Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
210341 4.6 警告 IBM
オラクル		 - Oracle Java SE における Deployment に関する脆弱性 CWE-noinfo
情報不足 		CVE-2013-5888 2015-08-11 16:52 2014-01-14 Show GitHub Exploit DB Packet Storm
210342 3.7 注意 Linux - Linux Kernel の fs/nfs/write.c 内の nfs_can_extend_write 関数における重要な情報を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2014-2038 2015-08-11 16:52 2014-02-13 Show GitHub Exploit DB Packet Storm
210343 4.9 警告 Linux - Linux Kernel の net/packet/af_packet.c の packet_recvmsg 関数における重要な情報を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2013-7270 2015-08-11 16:52 2013-12-8 Show GitHub Exploit DB Packet Storm
210344 4.9 警告 Linux - Linux Kernel の drivers/isdn/mISDN/socket.c の mISDN_sock_recvmsg 関数における重要な情報を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2013-7266 2015-08-11 16:52 2013-12-8 Show GitHub Exploit DB Packet Storm
210345 4.3 警告 GNOME Project - GNOME libsvg における任意のファイルを読まれる脆弱性 CWE-20
不適切な入力確認 		CVE-2013-1881 2015-08-11 16:52 2013-05-13 Show GitHub Exploit DB Packet Storm
210346 6.9 警告 Linux - Linux Kernel の drivers/usb/class/cdc-wdm.c におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-1860 2015-08-11 16:52 2013-03-20 Show GitHub Exploit DB Packet Storm
210347 7.5 危険 アップル
Florian Frank		 - JSON gem におけるサービス運用妨害 (リソース消費) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-0269 2015-08-11 16:52 2013-02-11 Show GitHub Exploit DB Packet Storm
210348 6.8 警告 オラクル - Oracle Java SE および JavaFX における JavaFX に関する脆弱性 CWE-noinfo
情報不足 		CVE-2013-5870 2015-08-11 16:50 2014-01-14 Show GitHub Exploit DB Packet Storm
210349 5 警告 レッドハット
日立
IBM
オラクル		 - Oracle Java SE および Java SE Embedded における Security に関する脆弱性 CWE-noinfo
情報不足 		CVE-2013-5910 2015-08-11 16:48 2014-01-14 Show GitHub Exploit DB Packet Storm
210350 9.3 危険 オラクル - Oracle Java SE および Java SE Embedded における Libraries に関する脆弱性 CWE-noinfo
情報不足 		CVE-2013-5893 2015-08-11 16:43 2014-01-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
191 3.1 LOW
Network 		- - An issue was discovered in Django 5.2 before 5.2.15 and 6.0 before 6.0.6. `django.middleware.cache.UpdateCacheMiddleware` in Django does not match `Cache-Control` response directives case-insensitive… New CWE-178
 Improper Handling of Case Sensitivity 		CVE-2026-8404 2026-06-3 23:16 2026-06-3 Show GitHub Exploit DB Packet Storm
192 3.1 LOW
Network 		- - An issue was discovered in Django 6.0 before 6.0.6 and 5.2 before 5.2.15. `django.core.mail.backends.smtp.EmailBackend` in Django fails to prevent reuse of a partially-initialized connection after a … New CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2026-7666 2026-06-3 23:16 2026-06-3 Show GitHub Exploit DB Packet Storm
193 3.1 LOW
Network 		- - An issue was discovered in Django 6.0 before 6.0.6 and 5.2 before 5.2.15. `django.http.HttpRequest.get_signed_cookie` in Django uses a non-injective salt derivation (concatenating the cookie name and… New CWE-347
 Improper Verification of Cryptographic Signature 		CVE-2026-6873 2026-06-3 23:16 2026-06-3 Show GitHub Exploit DB Packet Storm
194 9.1 CRITICAL
Network 		- - A vulnerability in mlflow/mlflow versions prior to 3.11.0 allows for the resolution of environment variables in AI Gateway secrets, which can be exploited to exfiltrate sensitive server-side environm… New CWE-201
 Insertion of Sensitive Information Into Sent Data 		CVE-2026-4035 2026-06-3 23:16 2026-06-3 Show GitHub Exploit DB Packet Storm
195 9.8 CRITICAL
Network 		- - authentik is an open-source identity provider. Prior to versions 2025.12.6, 2026.2.4, and 2026.5.1, the Source stage can be bypassed by sending an empty POST. This issue has been patched in versions … New CWE-287
Improper Authentication 		CVE-2026-49448 2026-06-3 23:16 2026-06-3 Show GitHub Exploit DB Packet Storm
196 8.8 HIGH
Network 		- - authentik is an open-source identity provider. Prior to versions 2025.12.6, 2026.2.4, and 2026.5.1, an attacker with the ability to change a source connection, and an account in one of the configured… New CWE-287
Improper Authentication 		CVE-2026-49443 2026-06-3 23:16 2026-06-3 Show GitHub Exploit DB Packet Storm
197 8.8 HIGH
Adjacent 		- - BrowserStack Runner through 0.9.5 contains a remote code execution vulnerability in the /_log HTTP handler that allows unauthenticated network-adjacent attackers to execute arbitrary code by submitti… New CWE-94
Code Injection 		CVE-2026-49143 2026-06-3 23:16 2026-06-3 Show GitHub Exploit DB Packet Storm
198 - - - Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Request/Response Splitting') vulnerability in elixir-tesla tesla allows HTTP header injection via Tesla.Multipart.add_content_type_par… New CWE-113
HTTP Response Splitting 		CVE-2026-48596 2026-06-3 23:16 2026-06-3 Show GitHub Exploit DB Packet Storm
199 3.1 LOW
Network 		- - An issue was discovered in Django 5.2 before 5.2.15 and 6.0 before 6.0.6. `django.utils.cache.has_vary_header()` in Django does not strip leading or trailing whitespace from `Vary` response header va… New CWE-1023
 Incomplete Comparison with Missing Factors 		CVE-2026-48587 2026-06-3 23:16 2026-06-3 Show GitHub Exploit DB Packet Storm
200 - - - ProjectsAndPrograms school-management-system uses predictable credentials by generating student's and teacher's passwords solely from the user’s date of birth (e.g., 12072000 for 12 July 2000). The a… New CWE-1391
 Use of Weak Credentials 		CVE-2026-47325 2026-06-3 23:16 2026-06-3 Show GitHub Exploit DB Packet Storm