Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 30, 2026, 4:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
232951	7.8	危険	precisionid	-	DMATRIXLib.Datamatrix の PRECIS~2.DLL における任意のファイルを上書きされる脆弱性	CWE-Other その他	CVE-2009-1212	2012-12-20 19:10	2009-04-1	Show	GitHub Exploit DB Packet Storm

232952	9.3	危険	w3	-	W3C Amaya Web Browser におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-1209	2012-12-20 19:10	2009-04-1	Show	GitHub Exploit DB Packet Storm

232953	4.3	警告	Tiki Software Community Association	-	Tiki CMS/Groupware におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-1204	2012-12-20 19:10	2009-03-18	Show	GitHub Exploit DB Packet Storm

232954	5	警告	サン・マイクロシステムズ	-	Sun JDK の java.util.regex.Pattern.compile メソッドにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2009-1190	2012-12-20 19:10	2009-04-27	Show	GitHub Exploit DB Packet Storm

232955	10	危険	UMN	-	MapServer の mapserv におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-1177	2012-12-20 19:10	2009-03-31	Show	GitHub Exploit DB Packet Storm

232956	10	危険	UMN	-	MapServer の mapserv におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-1176	2012-12-20 19:10	2009-03-31	Show	GitHub Exploit DB Packet Storm

232957	7.3	危険	シーメンス	-	Siemens Gigaset SE461 WiMAX ルータにおけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2009-1152	2012-12-20 19:10	2009-03-26	Show	GitHub Exploit DB Packet Storm

232958	4.3	警告	Rapid Leech	-	Rapidleech の upload.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-1091	2012-12-20 19:10	2009-03-25	Show	GitHub Exploit DB Packet Storm

232959	6.8	警告	Rapid Leech	-	Rapidleech の upload.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-1090	2012-12-20 19:10	2009-03-25	Show	GitHub Exploit DB Packet Storm

232960	9	危険	サン・マイクロシステムズ	-	Sun Java System IdM における任意のコマンドを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-1083	2012-12-20 19:10	2009-03-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 30, 2026, 4:22 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1641	-		-	-	Improper Handling of Insufficient Permissions or Privileges vulnerability in Apache Kvrocks. This issue affects Apache Kvrocks: 2.8.0. Users are recommended to upgrade to version 2.16.0, which fixe…	CWE-280 Improper Handling of Insufficient Permissions or Privileges	CVE-2026-41566	2026-06-25 22:27	2026-06-25	Show	GitHub Exploit DB Packet Storm

1642	-		-	-	Relative Path Traversal vulnerability in Apache Kvrocks. This issue affects Apache Kvrocks: from 1.0.0 through 2.15.0. Users are recommended to upgrade to version 2.16.0, which fixes the issue.	CWE-23 Relative Path Traversal	CVE-2026-45188	2026-06-25 22:27	2026-06-25	Show	GitHub Exploit DB Packet Storm

1643	-		-	-	A vulnerability in Apache Kvrocks. This issue affects Apache Kvrocks: from 2.2.0 through 2.15.0. Users are recommended to upgrade to version 2.16.0, which fixes the issue.	-	CVE-2026-46751	2026-06-25 22:27	2026-06-25	Show	GitHub Exploit DB Packet Storm

1644	-		-	-	Redis Lua HEAP overflow in cjson library vulnerability in Apache Kvrocks. This issue affects Apache Kvrocks: from 2.0.4 through 2.15.0. Users are recommended to upgrade to version 2.16.0, which fix…	CWE-122 Heap-based Buffer Overflow	CVE-2026-46752	2026-06-25 22:27	2026-06-25	Show	GitHub Exploit DB Packet Storm

1645	-		-	-	When using Apache Shiro with the shiro-guice module in a web servlet context, a specially crafted HTTP request may cause an authentication bypass. This vulnerability is similar to https://www.cve.or…	CWE-289 Authentication Bypass by Alternate Name	CVE-2026-56091	2026-06-25 22:27	2026-06-25	Show	GitHub Exploit DB Packet Storm

1646	-		-	-	"Remember me" cookie age is not verified on the server. This potentially allows an attacker to intercept a valid cookie and reuse it indefinitely, even after the configured expiration time has passed…	CWE-294 Authentication Bypass by Capture-replay	CVE-2026-56130	2026-06-25 22:27	2026-06-25	Show	GitHub Exploit DB Packet Storm

1647	7.1	HIGH Network	openwebui	open_webui	Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.6, Open WebUI lets a user who can create, update, or import workspace models store arbi…	CWE-284 CWE-285 CWE-862 Improper Access Control Improper Authorization Missing Authorization	CVE-2026-54012	2026-06-25 22:26	2026-06-24	Show	GitHub Exploit DB Packet Storm

1648	6.4	MEDIUM Network	-	-	The Xpro Addons — 140+ Widgets for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'custom_attributes' parameter in all versions up to, and including, 1.7.2 due to…	CWE-79 Cross-site Scripting	CVE-2026-11614	2026-06-25 22:26	2026-06-24	Show	GitHub Exploit DB Packet Storm

1649	7.2	HIGH Network	-	-	The ARForms plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the `value` parameter of the `arf_save_incomplete_form_data` AJAX action in all versions up to, and including, 7.1.3 …	CWE-79 Cross-site Scripting	CVE-2026-3652	2026-06-25 22:26	2026-06-24	Show	GitHub Exploit DB Packet Storm

1650	7.2	HIGH Network	-	-	The Email JavaScript Cloak plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'email' shortcode in all versions up to, and including, 1.03 due to insufficient input sa…	CWE-79 Cross-site Scripting	CVE-2026-10091	2026-06-25 22:26	2026-06-24	Show	GitHub Exploit DB Packet Storm