 allows an unauthenticated attacker within radio range to di…	-	CVE-2026-7764	2026-06-5 00:16	2026-06-4	Show	GitHub Exploit DB Packet Storm

2935	-		-	-	ProjectsAndPrograms school-management-system is vulnerable to Stored Cross‑Site Scripting (XSS) in multiple attributes of students and teachers objects. An authorized attacker (e.g., a teacher or adm…	CWE-79 Cross-site Scripting	CVE-2026-47324	2026-06-5 00:14	2026-06-3	Show	GitHub Exploit DB Packet Storm

2936	-		-	-	ProjectsAndPrograms school-management-system uses predictable credentials by generating student's and teacher's passwords solely from the user’s date of birth (e.g., 12072000 for 12 July 2000). The a…	CWE-1391 Use of Weak Credentials	CVE-2026-47325	2026-06-5 00:14	2026-06-3	Show	GitHub Exploit DB Packet Storm

2937	5.9	MEDIUM Network	-	-	Proxy server in Graph Explorer before 3.0.1 falls back to HTTP when certificate files are missing, which might allow remote threat actors to obtain sensitive information via interception of requests …	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2026-10584	2026-06-5 00:13	2026-06-3	Show	GitHub Exploit DB Packet Storm

2938	9.9	CRITICAL Network	-	-	Files or directories accessible to external parties vulnerability in ABB T-MAC Plus. This issue affects T-MAC Plus: 4.0-24.	CWE-552 Files or Directories Accessible to External Parties	CVE-2025-14771	2026-06-5 00:13	2026-06-3	Show	GitHub Exploit DB Packet Storm

2939	8.8	HIGH Network	-	-	Authorization bypass through User-Controlled key vulnerability in ABB T-MAC Plus. This issue affects T-MAC Plus: 4.0-24.	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2025-14772	2026-06-5 00:13	2026-06-3	Show	GitHub Exploit DB Packet Storm

2940	8.0	HIGH Network	-	-	Improper neutralization of input during web page generation ('cross-site scripting') vulnerability in ABB T-MAC Plus. This issue affects T-MAC Plus: 4.0-24.	CWE-79 Cross-site Scripting	CVE-2025-14773	2026-06-5 00:13	2026-06-3	Show	GitHub Exploit DB Packet Storm