Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 30, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
212971 4.3 警告 アップル - Apple Safari におけるユーザを追跡される脆弱性 CWE-310
暗号の問題
CVE-2015-1129 2015-10-6 10:48 2015-04-8 Show GitHub Exploit DB Packet Storm
212972 5 警告 アップル - Apple iOS のカーネルの XNU におけるシーケンス番号保護メカニズムを回避される脆弱性 CWE-20
不適切な入力確認
CVE-2015-5879 2015-10-6 10:38 2015-09-16 Show GitHub Exploit DB Packet Storm
212973 7.5 危険 アップル - Apple iOS および iTunes の CoreText における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2015-5874 2015-10-6 10:38 2015-09-16 Show GitHub Exploit DB Packet Storm
212974 7.2 危険 アップル - Apple iOS のカーネルにおける権限を取得される脆弱性 CWE-119
バッファエラー
CVE-2015-5896 2015-10-6 10:38 2015-09-16 Show GitHub Exploit DB Packet Storm
212975 5 警告 アップル - Apple iOS の CFNetwork Cookies コンポーネントにおけるユーザを追跡される脆弱性 CWE-200
情報漏えい
CVE-2015-5885 2015-10-6 10:38 2015-09-16 Show GitHub Exploit DB Packet Storm
212976 7.2 危険 アップル - Apple iOS の processor_set_tasks API の実装におけるエンタイトルメント保護メカニズムを回避される脆弱性 CWE-Other
その他
CVE-2015-5882 2015-10-6 10:38 2015-09-16 Show GitHub Exploit DB Packet Storm
212977 9.3 危険 アップル - Apple iOS の Dev Tools の dyld における特権付きコンテキスト内で任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2015-5876 2015-10-6 10:38 2015-09-16 Show GitHub Exploit DB Packet Storm
212978 9.3 危険 アップル - Apple iOS の IOHIDFamily における特権付きコンテキスト内で任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2015-5867 2015-10-6 10:37 2015-09-16 Show GitHub Exploit DB Packet Storm
212979 5 警告 アップル - Apple iOS の CFNetwork HTTPProtocol コンポーネントにおける Safari のプライベートブラウズ保護メカニズムを回避される脆弱性 CWE-200
情報漏えい
CVE-2015-5860 2015-10-6 10:37 2015-09-16 Show GitHub Exploit DB Packet Storm
212980 5 警告 アップル - Apple iOS の CFNetwork HTTPProtocol コンポーネントにおける HSTS 保護メカニズムを回避される脆弱性 CWE-200
情報漏えい
CVE-2015-5858 2015-10-6 10:37 2015-09-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
3811 4.4 MEDIUM
Local
qnap license_center A path traversal vulnerability has been reported to affect License Center. If a local attacker gains an administrator account, they can then exploit the vulnerability to read the contents of unexpect… CWE-22
Path Traversal
CVE-2025-62851 2026-06-12 22:47 2026-06-10 Show GitHub Exploit DB Packet Storm
3812 8.1 HIGH
Network
qnap file_station An incorrect authorization vulnerability has been reported to affect File Station 6. If a remote attacker gains a user account, they can then exploit the vulnerability to bypass intended access restr… CWE-863
 Incorrect Authorization
CVE-2026-24724 2026-06-12 22:47 2026-06-10 Show GitHub Exploit DB Packet Storm
3813 9.3 CRITICAL
Network
- - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in WBW Plugins Product Filter by WBW allows Blind SQL Injection. This issue affects Product Filter … CWE-89
SQL Injection
CVE-2026-39494 2026-06-12 22:13 2026-06-12 Show GitHub Exploit DB Packet Storm
3814 9.3 CRITICAL
Network
- - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Beardev JoomSport allows Blind SQL Injection. This issue affects JoomSport: from n/a through 5.7… CWE-89
SQL Injection
CVE-2026-42647 2026-06-12 22:13 2026-06-12 Show GitHub Exploit DB Packet Storm
3815 7.1 HIGH
Network
- - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in iova.Mihai SliceWP allows Stored XSS. This issue affects SliceWP: from n/a through 1.2.6. CWE-79
Cross-site Scripting
CVE-2026-42653 2026-06-12 22:13 2026-06-12 Show GitHub Exploit DB Packet Storm
3816 9.8 CRITICAL
Network
- - Incorrect Privilege Assignment vulnerability in Hippoo Mobile App for WooCommerce allows Privilege Escalation. This issue affects Hippoo Mobile App for WooCommerce: from n/a through 1.9.4. CWE-266
 Incorrect Privilege Assignment
CVE-2026-49060 2026-06-12 22:13 2026-06-12 Show GitHub Exploit DB Packet Storm
3817 6.4 MEDIUM
Network
- - The Presto Player plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'link_url' parameter of the [presto_player_overlay] shortcode in versions up to, and including, 4.2.0 This … CWE-79
Cross-site Scripting
CVE-2026-9125 2026-06-12 22:13 2026-06-12 Show GitHub Exploit DB Packet Storm
3818 8.8 HIGH
Network
- - Inappropriate implementation in Mojo in Google Chrome on Windows prior to 149.0.7827.115 allowed a local attacker to perform OS-level privilege escalation via a malicious file. (Chromium security sev… CWE-269
 Improper Privilege Management
CVE-2026-12018 2026-06-12 22:08 2026-06-12 Show GitHub Exploit DB Packet Storm
3819 8.1 HIGH
Network
qnap file_station A buffer overflow vulnerability has been reported to affect File Station 5. If a remote attacker gains a user account, they can then exploit the vulnerability to modify memory or crash processes. We… CWE-121
Stack-based Buffer Overflow
CVE-2026-26239 2026-06-12 21:53 2026-06-10 Show GitHub Exploit DB Packet Storm
3820 9.1 CRITICAL
Network
qnap file_station A buffer overflow vulnerability has been reported to affect File Station 5. The remote attackers can then exploit the vulnerability to modify memory or crash processes. We have already fixed the vul… CWE-121
Stack-based Buffer Overflow
CVE-2026-26240 2026-06-12 21:52 2026-06-10 Show GitHub Exploit DB Packet Storm