Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 11, 2026, 6:13 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
222031 4.3 警告 Horde - Horde Groupware Webmail Edition で使用される Horde Kronolith Calendar Application H4 におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5566 2014-04-8 14:33 2012-05-29 Show GitHub Exploit DB Packet Storm
222032 4.3 警告 Horde - Horde Groupware Webmail Edition で使用される Horde Internet Mail Program におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5565 2014-04-8 14:32 2012-11-14 Show GitHub Exploit DB Packet Storm
222033 4 警告 シスコシステムズ - Cisco Unity Connection のメッセージング API におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-2145 2014-04-8 14:30 2014-04-7 Show GitHub Exploit DB Packet Storm
222034 6.1 警告 シスコシステムズ - Cisco IOS XR におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2014-2144 2014-04-8 14:30 2014-04-4 Show GitHub Exploit DB Packet Storm
222035 6.8 警告 Lee Howard - HylaFAX+ の hfaxd におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-5680 2014-04-8 13:59 2013-08-6 Show GitHub Exploit DB Packet Storm
222036 4.3 警告 Klaus Purer - Drupal 用 RESTful Web Services モジュールにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-1946 2014-04-8 13:36 2013-04-10 Show GitHub Exploit DB Packet Storm
222037 4 警告 ヒューレット・パッカード - HP IceWall Identity Manager および IceWall SSO パスワードリセットオプションにおけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2014-2600 2014-04-8 12:27 2014-04-3 Show GitHub Exploit DB Packet Storm
222038 2.1 注意 GNU Project - spy_user 関数およびその他の関数で使用される a2ps の lib/routines.h 内の tempname_ensure 関数における任意のファイルを変更される脆弱性 CWE-59
リンク解釈の問題 		CVE-2001-1593 2014-04-8 12:04 2001-02-12 Show GitHub Exploit DB Packet Storm
222039 5 警告 マイクロソフト - Microsoft Office 2007 から 2013 におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2014-2730 2014-04-8 11:26 2014-04-3 Show GitHub Exploit DB Packet Storm
222040 4.3 警告 IBM - IBM InfoSphere Optim Workload Replay におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-0827 2014-04-8 10:22 2014-04-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
411 7.5 HIGH
Network 		- - Shenzhen Tenda Technology Co., Ltd Tenda O3 Wireless Router v1.0.0.5(4180) was discovered to contain multiple stack overflows in the fromVirtualSer function via the puVar2, puVar1, __s2, __s1_00, and… New CWE-121
Stack-based Buffer Overflow 		CVE-2026-36779 2026-06-11 04:16 2026-06-10 Show GitHub Exploit DB Packet Storm
412 9.1 CRITICAL
Network 		- - An insecure authentication vulnerability in the /api/social-sign-in endpoint of bookcars v8.3 allows attackers to bypass authentication via a forged JWT token. New CWE-287
Improper Authentication 		CVE-2026-36727 2026-06-11 04:16 2026-06-10 Show GitHub Exploit DB Packet Storm
413 5.4 MEDIUM
Network 		google chrome Inappropriate implementation in TabGroups in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to perform UI spoofing via malicious network traffic. (Chromium security severity: Low) Update CWE-451
 User Interface (UI) Misrepresentation of Critical Information 		CVE-2026-11232 2026-06-11 04:11 2026-06-5 Show GitHub Exploit DB Packet Storm
414 8.8 HIGH
Network 		google chrome Use after free in Extensions in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Low) Update CWE-416
 Use After Free 		CVE-2026-11230 2026-06-11 04:09 2026-06-5 Show GitHub Exploit DB Packet Storm
415 6.1 MEDIUM
Physics 		google chrome Inappropriate implementation in Enterprise in Google Chrome prior to 149.0.7827.53 allowed a local attacker to perform privilege escalation via physical access to the device. (Chromium security sever… Update CWE-269
 Improper Privilege Management 		CVE-2026-11229 2026-06-11 04:09 2026-06-5 Show GitHub Exploit DB Packet Storm
416 9.8 CRITICAL
Network 		- - In Splunk Enterprise versions below 10.2.4 and 10.0.7, and Splunk Cloud Platform versions below 10.4.2604.3 and 10.2.2510.14, an unauthenticated user could create or truncate arbitrary files through … New CWE-306
Missing Authentication for Critical Function 		CVE-2026-20253 2026-06-11 03:36 2026-06-11 Show GitHub Exploit DB Packet Storm
417 8.8 HIGH
Network 		- - In Splunk Enterprise versions below 10.2.4, 10.0.7, 9.4.12, and 9.3.13, Splunk Cloud Platform versions below 10.3.2512.12, 10.2.2510.14, 10.1.2507.22, and 9.3.2411.132, and Splunk Secure Gateway vers… New CWE-502
 Deserialization of Untrusted Data 		CVE-2026-20251 2026-06-11 03:36 2026-06-11 Show GitHub Exploit DB Packet Storm
418 5.7 MEDIUM
Network 		- - In Splunk Enterprise versions below 10.2.4, 10.0.7, 9.4.12, and 9.3.13, and Splunk Cloud Platform versions below 10.3.2512.13, 10.2.2510.15, 10.1.2507.23, and 9.3.2411.132, a low-privileged user that… New CWE-20
 Improper Input Validation  		CVE-2026-20255 2026-06-11 03:36 2026-06-11 Show GitHub Exploit DB Packet Storm
419 7.1 HIGH
Network 		- - In Splunk Enterprise versions below 10.2.4, 10.0.7, 9.4.12, and 9.3.13, and Splunk Cloud Platform versions below 10.3.2512.11, 10.2.2510.15, 10.1.2507.23, and 9.3.2411.132, a low-privileged user that… New CWE-79
Cross-site Scripting 		CVE-2026-20258 2026-06-11 03:36 2026-06-11 Show GitHub Exploit DB Packet Storm
420 5.5 MEDIUM
Network 		- - In Splunk Enterprise versions below 10.2.4 and 10.0.7, and Splunk Cloud Platform versions below 10.4.2604.0, 10.3.2512.12, 10.2.2510.15, 10.1.2507.23, 10.0.2503.14, and 9.3.2411.131, a user who holds… New CWE-284
Improper Access Control 		CVE-2026-20259 2026-06-11 03:36 2026-06-11 Show GitHub Exploit DB Packet Storm