Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 14, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
220441 1.4 注意 オラクル - Oracle Siebel CRM の Siebel Core - EAI における Integration Business Services に関する脆弱性 CWE-noinfo
情報不足 		CVE-2014-2485 2014-07-18 11:01 2014-07-15 Show GitHub Exploit DB Packet Storm
220442 4.3 警告 shopizer-ecommerce - Shopizer におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-4965 2014-07-17 17:41 2014-07-10 Show GitHub Exploit DB Packet Storm
220443 6.8 警告 shopizer-ecommerce - Shopizer におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2014-4964 2014-07-17 17:40 2014-07-10 Show GitHub Exploit DB Packet Storm
220444 6.8 警告 shopizer-ecommerce - Shopizer における任意のユーザのアカウント設定を変更される脆弱性 CWE-noinfo
情報不足 		CVE-2014-4963 2014-07-17 17:39 2014-07-10 Show GitHub Exploit DB Packet Storm
220445 6.4 警告 shopizer-ecommerce - Shopizer におけるショッピングカートの総コストを減らされる脆弱性 CWE-189
数値処理の問題 		CVE-2014-4962 2014-07-17 17:39 2014-07-10 Show GitHub Exploit DB Packet Storm
220446 8.5 危険 ヒューレット・パッカード - HP Intelligent Management Center および Branch Intelligent Management System における重要な情報を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2014-2622 2014-07-17 16:46 2014-07-14 Show GitHub Exploit DB Packet Storm
220447 7.8 危険 ヒューレット・パッカード - HP Intelligent Management Center および Branch Intelligent Management System における重要な情報を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2014-2621 2014-07-17 16:45 2014-07-14 Show GitHub Exploit DB Packet Storm
220448 7.8 危険 ヒューレット・パッカード - HP Intelligent Management Center および Branch Intelligent Management System における重要な情報を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2014-2620 2014-07-17 16:45 2014-07-14 Show GitHub Exploit DB Packet Storm
220449 7.8 危険 ヒューレット・パッカード - HP Intelligent Management Center および Branch Intelligent Management System における重要な情報を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2014-2619 2014-07-17 16:45 2014-07-14 Show GitHub Exploit DB Packet Storm
220450 7.8 危険 ヒューレット・パッカード - HP Intelligent Management Center および Branch Intelligent Management System における重要な情報を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2014-2618 2014-07-17 16:44 2014-07-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
91 6.5 MEDIUM
Network 		- - Nezha Monitoring is a self-hostable, lightweight, servers and websites monitoring and O&M tool. From version 1.4.0 to before version 2.0.9, any authenticated non-admin member can connect to the serve… New CWE-200
Information Exposure 		CVE-2026-47124 2026-06-13 07:16 2026-06-13 Show GitHub Exploit DB Packet Storm
92 7.1 HIGH
Network 		- - Nezha Monitoring is a self-hostable, lightweight, servers and websites monitoring and O&M tool. From version 1.4.0 to before version 2.0.8, a RoleMember can fire other users' cron tasks via AlertRule… New CWE-862
CWE-863
 Missing Authorization
 Incorrect Authorization 		CVE-2026-47120 2026-06-13 07:16 2026-06-13 Show GitHub Exploit DB Packet Storm
93 9.9 CRITICAL
Network 		- - Nezha Monitoring is a self-hostable, lightweight, servers and websites monitoring and O&M tool. From version 1.4.0 to before version 2.0.8, a RoleMember user can create a scheduled cron task with Cov… New CWE-78
CWE-269
CWE-862
OS Command 
 Improper Privilege Management
 Missing Authorization 		CVE-2026-46716 2026-06-13 07:16 2026-06-13 Show GitHub Exploit DB Packet Storm
94 - - - Software installed and run as a non-privileged user may conduct GPU system calls to write to arbitrary freed physical pages. Physical memory allocated and freed, without the deferred free mechanis… New CWE-416
 Use After Free 		CVE-2026-41158 2026-06-13 07:16 2026-06-13 Show GitHub Exploit DB Packet Storm
95 - - - A web page that contains unusual WebGPU content loaded into the GPU GLES render process and can trigger an out-of-bound write in the GPU user-space driver, leading to memory corruption and possible b… New CWE-787
 Out-of-bounds Write 		CVE-2026-41157 2026-06-13 07:16 2026-06-13 Show GitHub Exploit DB Packet Storm
96 - - - An attacker could cooperatively pass data from one secure GPU process to another secure GPU process through shared secure memory allocations in the kernel module. Additionally, an attacker could disr… New CWE-653
 Improper Isolation or Compartmentalization 		CVE-2026-41155 2026-06-13 07:16 2026-06-13 Show GitHub Exploit DB Packet Storm
97 - - - Software installed and run as a non-privileged user may conduct intentional GPU sparse memory API calls to cause out of bounds write in the kernel. The product incorrectly indexes internal state w… New CWE-787
 Out-of-bounds Write 		CVE-2026-34195 2026-06-13 07:16 2026-06-13 Show GitHub Exploit DB Packet Storm
98 6.3 MEDIUM
Network 		- - A weakness has been identified in CodeAstro Human Resource Management System 1.0. This vulnerability affects the function Invoice of the file \application\controllers\Payroll.php of the component Pay… New CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-12131 2026-06-13 07:16 2026-06-13 Show GitHub Exploit DB Packet Storm
99 5.5 MEDIUM
Local 		- - Stack overflow vulnerability in Avast Antivirus when scanning a malformed Office Open XML file may allow Denial-of-Service of the antivirus process. This issue affects Avast Antivirus, AVG Antivirus… New CWE-121
Stack-based Buffer Overflow 		CVE-2025-7019 2026-06-13 07:16 2026-06-13 Show GitHub Exploit DB Packet Storm
100 5.5 MEDIUM
Local 		- - Null pointer dereference vulnerability in Avira Antivirus engine when scanning a malformed Windows PE file may allow Denial-of-Service of the antivirus engine process. This issue affects Avira Antiv… New CWE-476
 NULL Pointer Dereference 		CVE-2025-7018 2026-06-13 07:16 2026-06-13 Show GitHub Exploit DB Packet Storm