Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 11, 2026, 6:13 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
210511 5 警告 The PHP Group
アップル		 - PHP の ext/standard/basic_functions.c の move_uploaded_file の実装における拡張子の制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2015-2348 2015-10-6 10:36 2015-03-18 Show GitHub Exploit DB Packet Storm
210512 7.5 危険 The PHP Group
アップル		 - PHP の ext/standard/var_unserializer.re の process_nested_data 関数における任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2015-2787 2015-10-6 10:36 2015-02-3 Show GitHub Exploit DB Packet Storm
210513 6.8 警告 The PHP Group
アップル		 - PHP の ext/exif/exif.c 内の exif_process_unicode 関数における任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2015-0232 2015-10-6 10:36 2015-01-22 Show GitHub Exploit DB Packet Storm
210514 7.5 危険 The PHP Group
アップル		 - PHP の ext/standard/var_unserializer.re の process_nested_data 関数における任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2015-0231 2015-10-6 10:36 2015-01-22 Show GitHub Exploit DB Packet Storm
210515 6.9 警告 アップル
FreeBSD		 - FreeBSD および Apple iOS のカーネルの libc の stdio 内の fflush.c の __sflush 関数における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2014-8611 2015-10-6 10:34 2014-12-10 Show GitHub Exploit DB Packet Storm
210516 5 警告 The PHP Group
アップル
file project		 - PHP の Fileinfo コンポーネントで使用される file の softmagic.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2014-9652 2015-10-6 10:34 2014-11-10 Show GitHub Exploit DB Packet Storm
210517 7.5 危険 The PHP Group
アップル		 - PHP の ext/enchant/enchant.c の enchant_broker_request_dict 関数におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2014-9705 2015-10-6 10:34 2014-12-5 Show GitHub Exploit DB Packet Storm
210518 5 警告 The PHP Group
LibGD project
アップル		 - PHP で使用される LibGD の gd_gif_in.c 内の GetCode_ 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2014-9709 2015-10-6 10:34 2014-12-13 Show GitHub Exploit DB Packet Storm
210519 7.5 危険 The PHP Group
アップル		 - PHP の CGI コンポーネントの sapi/cgi/cgi_main.c における php-cgi プロセスメモリから重要な情報を取得される脆弱性 CWE-119
バッファエラー 		CVE-2014-9427 2015-10-6 10:33 2014-12-30 Show GitHub Exploit DB Packet Storm
210520 7.5 危険 The PHP Group
アップル		 - PHP の Zend Engine の zend_ts_hash.c の zend_ts_hash_graceful_destroy 関数におけるメモリ二重解放の脆弱性 CWE-Other
その他 		CVE-2014-9425 2015-10-6 10:33 2014-12-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 11, 2026, 5:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
581 6.3 MEDIUM
Local 		- - Dell Inventory Collector Client, versions prior to 13.8.0, contain an Improper Link Resolution Before File Access ('Link Following') vulnerability. A low privileged attacker with local access could p… New CWE-1386
 Insecure Operation on Windows Junction / Mount Point 		CVE-2026-41116 2026-06-10 03:16 2026-06-10 Show GitHub Exploit DB Packet Storm
582 5.9 MEDIUM
Network 		- - Adobe Experience Manager Forms JEE versions LTS SP1, 6.5.24.0 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a high-privileged attacker to injec… New CWE-79
Cross-site Scripting 		CVE-2026-34694 2026-06-10 03:16 2026-06-10 Show GitHub Exploit DB Packet Storm
583 8.0 HIGH
Network 		- - Adobe Experience Manager Forms JEE versions LTS SP1, 6.5.24.0 and earlier are affected by a reflected Cross-Site Scripting (XSS) vulnerability. An attacker could exploit this vulnerability to inject … New CWE-79
Cross-site Scripting 		CVE-2026-34693 2026-06-10 03:16 2026-06-10 Show GitHub Exploit DB Packet Storm
584 9.3 CRITICAL
Network 		- - Adobe Experience Manager Forms JEE versions LTS SP1, 6.5.24.0 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by an attacker to inject malicious scr… New CWE-79
Cross-site Scripting 		CVE-2026-34691 2026-06-10 03:16 2026-06-10 Show GitHub Exploit DB Packet Storm
585 - - - Unrestricted resource allocation in AMD uProf may be exploitable to consume excessive system resources, potentially leading to a loss of availability. New CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2026-28237 2026-06-10 03:16 2026-06-10 Show GitHub Exploit DB Packet Storm
586 8.8 HIGH
Network 		google chrome Out of bounds read and write in V8 in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: … New CWE-125
CWE-787
Out-of-bounds Read
 Out-of-bounds Write 		CVE-2026-11645 2026-06-10 03:16 2026-06-9 Show GitHub Exploit DB Packet Storm
587 - - - Improper access control in AMD uProf may allow a local attacker with user privileges to write to the kernel-shared memory section, potentially resulting in crash or denial of service. New CWE-497
 Exposure of Sensitive System Information to an Unauthorized Control Sphere 		CVE-2026-0466 2026-06-10 03:16 2026-06-10 Show GitHub Exploit DB Packet Storm
588 - - - Improper access control for register interface in the input-output memory management unit (IOMMU) could allow a privileged attacker to cause non-coherent accesses by the AMD secure processor (ASP) po… New CWE-1262
 Improper Access Control for Register Interface 		CVE-2025-54509 2026-06-10 03:16 2026-06-10 Show GitHub Exploit DB Packet Storm
589 8.6 HIGH
Network 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: ibmveth: Disable GSO for packets with small MSS Some physical adapters on Power systems do not support segmentation offload when … Update NVD-CWE-noinfo
CVE-2026-46273 2026-06-10 02:31 2026-06-4 Show GitHub Exploit DB Packet Storm
590 8.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: drm/xe/pf: Fix sysfs initialization In case of devm_add_action_or_reset() failure the provided cleanup action will be run immedia… Update CWE-416
 Use After Free 		CVE-2026-46264 2026-06-10 02:26 2026-06-4 Show GitHub Exploit DB Packet Storm