Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 6, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
205481	7.5	重要 Network	マイクロソフトアドビシステムズ Google	-	Microsoft Internet Explorer および Microsoft Edge の Adobe Flash ライブラリで使用される Adobe Flash Player および Adobe AIR における脆弱性	CWE-noinfo 情報不足	CVE-2016-1109	2016-05-16 14:50	2016-05-12	Show	GitHub Exploit DB Packet Storm

205482	7.5	重要 Network	マイクロソフトアドビシステムズ Google	-	Microsoft Internet Explorer および Microsoft Edge の Adobe Flash ライブラリで使用される Adobe Flash Player および Adobe AIR における脆弱性	CWE-noinfo 情報不足	CVE-2016-1108	2016-05-16 14:50	2016-05-12	Show	GitHub Exploit DB Packet Storm

205483	7.5	重要 Network	マイクロソフトアドビシステムズ Google	-	Microsoft Internet Explorer および Microsoft Edge の Adobe Flash ライブラリで使用される Adobe Flash Player および Adobe AIR における脆弱性	CWE-noinfo 情報不足	CVE-2016-1107	2016-05-16 14:50	2016-05-12	Show	GitHub Exploit DB Packet Storm

205484	7.5	重要 Network	マイクロソフトアドビシステムズ Google	-	Microsoft Internet Explorer および Microsoft Edge の Adobe Flash ライブラリで使用される Adobe Flash Player および Adobe AIR における脆弱性	CWE-noinfo 情報不足	CVE-2016-1106	2016-05-16 14:50	2016-05-12	Show	GitHub Exploit DB Packet Storm

205485	7.5	重要 Network	マイクロソフトアドビシステムズ Google	-	Microsoft Internet Explorer および Microsoft Edge の Adobe Flash ライブラリで使用される Adobe Flash Player および Adobe AIR における脆弱性	CWE-noinfo 情報不足	CVE-2016-1105	2016-05-16 14:50	2016-05-12	Show	GitHub Exploit DB Packet Storm

205486	7.5	重要 Network	マイクロソフトアドビシステムズ Google	-	Microsoft Internet Explorer および Microsoft Edge の Adobe Flash ライブラリで使用される Adobe Flash Player および Adobe AIR における脆弱性	CWE-noinfo 情報不足	CVE-2016-1104	2016-05-16 14:49	2016-05-12	Show	GitHub Exploit DB Packet Storm

205487	7.5	重要 Network	マイクロソフトアドビシステムズ Google	-	Microsoft Internet Explorer および Microsoft Edge の Adobe Flash ライブラリで使用される Adobe Flash Player および Adobe AIR における脆弱性	CWE-noinfo 情報不足	CVE-2016-1103	2016-05-16 14:49	2016-05-12	Show	GitHub Exploit DB Packet Storm

205488	7.5	重要 Network	マイクロソフトアドビシステムズ Google	-	Microsoft Internet Explorer および Microsoft Edge の Adobe Flash ライブラリで使用される Adobe Flash Player および Adobe AIR における脆弱性	CWE-noinfo 情報不足	CVE-2016-1102	2016-05-16 14:49	2016-05-12	Show	GitHub Exploit DB Packet Storm

205489	7.5	重要 Network	マイクロソフトアドビシステムズ Google	-	Microsoft Internet Explorer および Microsoft Edge の Adobe Flash ライブラリで使用される Adobe Flash Player および Adobe AIR における脆弱性	CWE-noinfo 情報不足	CVE-2016-1101	2016-05-16 14:49	2016-05-12	Show	GitHub Exploit DB Packet Storm

205490	7.5	重要 Network	マイクロソフトアドビシステムズ Google	-	Microsoft Internet Explorer および Microsoft Edge の Adobe Flash ライブラリで使用される Adobe Flash Player および Adobe AIR における脆弱性	CWE-noinfo 情報不足	CVE-2016-1100	2016-05-16 14:49	2016-05-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
801	9.0	CRITICAL Network	-	-	RockRMS v16.13 and before v.17.7.0 is vulnerable to Cross Site Scripting (XSS) via Social Media links in user profile. New	CWE-79 Cross-site Scripting	CVE-2026-36748	2026-06-5 00:41	2026-06-4	Show	GitHub Exploit DB Packet Storm

802	-		-	-	GLPI is a free asset and IT management software package. Starting in version 0.78 and prior to versions 10.0.25 and 11.0.7, a technician can delete arbitrary files from the filesystem as long as the … New	CWE-862 Missing Authorization	CVE-2026-42317	2026-06-5 00:41	2026-06-4	Show	GitHub Exploit DB Packet Storm

803	-		-	-	GLPI is a free asset and IT management software package. Starting in version 9.5.0 and prior to versions 10.0.25 and 11.0.7, low privilege users with access to planning can delete any object in GLPI.… New	CWE-862 Missing Authorization	CVE-2026-42318	2026-06-5 00:41	2026-06-4	Show	GitHub Exploit DB Packet Storm

804	-		-	-	GLPI is a free asset and IT management software package. Starting in version 0.50 and prior to versions 10.0.25 and 11.0.7, a technician can read arbitrary files inside the GLPI_DOC_DIR. Upgrade to 1… New	CWE-862 Missing Authorization	CVE-2026-42320	2026-06-5 00:41	2026-06-4	Show	GitHub Exploit DB Packet Storm

805	-		-	-	GLPI is a free asset and IT management software package. Starting in version 10.0.4 and prior to version 10.0.25, a technician can store an XSS payload in the asset locked tab. Upgrade to 10.0.25 or … New	CWE-79 CWE-116 Cross-site Scripting Improper Encoding or Escaping of Output	CVE-2026-42321	2026-06-5 00:41	2026-06-4	Show	GitHub Exploit DB Packet Storm

806	-		-	-	GLPI is a free asset and IT management software package. Starting in version 0.78 and prior to versions 10.0.25 and 11.0.7, an authenticated user with config READ permission can read a specific asset… New	CWE-862 Missing Authorization	CVE-2026-44281	2026-06-5 00:41	2026-06-4	Show	GitHub Exploit DB Packet Storm

807	6.5	MEDIUM Network	-	-	Mercusys AC12G (EU) V1 router with firmware AC12G(EU)_V1_200909 does not validate the HTTP Host header, enabling DNS rebinding attacks. An external attacker can rebind a domain to the router's intern… New	CWE-350 Reliance on Reverse DNS Resolution for a Security-Critical Action	CVE-2026-36604	2026-06-5 00:41	2026-06-4	Show	GitHub Exploit DB Packet Storm

808	6.5	MEDIUM Adjacent	-	-	Mercusys AC12G (EU) V1 router with firmware AC12G(EU)_V1_200909 is vulnerable to a HTTP denial of service via a low number of crafted incomplete HTTP requests, causing a persistent crash that require… New	CWE-400 Uncontrolled Resource Consumption	CVE-2026-36605	2026-06-5 00:41	2026-06-4	Show	GitHub Exploit DB Packet Storm

809	7.1	HIGH Local	-	-	Mercusys AC12G (EU) V1 router with firmware AC12G(EU)_V1_200909 encrypts configuration backups with a hardcoded DES key using single DES in ECB mode. An attacker who obtains a backup file can decrypt… New	CWE-798 Use of Hard-coded Credentials	CVE-2026-36606	2026-06-5 00:41	2026-06-4	Show	GitHub Exploit DB Packet Storm

810	8.8	HIGH Adjacent	-	-	Mercusys AC12G (EU) V1 router with firmware AC12G(EU)_V1_200909 allows unauthenticated brute-force attacks via the TDDP password change endpoint (code=10), which lacks the rate limiting applied to th… New	CWE-307 mproper Restriction of Excessive Authentication Attempts	CVE-2026-36607	2026-06-5 00:41	2026-06-4	Show	GitHub Exploit DB Packet Storm