Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 30, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2291 7.5 重要
Network 		ImageMagick ImageMagick ImageMagickにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-53460 2026-06-12 14:44 2026-06-10 Show GitHub Exploit DB Packet Storm
2292 7.5 重要
Network 		ImageMagick ImageMagick ImageMagickにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2026-53461 2026-06-12 14:44 2026-06-10 Show GitHub Exploit DB Packet Storm
2293 5.9 警告
Network 		ImageMagick ImageMagick ImageMagickにおける解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-53462 2026-06-12 14:44 2026-06-10 Show GitHub Exploit DB Packet Storm
2294 4.3 警告
Network 		ImageMagick ImageMagick ImageMagickにおけるNULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2026-53463 2026-06-12 14:44 2026-06-10 Show GitHub Exploit DB Packet Storm
2295 4 警告
Local 		ImageMagick ImageMagick ImageMagickにおける有効期限後のメモリの解放の欠如に関する脆弱性 CWE-401
有効期限後のメモリの解放の欠如 		CVE-2026-53464 2026-06-12 14:44 2026-06-10 Show GitHub Exploit DB Packet Storm
2296 6.2 警告
Local 		ImageMagick ImageMagick ImageMagickにおける複数の脆弱性 CWE-122
CWE-787
CVE-2026-53465 2026-06-12 14:44 2026-06-10 Show GitHub Exploit DB Packet Storm
2297 4.3 警告
Network 		GitLab.org GitLab GitLab.orgのGitLabにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-6277 2026-06-12 14:44 2026-06-11 Show GitHub Exploit DB Packet Storm
2298 8.7 重要
Network 		GitLab.org GitLab GitLab.orgのGitLabにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-6552 2026-06-12 14:44 2026-06-11 Show GitHub Exploit DB Packet Storm
2299 3.7
Network 		GitLab.org GitLab GitLab.orgのGitLabにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-6976 2026-06-12 14:44 2026-06-11 Show GitHub Exploit DB Packet Storm
2300 7.5 重要
Network 		GitLab.org GitLab GitLab.orgのGitLabにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-7250 2026-06-12 14:44 2026-06-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 30, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
306001 - microsoft windows_server_2008
windows_xp
windows_7
windows_server_2003
windows_vista
windows_2003_server 		win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 does not pro… CWE-20
 Improper Input Validation  		CVE-2012-1865 2024-11-21 10:37 2012-06-13 Show GitHub Exploit DB Packet Storm
306002 - microsoft windows_server_2008
windows_xp
windows_7
windows_server_2003
windows_vista
windows_2003_server 		win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 does not pro… CWE-20
 Improper Input Validation  		CVE-2012-1864 2024-11-21 10:37 2012-06-13 Show GitHub Exploit DB Packet Storm
306003 - microsoft lync
office_communicator
internet_explorer 		The toStaticHTML API (aka the SafeHTML component) in Microsoft Internet Explorer 8 and 9, Communicator 2007 R2, and Lync 2010 and 2010 Attendee does not properly handle event attributes and script, w… CWE-200
Information Exposure 		CVE-2012-1858 2024-11-21 10:37 2012-06-13 Show GitHub Exploit DB Packet Storm
306004 - microsoft dynamics_ax Cross-site scripting (XSS) vulnerability in the Enterprise Portal component in Microsoft Dynamics AX 2012 allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka "Dynami… CWE-79
Cross-site Scripting 		CVE-2012-1857 2024-11-21 10:37 2012-06-13 Show GitHub Exploit DB Packet Storm
306005 - microsoft .net_framework Microsoft .NET Framework 2.0 SP2, 3.5, 3.5.1, 4, and 4.5 does not properly handle function pointers, which allows remote attackers to execute arbitrary code via (1) a crafted XAML browser application… CWE-94
Code Injection 		CVE-2012-1855 2024-11-21 10:37 2012-06-13 Show GitHub Exploit DB Packet Storm
306006 - microsoft lync Untrusted search path vulnerability in Microsoft Lync 2010, 2010 Attendee, and 2010 Attendant allows local users to gain privileges via a Trojan horse DLL in the current working directory, as demonst… NVD-CWE-Other
CVE-2012-1849 2024-11-21 10:37 2012-06-13 Show GitHub Exploit DB Packet Storm
306007 - microsoft internet_explorer Microsoft Internet Explorer 6 through 8 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing a deleted object, aka "Center Element Remote C… CWE-94
Code Injection 		CVE-2012-1523 2024-11-21 10:37 2012-06-13 Show GitHub Exploit DB Packet Storm
306008 - forescout counteract Multiple cross-site scripting (XSS) vulnerabilities in the status program on the ForeScout CounterACT appliance with software 6.3.3.2 through 6.3.4.10 allow remote attackers to inject arbitrary web s… CWE-79
Cross-site Scripting 		CVE-2012-1825 2024-11-21 10:37 2012-06-12 Show GitHub Exploit DB Packet Storm
306009 - emerson deltav
deltav_workstation
deltav_proessentials_scientific_graph 		An unspecified ActiveX control in Emerson DeltaV and DeltaV Workstations 9.3.1, 10.3.1, 11.3, and 11.3.1 and DeltaV ProEssentials Scientific Graph 5.0.0.6 allows remote attackers to overwrite arbitra… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-1818 2024-11-21 10:37 2012-06-9 Show GitHub Exploit DB Packet Storm
306010 - emerson deltav
deltav_workstation
deltav_proessentials_scientific_graph 		Buffer overflow in Emerson DeltaV and DeltaV Workstations 9.3.1, 10.3.1, 11.3, and 11.3.1 and DeltaV ProEssentials Scientific Graph 5.0.0.6 allows user-assisted remote attackers to execute arbitrary … CWE-20
 Improper Input Validation  		CVE-2012-1817 2024-11-21 10:37 2012-06-9 Show GitHub Exploit DB Packet Storm