Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 16, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
213891 6.8 警告 JasPer Project
IBM
オラクル		 - JasPer の jpc_crg_getparms 関数におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-4517 2015-05-25 16:52 2011-12-15 Show GitHub Exploit DB Packet Storm
213892 6.8 警告 JasPer Project
IBM
オラクル		 - JasPer の jpc_cox_getcompparms 関数におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-4516 2015-05-25 16:52 2011-12-15 Show GitHub Exploit DB Packet Storm
213893 10 危険 JasPer Project - JasPer の libjasper/base/jas_stream.c におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-3522 2015-05-25 16:52 2008-10-2 Show GitHub Exploit DB Packet Storm
213894 9.3 危険 サイバートラスト株式会社
JasPer Project
レッドハット		 - JasPer における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2008-3520 2015-05-25 16:52 2008-10-2 Show GitHub Exploit DB Packet Storm
213895 5 警告 Django Software Foundation
Canonical		 - Django の utils.html.strip_tags 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2015-2316 2015-05-25 16:11 2015-03-18 Show GitHub Exploit DB Packet Storm
213896 4.3 警告 OpenStack - OpenStack keystonemiddleware および python-keystoneclient の s3_token ミドルウェアにおける中間者攻撃を実行される脆弱性 CWE-Other
その他 		CVE-2015-1852 2015-05-25 16:11 2015-04-14 Show GitHub Exploit DB Packet Storm
213897 5.5 警告 OpenStack
オラクル		 - OpenStack Image Registry and Delivery Service の V2 API における任意のファイルを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-9493 2015-05-25 16:09 2014-12-10 Show GitHub Exploit DB Packet Storm
213898 7.5 危険 FreeType Project - FreeType の sfnt/ttcmap.c 内の tt_cmap4_validate 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2014-9663 2015-05-25 16:09 2014-11-22 Show GitHub Exploit DB Packet Storm
213899 5.5 警告 OpenStack - OpenStack Object Storage におけるオブジェクトの最新バージョンを削除される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2015-1856 2015-05-25 16:09 2015-04-15 Show GitHub Exploit DB Packet Storm
213900 6.5 警告 The Cacti Group - Cacti における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2015-0916 2015-05-25 15:28 2015-05-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
171 8.2 HIGH
Network 		raszi tmp tmp is a temporary file and directory creator for node.js. Prior to 0.2.6, the tmp npm package contains a path traversal vulnerability that allows escaping the intended temporary directory when untru… Update CWE-22
Path Traversal 		CVE-2026-44705 2026-06-15 21:52 2026-06-12 Show GitHub Exploit DB Packet Storm
172 - - - Responsive FileManager's allows an unauthenticated attacker to upload files of any type and extension without restriction using dialog.php endpoint, leading to Remote Code Execution.  This project i… New CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2026-5482 2026-06-15 21:16 2026-06-15 Show GitHub Exploit DB Packet Storm
173 - - - Authentication Bypass by Spoofing vulnerability in team-alembic AshAuthentication allows account takeover of local users via OAuth2/OIDC sign-in. AshAuthentication's OAuth2 and OIDC family strategie… New CWE-290
 Authentication Bypass by Spoofing 		CVE-2026-49757 2026-06-15 21:16 2026-06-15 Show GitHub Exploit DB Packet Storm
174 - - - The Wertheim SafeController Software, AssemblyVersion 6.15.8328.28014, does not sufficiently validate the branch code when a new branch is created. The branch code is later used in multiple applicati… New CWE-73
 External Control of File Name or Path 		CVE-2026-34030 2026-06-15 21:16 2026-06-15 Show GitHub Exploit DB Packet Storm
175 - - - The Wertheim SafeController Software, AssemblyVersion 6.15.8328.28014, contains a hard-coded cryptographic key in the SafeSystem.Infrastructure.Security.dll component. An attacker with access to the … New CWE-321
 Use of Hard-coded Cryptographic Key 		CVE-2026-34029 2026-06-15 21:16 2026-06-15 Show GitHub Exploit DB Packet Storm
176 - - - The Wertheim SafeController Software, AssemblyVersion 6.15.8328.28014, exposes web-accessible file paths that are not protected by an authorization scheme. An unauthenticated attacker can directly ac… New CWE-425
 Direct Request ('Forced Browsing') 		CVE-2026-34028 2026-06-15 21:16 2026-06-15 Show GitHub Exploit DB Packet Storm
177 - - - The Wertheim SafeController Software, AssemblyVersion 6.15.8328.28014, contains insufficient server-side file type validation in the /safe/contract/uploadcustomdocuments endpoint. The application val… New CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2026-34027 2026-06-15 21:16 2026-06-15 Show GitHub Exploit DB Packet Storm
178 - - - Wertheim SafeController Software, AssemblyVersion 6.15.8328.28014, contains a path traversal vulnerability in the documentName parameter of the /safe/selfservice/openselfservicedocument endpoint. The… New CWE-23
 Relative Path Traversal 		CVE-2026-34026 2026-06-15 21:16 2026-06-15 Show GitHub Exploit DB Packet Storm
179 - - - The Wertheim SafeController Software, AssemblyVersion 6.15.8328.28014, contains an IP restriction bypass vulnerability in the login process. The application restricts user logins based on the IP addr… New CWE-290
 Authentication Bypass by Spoofing 		CVE-2026-34025 2026-06-15 21:16 2026-06-15 Show GitHub Exploit DB Packet Storm
180 - - - The Wertheim SafeController Software, AssemblyVersion 6.15.8328.28014, contains missing authorization checks on multiple web application endpoints. An authenticated attacker with minimal privileges c… New CWE-862
 Missing Authorization 		CVE-2026-34024 2026-06-15 21:16 2026-06-15 Show GitHub Exploit DB Packet Storm