Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 29, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2011	5.4	警告 Network	VMware	Spring Security	VMwareのSpring Securityにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-41003	2026-06-15 11:18	2026-06-10	Show	GitHub Exploit DB Packet Storm

2012	6.1	警告 Network	QNAP Systems	QuTS hero QNAP QTS	QNAP SystemsのQNAP QTS等の複数製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-41539	2026-06-15 11:18	2026-06-9	Show	GitHub Exploit DB Packet Storm

2013	5.3	警告 Network	VMware	Spring Security	VMwareのSpring Securityにおけるデジタル署名の検証に関する脆弱性	CWE-347 デジタル署名の不適切な検証	CVE-2026-41694	2026-06-15 11:18	2026-06-10	Show	GitHub Exploit DB Packet Storm

2014	9.8	緊急 Network	VMware	spring for graphql	VMwareのspring for graphqlにおける信頼できないデータのデシリアライゼーションに関する脆弱性	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2026-41699	2026-06-15 11:18	2026-06-11	Show	GitHub Exploit DB Packet Storm

2015	8.1	重要 Network	VMware	spring for graphql	VMwareのspring for graphqlにおける同一生成元ポリシー違反に関する脆弱性	CWE-346 同一生成元ポリシー違反	CVE-2026-41700	2026-06-15 11:18	2026-06-11	Show	GitHub Exploit DB Packet Storm

2016	7.5	重要 Network	VMware	spring for graphql	VMwareのspring for graphqlにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-41856	2026-06-15 11:18	2026-06-11	Show	GitHub Exploit DB Packet Storm

2017	7.5	重要 Network	tdengine	tdengine	tdengineにおける整数アンダーフローの脆弱性	CWE-191 整数アンダーフロー	CVE-2026-42542	2026-06-15 11:18	2026-06-10	Show	GitHub Exploit DB Packet Storm

2018	8.1	重要 Network	マイクロソフト	Microsoft Teams	Android 用の Microsoft Teams の情報漏えいの脆弱性	CWE-74 インジェクション	CVE-2026-42835	2026-06-15 11:18	2026-06-9	Show	GitHub Exploit DB Packet Storm

2019	9.8	緊急 Network	QNAP Systems	qumagie	QNAP Systemsのqumagieにおけるユーザ制御の鍵による認証回避に関する脆弱性	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-44083	2026-06-15 11:18	2026-06-9	Show	GitHub Exploit DB Packet Storm

2020	7.5	重要 Network	axios project	axios	axios projectのaxiosにおける情報漏えいに関する脆弱性	CWE-200 情報漏えい	CVE-2026-44486	2026-06-15 11:18	2026-06-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 30, 2026, 4:22 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
307141	-	microfocus	edirectory	Cross-site scripting (XSS) vulnerability in NetIQ eDirectory 8.8.6.x before 8.8.6.7 and 8.8.7.x before 8.8.7.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2012-0428	2024-11-21 10:34	2012-12-25	Show	GitHub Exploit DB Packet Storm

307142	-	novell	iprint	Unspecified vulnerability in Novell iPrint Client before 5.82 allows remote attackers to execute arbitrary code via an op-client-interface-version action.	NVD-CWE-noinfo	CVE-2012-0411	2024-11-21 10:34	2012-12-25	Show	GitHub Exploit DB Packet Storm

307143	-	xen	xen	Xen 3.4, 4.0, and 4.1, when the guest OS has not registered a handler for a syscall or sysenter instruction, does not properly clear a flag for exception injection when injecting a General Protection…	NVD-CWE-Other	CVE-2012-0218	2024-11-21 10:34	2012-12-4	Show	GitHub Exploit DB Packet Storm

307144	-	irfanview	flashpix_plugin	Double free vulnerability in the Free_All_Memory function in jpeg/dectile.c in libfpx before 1.3.1-1, as used in the FlashPix PlugIn 4.2.2.0 for IrfanView, allows remote attackers to cause a denial o…	CWE-399 Resource Management Errors	CVE-2012-0025	2024-11-21 10:34	2012-11-3	Show	GitHub Exploit DB Packet Storm

307145	-	videolan	vlc_media_player	Double free vulnerability in the get_chunk_header function in modules/demux/ty.c in VideoLAN VLC media player 0.9.0 through 1.1.12 allows remote attackers to cause a denial of service (crash) and pos…	CWE-399 Resource Management Errors	CVE-2012-0023	2024-11-21 10:34	2012-10-31	Show	GitHub Exploit DB Packet Storm

307146	-	symantec	ghost_solutions_suite	Symantec Ghost Solution Suite 2.x through 2.5.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted backup file.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-0306	2024-11-21 10:34	2012-10-19	Show	GitHub Exploit DB Packet Storm

307147	-	oracle	fusion_middleware	Unspecified vulnerability in the Oracle Imaging and Process Management component in Oracle Fusion Middleware 10.1.3.6.0 allows remote authenticated users to affect confidentiality via unknown vectors…	NVD-CWE-noinfo	CVE-2012-0108	2024-11-21 10:34	2012-10-17	Show	GitHub Exploit DB Packet Storm

307148	-	oracle	fusion_middleware	Unspecified vulnerability in the Oracle Imaging and Process Management component in Oracle Fusion Middleware 10.1.3.6.0 allows remote attackers to affect availability via unknown vectors related to W…	NVD-CWE-noinfo	CVE-2012-0107	2024-11-21 10:34	2012-10-17	Show	GitHub Exploit DB Packet Storm

307149	-	oracle	fusion_middleware	Unspecified vulnerability in the Oracle Imaging and Process Management component in Oracle Fusion Middleware 10.1.3.6.0 allows remote authenticated users to affect confidentiality and integrity via u…	NVD-CWE-noinfo	CVE-2012-0106	2024-11-21 10:34	2012-10-17	Show	GitHub Exploit DB Packet Storm

307150	-	oracle	fusion_middleware	Unspecified vulnerability in the Oracle Imaging and Process Management component in Oracle Fusion Middleware 10.1.3.6.0 allows remote authenticated users to affect confidentiality via unknown vectors…	NVD-CWE-noinfo	CVE-2012-0095	2024-11-21 10:34	2012-10-17	Show	GitHub Exploit DB Packet Storm