Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 15, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
202201 6.1 警告
Network 		Google - Google Chrome の Blink におけるユニバーサルクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-5204 2017-01-20 14:40 2016-12-1 Show GitHub Exploit DB Packet Storm
202202 8.8 重要
Network 		Google - Google Chrome の PDFium におけるヒープを破損される脆弱性 CWE-416
解放済みメモリの使用 		CVE-2016-5203 2017-01-20 14:40 2016-12-1 Show GitHub Exploit DB Packet Storm
202203 5.6 警告
Network 		Apache Software Foundation - Apache Struts 2 において devMode が有効な場合に任意の Java(OGNL) コードが実行可能な問題 CWE-20
不適切な入力確認 		- 2017-01-20 12:04 2017-01-20 Show GitHub Exploit DB Packet Storm
202204 3.7
Network 		Debian
Canonical
Pidgin		 - Pidgin の MXIT プロトコルの処理におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2016-4323 2017-01-19 18:03 2016-06-21 Show GitHub Exploit DB Packet Storm
202205 8.1 重要
Network 		Debian
Canonical
Pidgin		 - Pidgin の MXIT プロトコルの処理におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-2378 2017-01-19 18:03 2016-06-21 Show GitHub Exploit DB Packet Storm
202206 8.1 重要
Network 		Debian
Canonical
Pidgin		 - Pidgin の MXIT プロトコルの処理におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-2377 2017-01-19 18:03 2016-06-21 Show GitHub Exploit DB Packet Storm
202207 8.1 重要
Network 		Debian
Canonical
Pidgin		 - Pidgin の MXIT プロトコルの処理におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-2376 2017-01-19 18:03 2016-06-21 Show GitHub Exploit DB Packet Storm
202208 5.3 警告
Network 		Debian
Canonical
Pidgin		 - Pidgin の MXIT プロトコルの処理における境界外読み取りの脆弱性 CWE-125
境界外読み取り 		CVE-2016-2375 2017-01-19 18:03 2016-06-21 Show GitHub Exploit DB Packet Storm
202209 8.1 重要
Network 		Debian
Canonical
Pidgin		 - Pidgin の MXIT プロトコルの処理におけるサービス運用妨害 (DoS) の脆弱性 CWE-125
CWE-200
CVE-2016-2374 2017-01-19 18:03 2016-06-21 Show GitHub Exploit DB Packet Storm
202210 5.9 警告
Network 		Debian
Canonical
Pidgin		 - Pidgin の MXIT プロトコルの処理におけるサービス運用妨害 (DoS) の脆弱性 CWE-125
境界外読み取り 		CVE-2016-2373 2017-01-19 18:03 2016-06-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
61 6.5 MEDIUM
Network 		mongodb mongodb The $_internalConvertBucketIndexStats stage used PauseExecution as a way to signal "skip this document" when an index stats conversion failed. But PauseExecution is not a general purpose skip mechani… Update CWE-617
 Reachable Assertion 		CVE-2026-9748 2026-06-16 02:10 2026-06-10 Show GitHub Exploit DB Packet Storm
62 6.5 MEDIUM
Network 		mongodb mongodb An authenticated user can cause a MongoDB server to crash or return incorrect results by creating documents that interfere with internal metadata processing during query execution. This stems from in… Update CWE-617
 Reachable Assertion 		CVE-2026-9750 2026-06-16 02:10 2026-06-10 Show GitHub Exploit DB Packet Storm
63 7.5 HIGH
Network 		image-size image-size image-size through 2.0.2 contains a denial of service vulnerability that allows remote attackers to permanently block the Node.js event loop by supplying a specially crafted image buffer with a zero-… Update CWE-835
 Loop with Unreachable Exit Condition ('Infinite Loop') 		CVE-2025-71329 2026-06-16 02:09 2026-06-10 Show GitHub Exploit DB Packet Storm
64 8.8 HIGH
Network 		splunk splunk
splunk_cloud_platform
splunk_secure_gateway 		In Splunk Enterprise versions below 10.2.4, 10.0.7, 9.4.12, and 9.3.13, Splunk Cloud Platform versions below 10.3.2512.12, 10.2.2510.14, 10.1.2507.22, and 9.3.2411.132, and Splunk Secure Gateway vers… Update CWE-502
 Deserialization of Untrusted Data 		CVE-2026-20251 2026-06-16 02:08 2026-06-11 Show GitHub Exploit DB Packet Storm
65 7.5 HIGH
Network 		image-size image-size image-size through 2.0.2 contains a denial of service vulnerability that allows remote attackers to permanently block the Node.js event loop by supplying a specially crafted ICNS image buffer. Attack… Update CWE-835
 Loop with Unreachable Exit Condition ('Infinite Loop') 		CVE-2025-71330 2026-06-16 02:00 2026-06-10 Show GitHub Exploit DB Packet Storm
66 6.5 MEDIUM
Network 		mongodb mongodb Adding fromRouter:true and runtimeConstants.userRoles could cause aggregations to crash mongodb server. Update CWE-617
 Reachable Assertion 		CVE-2026-9747 2026-06-16 01:58 2026-06-10 Show GitHub Exploit DB Packet Storm
67 6.5 MEDIUM
Network 		mongodb mongodb In MongoDB Server 8.0, an aggregation stage can leave its _subPipeline field null during processing of certain pipelines. If a getMore is subsequently issued on the same cursor, the server may derefe… Update CWE-476
 NULL Pointer Dereference 		CVE-2026-9743 2026-06-16 01:56 2026-06-10 Show GitHub Exploit DB Packet Storm
68 7.5 HIGH
Network 		mongodb mongodb A vulnerability in MongoDB Server's BSON validation logic allows an unauthenticated user to crash the mongod process by sending a specially crafted message. The BSON validator's handling of certain n… Update CWE-674
 Uncontrolled Recursion 		CVE-2026-9740 2026-06-16 01:55 2026-06-10 Show GitHub Exploit DB Packet Storm
69 7.6 HIGH
Network 		splunk splunk
splunk_cloud_platform 		In Splunk Enterprise versions below 10.2.4, 10.0.7, 9.4.12, and 9.3.13, and Splunk Cloud Platform versions below 10.4.2604.3, 10.3.2512.12, 10.2.2510.14, 10.1.2507.22, and 9.3.2411.132, a low-privile… Update CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-20252 2026-06-16 01:51 2026-06-11 Show GitHub Exploit DB Packet Storm
70 5.5 MEDIUM
Local 		mongodb mongodb MongoDB server may log authentication parameters, including credentials, to the server log during SASL authentication. When connection health metric logging is enabled, the full authentication parame… Update CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2026-9735 2026-06-16 01:46 2026-06-10 Show GitHub Exploit DB Packet Storm