Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 7, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
201081	5.5	警告 Local	マイクロソフト	-	複数の Microsoft Excel 製品におけるプロセスメモリから重要な情報を取得される脆弱性	CWE-125 境界外読み取り	CVE-2016-7264	2016-12-22 14:48	2016-12-13	Show	GitHub Exploit DB Packet Storm

201082	7.8	重要 Local	マイクロソフト	-	複数の Microsoft Excel 製品における任意のコマンドを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2016-7262	2016-12-22 14:48	2016-12-13	Show	GitHub Exploit DB Packet Storm

201083	8.8	重要 Network	マイクロソフト	-	複数の Microsoft Windows の Uniscribe における任意のコードを実行される脆弱性	CWE-19 データ処理	CVE-2016-7274	2016-12-22 11:35	2016-12-13	Show	GitHub Exploit DB Packet Storm

201084	7.8	重要 Local	マイクロソフト	-	複数の Microsoft Windows 製品のカーネルモードドライバのグラフィックコンポーネントにおける権限昇格の脆弱性	CWE-19 データ処理	CVE-2016-7259	2016-12-22 11:32	2016-12-13	Show	GitHub Exploit DB Packet Storm

201085	7.8	重要 Local	マイクロソフト	-	複数の Microsoft Windows 製品のインストーラーにおける権限昇格の脆弱性	CWE-19 データ処理	CVE-2016-7292	2016-12-22 11:28	2016-12-13	Show	GitHub Exploit DB Packet Storm

201086	5.5	警告 Local	マイクロソフト	-	複数の Microsoft Windows 製品の Windows Crypto Driver における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2016-7219	2016-12-22 11:28	2016-12-13	Show	GitHub Exploit DB Packet Storm

201087	5.5	警告 Local	マイクロソフト	-	複数の Microsoft Windows 製品の CLFS ドライバにおけるプロセスメモリから重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2016-7295	2016-12-22 11:05	2016-12-13	Show	GitHub Exploit DB Packet Storm

201088	8.8	重要 Network	マイクロソフト	-	複数の Microsoft Windows 製品の Graphics コンポーネントにおける任意のコードを実行される脆弱性	CWE-19 データ処理	CVE-2016-7272	2016-12-22 11:00	2016-12-13	Show	GitHub Exploit DB Packet Storm

201089	5.5	警告 Local	マイクロソフト	-	複数の Microsoft Excel 製品における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2016-7267	2016-12-21 17:47	2016-12-13	Show	GitHub Exploit DB Packet Storm

201090	7.8	重要 Local	マイクロソフト	-	Microsoft Excel for Mac 2011 および Excel 2016 for Mac における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2016-7263	2016-12-21 17:47	2016-12-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2751	10.0	CRITICAL Network	free5gc	free5gc	free5GC is an open-source implementation of the 5G core network. Prior to 4.2.2, free5GC's SMF mounts the UPI management route group without OAuth2/bearer-token authorization middleware. A network at…	CWE-306 CWE-862 Missing Authentication for Critical Function Missing Authorization	CVE-2026-44329	2026-05-29 01:23	2026-05-28	Show	GitHub Exploit DB Packet Storm

2752	8.8	HIGH Network	-	-	A weakness has been identified in UTT HiPER 1200GW up to 2.5.3-170306. Affected is an unknown function of the file /goform/formPptpClientConfig of the component Web Management Interface. This manipul…	CWE-119 CWE-121 Incorrect Access of Indexable Resource ('Range Error') Stack-based Buffer Overflow	CVE-2026-9628	2026-05-29 01:16	2026-05-27	Show	GitHub Exploit DB Packet Storm

2753	6.3	MEDIUM Network	-	-	A vulnerability was found in itsourcecode Courier Management System 1.0. The affected element is an unknown function of the file /parcel_list.php. Performing a manipulation of the argument s results …	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-9607	2026-05-29 01:16	2026-05-27	Show	GitHub Exploit DB Packet Storm

2754	4.3	MEDIUM Network	-	-	A weakness has been identified in SourceCodester CET Automated Grading System with AI Predictive Analytics 1.0. This impacts an unknown function of the file /index.php of the component SQL Handler. E…	CWE-200 CWE-209 Information Exposure Information Exposure Through an Error Message	CVE-2026-9583	2026-05-29 01:16	2026-05-27	Show	GitHub Exploit DB Packet Storm

2755	7.3	HIGH Network	-	-	A vulnerability has been found in sambitraj STUDENT-MANAGEMENT-SYSTEM up to 56ba287f2e9031523ccb4244cb6e3fe530e4e5d5. The affected element is an unknown function of the component Dashboard. Such mani…	CWE-266 CWE-284 Incorrect Privilege Assignment Improper Access Control	CVE-2026-9562	2026-05-29 01:16	2026-05-27	Show	GitHub Exploit DB Packet Storm

2756	6.3	MEDIUM Network	-	-	A vulnerability was identified in Totolink CA750-PoE 6.2c.510. This affects the function setWebWlanIdx of the file /cgi-bin/cstecgi.cgi of the component Setting Handler. Such manipulation of the argu…	CWE-77 CWE-78 Command Injection OS Command	CVE-2026-9511	2026-05-29 01:16	2026-05-26	Show	GitHub Exploit DB Packet Storm

2757	4.8	MEDIUM Network	-	-	Crypt::ScryptKDF versions through 0.010 for Perl uses insecure random number source when no CSPRNG module is available. The random_bytes function fell back to using the built-in rand() function when…	CWE-338 Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)	CVE-2026-8647	2026-05-29 01:16	2026-05-27	Show	GitHub Exploit DB Packet Storm

2758	7.5	HIGH Network	-	-	Budibase is an open-source low-code platform. Prior to 3.39.0, the webhook schema-building endpoint is registered under builderRoutes, but the generic authorization middleware skips authorization for…	CWE-862 Missing Authorization	CVE-2026-48151	2026-05-29 01:16	2026-05-28	Show	GitHub Exploit DB Packet Storm

2759	8.1	HIGH Network	-	-	Budibase is an open-source low-code platform. Prior to 3.39.0, the Budibase Text component renders markdown by assigning marked.parse(markdown) straight to innerHTML with no sanitizer (packages/bbui/…	CWE-79 Cross-site Scripting	CVE-2026-48149	2026-05-29 01:16	2026-05-28	Show	GitHub Exploit DB Packet Storm

2760	7.7	HIGH Network	-	-	Budibase is an open-source low-code platform. Prior to 3.39.0, the OAuth2 token fetch function in packages/server/src/sdk/workspace/oauth2/utils.ts uses raw fetch(config.url) with no SSRF protection.…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-48146	2026-05-29 01:16	2026-05-28	Show	GitHub Exploit DB Packet Storm