Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 22, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
234741	7.5	危険	versado cms	-	Versado CMS の includes/ajax_listado.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2541	2012-12-20 18:19	2007-05-8	Show	GitHub Exploit DB Packet Storm

234742	7.5	危険	pmecms	-	PMECMS における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2540	2012-12-20 18:19	2007-05-8	Show	GitHub Exploit DB Packet Storm

234743	7.8	危険	runcms	-	RunCms の show_files 関数における重要な情報 (ファイルの存在およびファイルメタデータ) を取得される脆弱性	-	CVE-2007-2539	2012-12-20 18:19	2007-05-8	Show	GitHub Exploit DB Packet Storm

234744	7.5	危険	runcms	-	RunCms の class/debug/debug_show.php における SQL インジェクションの脆弱性	-	CVE-2007-2538	2012-12-20 18:19	2007-05-8	Show	GitHub Exploit DB Packet Storm

234745	7.8	危険	picozip	-	PicoZip におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-2536	2012-12-20 18:19	2007-05-8	Show	GitHub Exploit DB Packet Storm

234746	7.8	危険	e-merge GmbH	-	WinAce におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-2535	2012-12-20 18:19	2007-05-8	Show	GitHub Exploit DB Packet Storm

234747	10	危険	トレンドマイクロ	-	Trend Micro ServerProtect におけるバッファオーバーフローの脆弱性	-	CVE-2007-2533	2012-12-20 18:19	2007-04-3	Show	GitHub Exploit DB Packet Storm

234748	7.5	危険	tropicalm	-	Tropicalm Crowell Resource における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2530	2012-12-20 18:19	2007-05-8	Show	GitHub Exploit DB Packet Storm

234749	10	危険	トレンドマイクロ	-	Windows 用の Trend Micro ServerProtect におけるバッファオーバーフローの脆弱性	-	CVE-2007-2528	2012-12-20 18:19	2007-04-13	Show	GitHub Exploit DB Packet Storm

234750	9.3	危険	smartcode	-	SmartCode VNC Manager の VNC Viewer ActiveX コントロールにおけるヒープベースのバッファオーバーフローの脆弱性	-	CVE-2007-2526	2012-12-20 18:19	2007-05-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 22, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
531	5.3	MEDIUM Local	-	-	Multiple out-of-bounds read vulnerabilities were found in GStreamer's pcapparse element. Malformed PCAP records can trigger reads beyond buffer boundaries during IPv4/TCP header parsing. This element…	CWE-125 Out-of-bounds Read	CVE-2026-52721	2026-06-16 06:09	2026-06-16	Show	GitHub Exploit DB Packet Storm

532	7.1	HIGH Network	-	-	A signed integer overflow vulnerability was found in GStreamer's VMnc decoder. A crafted VMnc stream with large cursor dimensions can overflow signed integer payload-size arithmetic, bypassing a leng…	CWE-190 Integer Overflow or Wraparound	CVE-2026-52722	2026-06-16 06:09	2026-06-16	Show	GitHub Exploit DB Packet Storm

533	7.1	HIGH Network	-	-	A flaw was found in GStreamer's RealMedia demuxer in the gst-plugins-ugly package. When processing a RealMedia file containing a specially crafted FILEINFO metadata section, the demuxer parses variab…	CWE-125 Out-of-bounds Read	CVE-2026-53704	2026-06-16 06:09	2026-06-16	Show	GitHub Exploit DB Packet Storm

534	7.1	HIGH Network	-	-	A vulnerability was found in the GStreamer RealMedia demuxer (gst-plugins-ugly). When processing a RealMedia (.rm) file, the demuxer parses MDPR (media properties) chunks to configure audio streams. …	CWE-125 Out-of-bounds Read	CVE-2026-53703	2026-06-16 06:09	2026-06-16	Show	GitHub Exploit DB Packet Storm

535	7.6	HIGH Network	-	-	A flaw was found in GStreamer's WavPack audio decoder in gst-plugins-good. When processing a specially crafted WavPack file, an integer overflow in the buffer size calculation (4 * block_samples * ch…	CWE-190 Integer Overflow or Wraparound	CVE-2026-53705	2026-06-16 06:09	2026-06-16	Show	GitHub Exploit DB Packet Storm

536	7.7	HIGH Network	-	-	Koel is a free, open-source music streaming solution. Prior to version 9.3.5, Koel validates the podcast feed URL via the SafeUrl rule (DNS resolution + public IP check), but the individual episode <…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-47260	2026-06-16 06:08	2026-06-13	Show	GitHub Exploit DB Packet Storm

537	7.6	HIGH Network	-	-	SQL Injection in reports/catalogue_out.pl in Koha Community Koha through 22.11.37, 23.x, 24.x before 24.11.16, 25.05.x before 25.05.11, 25.11.x before 25.11.05, 26.05.x before 26.05.01, and 26.11.x b…	CWE-89 SQL Injection	CVE-2026-6428	2026-06-16 06:06	2026-06-14	Show	GitHub Exploit DB Packet Storm

538	-		-	-	Typesense is a fast, typo-tolerant search engine. Prior to versions 29.1 and 30.2, there is an unauthenticated denial-of-service vulnerability in the /multi_search endpoint. A specially crafted reque…	CWE-754 Improper Check for Unusual or Exceptional Conditions	CVE-2026-47216	2026-06-16 06:05	2026-06-13	Show	GitHub Exploit DB Packet Storm

539	-		-	-	Typesense is a fast, typo-tolerant search engine. Prior to versions 29.1 and 30.2, there is a cache isolation issue affecting search requests that use both server-side search result caching and Scope…	CWE-524 Use of Cache Containing Sensitive Information	CVE-2026-47225	2026-06-16 06:05	2026-06-13	Show	GitHub Exploit DB Packet Storm

540	-		-	-	Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to versions 8.6.78 and 9.9.1-alpha.2, Parse Server's GraphQL endpoint discloses schema me…	CWE-209 Information Exposure Through an Error Message	CVE-2026-47248	2026-06-16 06:05	2026-06-13	Show	GitHub Exploit DB Packet Storm