Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 15, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
201901 8.8 重要
Network 		Zimbra - Zimbra Collaboration におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2016-3406 2017-01-30 15:08 2016-03-22 Show GitHub Exploit DB Packet Storm
201902 7.5 重要
Network 		Zimbra - Zimbra Collaboration における脆弱性 CWE-noinfo
情報不足 		CVE-2016-3405 2017-01-30 15:08 2016-03-17 Show GitHub Exploit DB Packet Storm
201903 7.5 重要
Network 		Zimbra - Zimbra Collaboration における脆弱性 CWE-noinfo
情報不足 		CVE-2016-3404 2017-01-30 15:08 2016-03-17 Show GitHub Exploit DB Packet Storm
201904 7.5 重要
Network 		Zimbra - Zimbra Collaboration における脆弱性 CWE-noinfo
情報不足 		CVE-2016-3402 2017-01-30 15:08 2016-03-17 Show GitHub Exploit DB Packet Storm
201905 6.5 警告
Network 		Zimbra - Zimbra Collaboration における脆弱性 CWE-noinfo
情報不足 		CVE-2016-3401 2017-01-30 15:08 2016-03-17 Show GitHub Exploit DB Packet Storm
201906 7.5 重要
Network 		LibTIFF - LibTiff の TIFFFetchNormalTag 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-125
境界外読み取り 		CVE-2016-9297 2017-01-30 14:11 2016-11-7 Show GitHub Exploit DB Packet Storm
201907 5.5 警告
Local 		LibTIFF - LibTIFF の tiffsplit におけるサービス運用妨害 (DoS) の脆弱性 CWE-125
境界外読み取り 		CVE-2016-9273 2017-01-30 14:11 2016-11-7 Show GitHub Exploit DB Packet Storm
201908 9.8 緊急
Network 		Jenkins プロジェクト
Fedora Project		 - Jenkins の remoting モジュールにおける任意のコードを実行される脆弱性 CWE-90
LDAP インジェクション 		CVE-2016-9299 2017-01-30 12:19 2016-11-16 Show GitHub Exploit DB Packet Storm
201909 7.5 重要
Network 		シトリックス・システムズ - Citrix Provisioning Services におけるカーネルメモリから重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2016-9680 2017-01-30 12:18 2016-11-30 Show GitHub Exploit DB Packet Storm
201910 9.8 緊急
Network 		シトリックス・システムズ - Citrix Provisioning Services における任意のコードを実行される脆弱性 CWE-416
解放済みメモリの使用 		CVE-2016-9679 2017-01-30 12:18 2016-11-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2831 - - - In Vinyl Cache before 9.0.1 and Varnish Cache before 9.0.3, a deficiency in HTTP/2 request parsing can be exploited to launch a backend request desync attack (request smuggling), which in turn can be… CWE-444
HTTP Request Smuggling 		CVE-2026-50052 2026-06-5 01:15 2026-06-3 Show GitHub Exploit DB Packet Storm
2832 - - - Pterodactyl is a free, open-source game server management panel. Prior to version 1.12.3, the Pterodactyl Client API has a logic flaw that lets users bypass their assigned limits for database allocat… CWE-367
CWE-770
 Time-of-check Time-of-use (TOCTOU) Race Condition
 Allocation of Resources Without Limits or Throttling 		CVE-2026-35202 2026-06-5 01:12 2026-06-3 Show GitHub Exploit DB Packet Storm
2833 5.3 MEDIUM
Network 		- - CloudburstMC Protocol is a protocol library for Minecraft Bedrock Edition. Prior to version 3.0.0.Beta12-20260420.182526-15, CloudburstMC Protocol is partially missing validation for FULL type authen… CWE-287
Improper Authentication 		CVE-2026-45289 2026-06-5 01:12 2026-06-3 Show GitHub Exploit DB Packet Storm
2834 4.9 MEDIUM
Network 		- - alf.io is an open source ticket reservation system for conferences, trade shows, workshops, and meetups. Prior to version 2.0-M5-2606, the alf.io extension sandbox injects a fully-functional HTTP cli… CWE-22
CWE-73
Path Traversal
 External Control of File Name or Path 		CVE-2026-41412 2026-06-5 01:12 2026-06-3 Show GitHub Exploit DB Packet Storm
2835 6.5 MEDIUM
Network 		- - wire-ios is an iOS client for the Wire secure messaging application. Prior to version 4.16.0, upon receiving a crafted malicious Proteus external message with an encrypted payload that is shorter tha… CWE-20
CWE-191
 Improper Input Validation 
 Integer Underflow (Wrap or Wraparound) 		CVE-2026-35049 2026-06-5 01:12 2026-06-3 Show GitHub Exploit DB Packet Storm
2836 8.5 HIGH
Network 		- - Medplum before 5.1.14 contains a server-side request forgery vulnerability in the subscription worker that allows authenticated users to perform unauthorized internal network requests by creating FHI… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-49120 2026-06-5 01:10 2026-06-3 Show GitHub Exploit DB Packet Storm
2837 8.8 HIGH
Adjacent 		- - BrowserStack Runner through 0.9.5 contains a remote code execution vulnerability in the /_log HTTP handler that allows unauthenticated network-adjacent attackers to execute arbitrary code by submitti… CWE-94
Code Injection 		CVE-2026-49143 2026-06-5 01:10 2026-06-3 Show GitHub Exploit DB Packet Storm
2838 6.5 MEDIUM
Adjacent 		- - BrowserStack Runner through 0.9.5 contains a path traversal vulnerability in the _default HTTP handler in lib/server.js that allows unauthenticated network-adjacent attackers to read arbitrary files.… CWE-22
Path Traversal 		CVE-2026-49144 2026-06-5 01:10 2026-06-3 Show GitHub Exploit DB Packet Storm
2839 5.9 MEDIUM
Network 		- - QloApps through 1.7.0, fixed in commit 64e9722, contains a weak cryptographic algorithm vulnerability that allows attackers to compromise user credentials by exploiting the use of MD5 for password ha… CWE-916
 Use of Password Hash With Insufficient Computational Effort 		CVE-2026-25861 2026-06-5 01:10 2026-06-3 Show GitHub Exploit DB Packet Storm
2840 3.6 LOW
Local 		- - A vulnerability has been found in mlrun up to 1.12.0-rc3. This impacts the function mlrun.utils.helpers.calculate_dataframe_hash of the file mlrun/utils/helpers.py of the component DataFrame Hash Han… CWE-327
CWE-328
 Use of a Broken or Risky Cryptographic Algorithm
 Use of Weak Hash 		CVE-2026-10766 2026-06-5 01:10 2026-06-4 Show GitHub Exploit DB Packet Storm