Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 13, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
233131 7.5 危険 tim jackson - PHPOF の dbmodules/DB_adodb.class.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-4763 2012-12-20 18:33 2007-09-8 Show GitHub Exploit DB Packet Storm
233132 7.5 危険 phpmytourney - phpMytourney の menu.php における PHP リモートファイルインクルージョンの脆弱性 CWE-20
不適切な入力確認 		CVE-2007-4757 2012-12-20 18:33 2007-09-8 Show GitHub Exploit DB Packet Storm
233133 5 警告 Thomson - Thomson ST 2030 SIP 電話機におけるサービス運用妨害 (DoS) の脆弱性 CWE-DesignError
CVE-2007-4753 2012-12-20 18:33 2007-09-7 Show GitHub Exploit DB Packet Storm
233134 6.8 警告 ppstream - PPStream の PowerPlayer.dll ActiveX コントロールにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-4748 2012-12-20 18:33 2007-09-6 Show GitHub Exploit DB Packet Storm
233135 9.3 危険 telecom italy - Telecom Italy Alice Messenger の Hp.Revolution.RegistryManager.dll 1 におけるレジストリキーを作成される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-4740 2012-12-20 18:33 2007-09-6 Show GitHub Exploit DB Packet Storm
233136 7.5 危険 speedtech - SpeedTech PHP Library における PHP リモートファイルインクルージョンの脆弱性 CWE-20
CWE-94
CVE-2007-4738 2012-12-20 18:33 2007-09-6 Show GitHub Exploit DB Packet Storm
233137 7.5 危険 speedtech - STPHPLibrary における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-4737 2012-12-20 18:33 2007-09-6 Show GitHub Exploit DB Packet Storm
233138 10 危険 トレンドマイクロ - Trend Micro ServerProtect の TMReg.dll におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-4731 2012-12-20 18:33 2007-09-11 Show GitHub Exploit DB Packet Storm
233139 5 警告 weboddity - Web Oddity におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-4726 2012-12-20 18:33 2007-09-5 Show GitHub Exploit DB Packet Storm
233140 7.5 危険 weblogicnet - Weblogicnet における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-4715 2012-12-20 18:33 2007-09-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291 8.1 HIGH
Network 		qnap file_station A buffer overflow vulnerability has been reported to affect File Station 5. If a remote attacker gains a user account, they can then exploit the vulnerability to modify memory or crash processes. We… New CWE-121
Stack-based Buffer Overflow 		CVE-2026-26239 2026-06-12 21:53 2026-06-10 Show GitHub Exploit DB Packet Storm
292 9.1 CRITICAL
Network 		qnap file_station A buffer overflow vulnerability has been reported to affect File Station 5. The remote attackers can then exploit the vulnerability to modify memory or crash processes. We have already fixed the vul… New CWE-121
Stack-based Buffer Overflow 		CVE-2026-26240 2026-06-12 21:52 2026-06-10 Show GitHub Exploit DB Packet Storm
293 9.1 CRITICAL
Network 		qnap file_station A buffer overflow vulnerability has been reported to affect File Station 5. The remote attackers can then exploit the vulnerability to modify memory or crash processes. We have already fixed the vul… New CWE-121
Stack-based Buffer Overflow 		CVE-2026-26241 2026-06-12 21:51 2026-06-10 Show GitHub Exploit DB Packet Storm
294 10.0 CRITICAL
Network 		ivanti standalone_sentry An OS Command Injection vulnerability in Ivanti Sentry before the R10.5.2, R10.6.2 and R10.7.1 versions allows a remote unauthenticated user to achieve root-level remote code execution Update CWE-78
OS Command  		CVE-2026-10520 2026-06-12 21:42 2026-06-10 Show GitHub Exploit DB Packet Storm
295 5.5 MEDIUM
Local 		apple macos A parsing issue in the handling of directory paths was addressed with improved path validation. This issue is fixed in macOS Sequoia 15.4. An app may be able to access sensitive user data. New CWE-22
Path Traversal 		CVE-2025-24268 2026-06-12 21:38 2026-06-12 Show GitHub Exploit DB Packet Storm
296 8.8 HIGH
Local 		apple macos This issue was addressed with improved checks to prevent unauthorized actions. This issue is fixed in macOS Sequoia 15.4. An app may be able to break out of its sandbox. New CWE-693
 Protection Mechanism Failure 		CVE-2025-24284 2026-06-12 21:38 2026-06-12 Show GitHub Exploit DB Packet Storm
297 5.5 MEDIUM
Local 		apple macos The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7.5. A malicious app may be able to access private information. New CWE-693
 Protection Mechanism Failure 		CVE-2025-30431 2026-06-12 21:38 2026-06-12 Show GitHub Exploit DB Packet Storm
298 5.5 MEDIUM
Local 		apple macos A privacy issue was addressed by removing the vulnerable code. This issue is fixed in macOS Sequoia 15.4. An app may be able to access sensitive user data. New CWE-359
 Exposure of Private Personal Information to an Unauthorized Actor 		CVE-2025-30459 2026-06-12 21:37 2026-06-12 Show GitHub Exploit DB Packet Storm
299 7.8 HIGH
Local 		apple macos The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.4. An app may be able to bypass launch constraint protections and execute malicious code with elevated privileges. New CWE-269
 Improper Privilege Management 		CVE-2025-31272 2026-06-12 21:37 2026-06-12 Show GitHub Exploit DB Packet Storm
300 5.5 MEDIUM
Local 		apple macos An access issue was addressed with additional sandbox restrictions. This issue is fixed in macOS Tahoe 26.1. A malicious app may be able to access sensitive user data. New CWE-284
Improper Access Control 		CVE-2025-43339 2026-06-12 21:37 2026-06-12 Show GitHub Exploit DB Packet Storm