Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 23, 2026, 2:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
205081 7.5 重要
Network 		The PHP Group
アップル		 - PHP の ext/standard/url.c の php_raw_url_encode 関数における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2016-4070 2016-10-26 15:25 2016-03-31 Show GitHub Exploit DB Packet Storm
205082 9.8 緊急
Network 		The PHP Group
アップル		 - PHP の ext/snmp/snmp.c の php_snmp_error 関数におけるフォーマットストリングの脆弱性 CWE-20
不適切な入力確認 		CVE-2016-4071 2016-10-26 15:24 2016-03-31 Show GitHub Exploit DB Packet Storm
205083 9.8 緊急
Network 		The PHP Group
アップル		 - PHP の Phar エクステンションにおける任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2016-4072 2016-10-26 15:23 2016-03-31 Show GitHub Exploit DB Packet Storm
205084 9.8 緊急
Network 		LibGD project
Debian		 - GD Graphics Library における整数符号エラーの脆弱性 CWE-189
数値処理の問題 		CVE-2016-3074 2016-10-26 15:22 2016-04-16 Show GitHub Exploit DB Packet Storm
205085 8.1 重要
Network 		オラクル - Oracle Supply Chain Products Suite の Oracle Agile Engineering Data Management における webfileservices に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-5518 2016-10-26 14:33 2016-10-18 Show GitHub Exploit DB Packet Storm
205086 5.5 警告
Local 		オラクル - Oracle E-Business Suite の Oracle Applications DBA における AD Utilities に関する脆弱性 CWE-Other
その他 		CVE-2016-5517 2016-10-26 14:32 2016-10-18 Show GitHub Exploit DB Packet Storm
205087 6 警告
Local 		オラクル - Oracle Database Server の Kernel PDB における脆弱性 CWE-noinfo
情報不足 		CVE-2016-5516 2016-10-26 14:28 2016-10-18 Show GitHub Exploit DB Packet Storm
205088 4.3 警告
Network 		オラクル - Oracle Supply Chain Products Suite の Oracle Agile PLM における File Manager に関する脆弱性 CWE-200
情報漏えい 		CVE-2016-5513 2016-10-26 14:25 2016-10-18 Show GitHub Exploit DB Packet Storm
205089 6.1 警告
Network 		オラクル - Oracle Supply Chain Products Suite の Oracle Agile PLM における Security に関する脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-5512 2016-10-26 14:23 2016-10-18 Show GitHub Exploit DB Packet Storm
205090 4.3 警告
Network 		オラクル - Oracle Fusion Middleware の Oracle WebCenter Sites における Security に関する脆弱性 CWE-Other
その他 		CVE-2016-5511 2016-10-26 14:21 2016-10-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 23, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2601 5.3 MEDIUM
Network 		- - The Debug Log Manager – Conveniently Monitor and Inspect Errors plugin for WordPress is vulnerable to Improper Output Neutralization for Logs in all versions up to, and including, 2.5.0. This is due … CWE-117
 Improper Output Neutralization for Logs 		CVE-2026-9016 2026-06-8 23:57 2026-06-6 Show GitHub Exploit DB Packet Storm
2602 4.4 MEDIUM
Network 		- - The WP Maps – Google Maps,OpenStreetMap,Mapbox,Store Locator,Listing,Directory & Filters plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'location_messages' parameter in all… CWE-79
Cross-site Scripting 		CVE-2026-9594 2026-06-8 23:57 2026-06-6 Show GitHub Exploit DB Packet Storm
2603 6.5 MEDIUM
Network 		- - The Photo Gallery by 10Web – Mobile-Friendly Image Gallery plugin for WordPress is vulnerable to time-based SQL Injection via 'compact_album_order_by' Shortcode Parameter in all versions up to, and i… CWE-89
SQL Injection 		CVE-2026-9829 2026-06-8 23:57 2026-06-6 Show GitHub Exploit DB Packet Storm
2604 7.2 HIGH
Network 		- - The Booking Package plugin for WordPress is vulnerable to Privilege Escalation via Account Takeover in versions up to, and including, 1.7.16. This is due to a missing capability check on the 'updateU… CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2026-9851 2026-06-8 23:57 2026-06-6 Show GitHub Exploit DB Packet Storm
2605 6.3 MEDIUM
Network 		- - A vulnerability was determined in GL.iNet MT3000 up to 4.4.5. This vulnerability affects unknown code of the file ovpnclient.sh of the component OpenVPN Client Import Workflow. This manipulation caus… CWE-74
CWE-77
Injection
Command Injection 		CVE-2026-11406 2026-06-8 23:57 2026-06-6 Show GitHub Exploit DB Packet Storm
2606 7.3 HIGH
Network 		- - A flaw has been found in perfree go-fastdfs-web up to 1.3.7. Affected is the function checkServer of the file /install/checkServer of the component Installation Endpoint. Executing a manipulation can… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-11437 2026-06-8 23:57 2026-06-7 Show GitHub Exploit DB Packet Storm
2607 6.3 MEDIUM
Network 		- - A vulnerability has been found in theonedev onedev up to 15.0.5. Affected by this vulnerability is an unknown functionality of the file /projects. The manipulation of the argument project.forkedFromI… CWE-266
CWE-285
 Incorrect Privilege Assignment
Improper Authorization 		CVE-2026-11438 2026-06-8 23:57 2026-06-7 Show GitHub Exploit DB Packet Storm
2608 6.3 MEDIUM
Network 		- - A vulnerability was found in theonedev onedev up to 15.0.5. Affected by this issue is some unknown functionality of the file /projects/ of the component Parent Project Handler. The manipulation of th… CWE-266
CWE-285
 Incorrect Privilege Assignment
Improper Authorization 		CVE-2026-11439 2026-06-8 23:57 2026-06-7 Show GitHub Exploit DB Packet Storm
2609 6.3 MEDIUM
Network 		- - A vulnerability was determined in theonedev onedev up to 15.0.5. This affects an unknown part of the file /repositories/{projectId}/default-branch of the component REST API. This manipulation of the … CWE-266
CWE-285
 Incorrect Privilege Assignment
Improper Authorization 		CVE-2026-11440 2026-06-8 23:57 2026-06-7 Show GitHub Exploit DB Packet Storm
2610 6.3 MEDIUM
Network 		- - A vulnerability was identified in theonedev onedev up to 15.0.5. This vulnerability affects the function canAccessIssue of the file /issues/ of the component Pull Request Handler. Such manipulation o… CWE-266
CWE-285
 Incorrect Privilege Assignment
Improper Authorization 		CVE-2026-11441 2026-06-8 23:57 2026-06-7 Show GitHub Exploit DB Packet Storm