Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 9, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
209181	7.5	危険	ICU project アップルオラクル	-	International Components for Unicode の ICU4C の Unicode 双方向アルゴリズムの実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2014-8146	2015-11-6 15:31	2014-10-10	Show	GitHub Exploit DB Packet Storm

209182	7.5	危険	ICU project Google オラクル	-	Google Chrome で使用される International Components for Unicode の Regular Expressions パッケージにおけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2014-7926	2015-11-6 15:31	2014-11-14	Show	GitHub Exploit DB Packet Storm

209183	7.5	危険	ICU project Google オラクル	-	Google Chrome で使用される International Components for Unicode の Regular Expressions パッケージにおけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2014-7923	2015-11-6 15:31	2014-11-14	Show	GitHub Exploit DB Packet Storm

209184	3.5	注意	マイクロソフトオラクル	-	Microsoft SharePoint Foundation 2013 におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2015-2522	2015-11-6 15:26	2015-09-8	Show	GitHub Exploit DB Packet Storm

209185	7.5	危険	Mozilla Foundation	-	Mozilla Firefox の PDF.js における任意のコードを実行される脆弱性	CWE-Other その他	CVE-2015-2743	2015-11-6 15:21	2015-07-2	Show	GitHub Exploit DB Packet Storm

209186	4.3	警告	Mozilla Foundation	-	OS X 上で稼動する Mozilla Firefox における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2015-2742	2015-11-6 15:21	2015-07-2	Show	GitHub Exploit DB Packet Storm

209187	4.3	警告	Mozilla Foundation	-	Mozilla Firefox および Thunderbird におけるアクセス制限を回避される脆弱性	CWE-310 暗号の問題	CVE-2015-2741	2015-11-6 15:21	2015-07-2	Show	GitHub Exploit DB Packet Storm

209188	10	危険	Mozilla Foundation	-	Mozilla Firefox および Thunderbird の nsXMLHttpRequest::AppendToResponseText 関数におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2015-2740	2015-11-6 15:21	2015-07-2	Show	GitHub Exploit DB Packet Storm

209189	10	危険	Mozilla Foundation	-	Mozilla Firefox および Thunderbird の ArrayBufferBuilder::append 関数における脆弱性	CWE-119 バッファエラー	CVE-2015-2739	2015-11-6 15:21	2015-07-2	Show	GitHub Exploit DB Packet Storm

209190	10	危険	Mozilla Foundation	-	Mozilla Firefox および Thunderbird の YCbCr の実装の YCbCrImageDataDeserializer::ToDataSourceSurface 関数における脆弱性	CWE-Other その他	CVE-2015-2738	2015-11-6 15:21	2015-07-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
3431	6.5	MEDIUM Network	-	-	Service Center developed by BankPro E-Service Technology has an Insecure Direct Object Reference vulnerability, allowing authenticated remote attackers to modify the parameter of a specific query fun…	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2026-9493	2026-05-30 00:11	2026-05-29	Show	GitHub Exploit DB Packet Storm

3432	4.8	MEDIUM Network	-	-	ITS Intelligent SCADA System developed by ITP Technology has a Stored Cross-Site Scripting vulnerability, allowing privileged remote attackers to inject persistent JavaScript codes that are executed …	CWE-79 Cross-site Scripting	CVE-2026-10057	2026-05-30 00:11	2026-05-29	Show	GitHub Exploit DB Packet Storm

3433	4.8	MEDIUM Network	-	-	ITS Intelligent SCADA System developed by ITP Technology has a Stored Cross-Site Scripting vulnerability, allowing privileged remote attackers to inject persistent JavaScript codes that are executed …	CWE-79 Cross-site Scripting	CVE-2026-10058	2026-05-30 00:11	2026-05-29	Show	GitHub Exploit DB Packet Storm

3434	9.8	CRITICAL Network	-	-	DreamMaker developed by Interinfo has an Arbitrary File Upload vulnerability, allowing unauthenticated remote attackers to upload and execute web shell backdoors, thereby enabling arbitrary code exec…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2026-10071	2026-05-30 00:11	2026-05-29	Show	GitHub Exploit DB Packet Storm

3435	7.2	HIGH Network	-	-	DreamMaker developed by Interinfo has an Arbitrary File Upload vulnerability, allowing privileged remote attackers to upload and execute web shell backdoors, thereby enabling arbitrary code execution…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2026-10072	2026-05-30 00:11	2026-05-29	Show	GitHub Exploit DB Packet Storm

3436	7.5	HIGH Network	-	-	DreamMaker developed by Interinfo has an Arbitrary File Read vulnerability, allowing unauthenticated local attackers to exploit Relative Path Traversal to download arbitrary system files.	CWE-23 Relative Path Traversal	CVE-2026-10073	2026-05-30 00:11	2026-05-29	Show	GitHub Exploit DB Packet Storm

3437	4.9	MEDIUM Network	-	-	DreamMaker developed by Interinfo has an Arbitrary File Read vulnerability, allowing privileged local attackers to exploit Relative Path Traversal to download arbitrary system files.	CWE-23 Relative Path Traversal	CVE-2026-10074	2026-05-30 00:11	2026-05-29	Show	GitHub Exploit DB Packet Storm

3438	5.3	MEDIUM Network	-	-	DreamMaker developed by Interinfo has a Path Traversal vulnerability, allowing unauthenticated remote attackers to read file names under arbitrary path by exploiting an Absolute Path Traversal vulner…	CWE-36 Absolute Path Traversal	CVE-2026-10075	2026-05-30 00:11	2026-05-29	Show	GitHub Exploit DB Packet Storm

3439	4.6	MEDIUM Physics	-	-	Expected behavior violation in the in-vehicle network of the Indian Motorcycle Scout Bobber + Tech 2025 model year allows an adjacent-network attacker to bypass the motorcycle's anti-theft shutdown b…	CWE-440 CWE-693 CWE-754 Expected Behavior Violation Protection Mechanism Failure Improper Check for Unusual or Exceptional Conditions	CVE-2026-49316	2026-05-30 00:11	2026-05-29	Show	GitHub Exploit DB Packet Storm

3440	2.4	LOW Physics	-	-	Incorrect behavior order in the Infotainment / Digital Round display of the Indian Motorcycle Scout Bobber + Tech 2025 model year allows an adjacent-network attacker to bypass the PIN entry screen. T…	CWE-636 CWE-696 CWE-754 Not Failing Securely ('Failing Open') Incorrect Behavior Order Improper Check for Unusual or Exceptional Conditions	CVE-2026-49317	2026-05-30 00:11	2026-05-29	Show	GitHub Exploit DB Packet Storm