Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 14, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
203691 8.8 重要
Network 		The PHP Group - PHP の ext/phar/dirstream.c の phar_make_dirstream 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2016-4343 2016-10-26 15:27 2016-02-4 Show GitHub Exploit DB Packet Storm
203692 8.8 重要
Network 		The PHP Group - PHP の ext/phar/phar_object.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2016-4342 2016-10-26 15:26 2016-02-4 Show GitHub Exploit DB Packet Storm
203693 9.8 緊急
Network 		The PHP Group
アップル		 - PHP の ext/mbstring/libmbfl/mbfl/mbfilter.c の mbfl_strcut 関数における整数オーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-4073 2016-10-26 15:26 2016-03-31 Show GitHub Exploit DB Packet Storm
203694 7.5 重要
Network 		The PHP Group
アップル		 - PHP の ext/standard/url.c の php_raw_url_encode 関数における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2016-4070 2016-10-26 15:25 2016-03-31 Show GitHub Exploit DB Packet Storm
203695 9.8 緊急
Network 		The PHP Group
アップル		 - PHP の ext/snmp/snmp.c の php_snmp_error 関数におけるフォーマットストリングの脆弱性 CWE-20
不適切な入力確認 		CVE-2016-4071 2016-10-26 15:24 2016-03-31 Show GitHub Exploit DB Packet Storm
203696 9.8 緊急
Network 		The PHP Group
アップル		 - PHP の Phar エクステンションにおける任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2016-4072 2016-10-26 15:23 2016-03-31 Show GitHub Exploit DB Packet Storm
203697 9.8 緊急
Network 		LibGD project
Debian		 - GD Graphics Library における整数符号エラーの脆弱性 CWE-189
数値処理の問題 		CVE-2016-3074 2016-10-26 15:22 2016-04-16 Show GitHub Exploit DB Packet Storm
203698 8.1 重要
Network 		オラクル - Oracle Supply Chain Products Suite の Oracle Agile Engineering Data Management における webfileservices に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-5518 2016-10-26 14:33 2016-10-18 Show GitHub Exploit DB Packet Storm
203699 5.5 警告
Local 		オラクル - Oracle E-Business Suite の Oracle Applications DBA における AD Utilities に関する脆弱性 CWE-Other
その他 		CVE-2016-5517 2016-10-26 14:32 2016-10-18 Show GitHub Exploit DB Packet Storm
203700 6 警告
Local 		オラクル - Oracle Database Server の Kernel PDB における脆弱性 CWE-noinfo
情報不足 		CVE-2016-5516 2016-10-26 14:28 2016-10-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2921 6.4 MEDIUM
Network 		nextcloud nextcloud_server Nextcloud is an open source content collaboration platform. From versions 32.0.0 to before 32.0.9, and 33.0.0 to before 33.0.3, when a user shares a folder or file with a Nextcloud Team that includes… CWE-862
 Missing Authorization 		CVE-2026-45285 2026-06-4 05:34 2026-06-2 Show GitHub Exploit DB Packet Storm
2922 8.8 HIGH
Network 		nextcloud user_oidc Nextcloud is an open source content collaboration platform. From version 1.3.6 to before version 8.4.0, an improper check allowed users that where provided by LDAP to still authenticate towards user … CWE-284
NVD-CWE-noinfo
Improper Access Control 		CVE-2026-45284 2026-06-4 05:28 2026-06-2 Show GitHub Exploit DB Packet Storm
2923 8.6 HIGH
Network 		openairinterface openairinterface5g An issue was discovered in OpenAirInterface5G 2.4.0 (nr-softmodem) in the E2SM-KPM RAN Function's PRB utilization metric calculation. The functions fill_RRU_PrbTotDl() and fill_RRU_PrbTotUl() in open… CWE-369
 Divide By Zero 		CVE-2026-37232 2026-06-4 05:26 2026-06-2 Show GitHub Exploit DB Packet Storm
2924 2.7 LOW
Network 		projectcapsule capsule Capsule is a multi-tenancy and policy-based framework for Kubernetes. To defend against namespace hijacking achieved through update/patch operations on namespaces, Capsule uses a webhook to validate … CWE-20
NVD-CWE-noinfo
 Improper Input Validation  		CVE-2026-30963 2026-06-4 05:22 2026-06-2 Show GitHub Exploit DB Packet Storm
2925 7.8 HIGH
Local 		google android_xr In addInputMethodListener of com.android.server.inputmethod.InputMethodManagerService, there is a missing permission check. This could lead to local escalation of privilege with no additional executi… CWE-285
Improper Authorization 		CVE-2026-0072 2026-06-4 05:16 2026-06-2 Show GitHub Exploit DB Packet Storm
2926 7.5 HIGH
Network 		juliangruber brace-expansion The brace-expansion library generates arbitrary strings containing a common prefix and suffix. From 5.0.0 to before 5.0.6, the max option was being applied too late. When expanding a single large num… CWE-400
 Uncontrolled Resource Consumption 		CVE-2026-45149 2026-06-4 05:13 2026-05-30 Show GitHub Exploit DB Packet Storm
2927 5.4 MEDIUM
Network 		mozilla firefox Firefox for iOS Reader View replaced page content in its HTML template before replacing other internal placeholders. A malicious page could include a placeholder string that was later substituted wit… CWE-79
Cross-site Scripting 		CVE-2026-9308 2026-06-4 05:02 2026-06-1 Show GitHub Exploit DB Packet Storm
2928 5.4 MEDIUM
Network 		mozilla firefox Firefox for iOS Reader View did not properly escape HTML tags in JSON-LD metadata. A malicious page could inject markup that changed Reader View behavior and leaked sensitive URL parameters. These pa… CWE-79
Cross-site Scripting 		CVE-2026-9309 2026-06-4 05:02 2026-06-1 Show GitHub Exploit DB Packet Storm
2929 7.5 HIGH
Network 		dlink di-7001mini-8g_firmware A vulnerability was detected in D-Link DI-7001 MINI up to 19.09.19A1. Impacted is the function sprintf of the file /httpd_debug.asp of the component API. The manipulation of the argument Time results… CWE-119
CWE-121
Incorrect Access of Indexable Resource ('Range Error') 
Stack-based Buffer Overflow 		CVE-2026-10270 2026-06-4 05:02 2026-06-2 Show GitHub Exploit DB Packet Storm
2930 9.6 CRITICAL
Network 		cline cline Cline is an autonomous coding agent as an SDK, IDE extension, or CLI assistant. In versions 2.13.0 and prior, there is a cross-origin WebSocket hijack vulnerability in Cline Kanban servers. At time o… CWE-306
CWE-1385
Missing Authentication for Critical Function
 Missing Origin Validation in WebSockets 		CVE-2026-44211 2026-06-4 04:52 2026-06-2 Show GitHub Exploit DB Packet Storm