Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 9, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
200981 7.1 重要
Network 		WordPress.org - WordPress の wp-admin/includes/ajax-actions.php の wp_ajax_update_plugin 関数におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2016-6896 2017-02-1 10:37 2016-08-20 Show GitHub Exploit DB Packet Storm
200982 4.3 警告
Network 		WordPress.org - WordPress の wp-admin/includes/ajax-actions.php の wp_ajax_update_plugin 関数における読み取りアクセス制限を回避される脆弱性 CWE-254
CWE-284
CVE-2016-10148 2017-02-1 10:37 2016-07-27 Show GitHub Exploit DB Packet Storm
200983 4 警告
Local 		Info-ZIP - Info-Zip UnZip の zipinfo.c の zi_short 関数におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-9844 2017-01-31 18:23 2016-12-2 Show GitHub Exploit DB Packet Storm
200984 5.5 警告
Local 		Linux - Linux Kernel の crypto/mcryptd.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2016-10147 2017-01-31 18:16 2016-12-15 Show GitHub Exploit DB Packet Storm
200985 7.5 重要
Network 		Artifex Software - Artifex Software MuJS におけるサービス運用妨害 (DoS) の脆弱性 CWE-125
境界外読み取り 		CVE-2016-9109 2017-01-31 18:06 2016-09-20 Show GitHub Exploit DB Packet Storm
200986 7.5 重要
Network 		Artifex Software - Artifex Software MuJS の jsfunction.c の Fp_toString 関数におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-7564 2017-01-31 18:06 2016-09-20 Show GitHub Exploit DB Packet Storm
200987 7.5 重要
Network 		Artifex Software - Artifex Software MuJS の chartorune 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-125
境界外読み取り 		CVE-2016-7563 2017-01-31 18:06 2016-09-20 Show GitHub Exploit DB Packet Storm
200988 8.1 重要
Network 		CA Technologies - CA Service Desk Manager および CA Service Desk Management の RESTful Web サービスにおけるタスク情報を読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-10086 2017-01-31 18:02 2016-12-30 Show GitHub Exploit DB Packet Storm
200989 9.1 緊急
Network 		Libical project - Libical におけるサービス運用妨害 (DoS) の脆弱性 CWE-416
解放済みメモリの使用 		CVE-2016-9584 2017-01-31 17:53 2016-12-15 Show GitHub Exploit DB Packet Storm
200990 7.5 重要
Network 		Belledonne Communications - Bzrtp ライブラリにおけるなりすまし攻撃を実行される脆弱性 CWE-254
セキュリティ機能 		CVE-2016-6271 2017-01-31 17:50 2016-04-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
501 - - - Logseq exposes an IPC handler that allows the renderer process to execute shell commands. While an allowlist restricts the command name (e.g. `git`, `pandoc`, `grep`), the argument string is concaten… New CWE-78
OS Command  		CVE-2026-9279 2026-06-9 23:47 2026-06-9 Show GitHub Exploit DB Packet Storm
502 8.8 HIGH
Network 		google chrome Use after free in File Input in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Critical) New CWE-416
 Use After Free 		CVE-2026-11630 2026-06-9 23:47 2026-06-9 Show GitHub Exploit DB Packet Storm
503 8.3 HIGH
Network 		google chrome Use after free in Aura in Google Chrome on Windows prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTM… New CWE-416
 Use After Free 		CVE-2026-11631 2026-06-9 23:45 2026-06-9 Show GitHub Exploit DB Packet Storm
504 4.3 MEDIUM
Network 		- - A flaw was found in 389 Directory Server. A type confusion in the SSO token extended operation handler causes partial stack address information to be disclosed in LDAP responses to authenticated user… New CWE-843
Type Confusion 		CVE-2026-11785 2026-06-9 23:42 2026-06-9 Show GitHub Exploit DB Packet Storm
505 1.9 LOW
Local 		- - A flaw was found in 389 Directory Server. The LDIF parser reads past the end of a heap buffer when processing attribute types with trailing semicolons during database import, causing an out-of-bounds… New CWE-125
Out-of-bounds Read 		CVE-2026-11786 2026-06-9 23:42 2026-06-9 Show GitHub Exploit DB Packet Storm
506 5.0 MEDIUM
Network 		- - A flaw was found in 389 Directory Server. The ldap_utf8prev() function reads bytes before the start of a buffer without bounds checking, causing a heap buffer over-read in string filter parsing that … New CWE-126
 Buffer Over-read 		CVE-2026-11787 2026-06-9 23:42 2026-06-9 Show GitHub Exploit DB Packet Storm
507 5.9 MEDIUM
Network 		- - A flaw was found in 389 Directory Server. The dereference control plugin does not check for allocation failure before using a BER structure, allowing an unauthenticated remote attacker to crash the L… New CWE-476
 NULL Pointer Dereference 		CVE-2026-11788 2026-06-9 23:42 2026-06-9 Show GitHub Exploit DB Packet Storm
508 4.9 MEDIUM
Network 		- - A flaw was found in 389 Directory Server. The SMD5 password storage plugin performs unsigned integer underflow when computing salt length from a crafted password hash shorter than 16 bytes, causing a… New CWE-191
 Integer Underflow (Wrap or Wraparound) 		CVE-2026-11789 2026-06-9 23:42 2026-06-9 Show GitHub Exploit DB Packet Storm
509 4.9 MEDIUM
Network 		- - A flaw was found in 389 Directory Server. The PBKDF2-SHA256 password storage plugin does not enforce an upper bound on the iteration count extracted from stored password hashes. A privileged attacker… New CWE-400
 Uncontrolled Resource Consumption 		CVE-2026-11790 2026-06-9 23:42 2026-06-9 Show GitHub Exploit DB Packet Storm
510 3.3 LOW
Network 		- - A heap buffer overflow flaw was found in 389 Directory Server. When audit logging is enabled, the create_masked_entry_string() function in auditlog.c copies a fixed-length password mask into a precis… New CWE-122
Heap-based Buffer Overflow 		CVE-2026-11792 2026-06-9 23:42 2026-06-9 Show GitHub Exploit DB Packet Storm