Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 29, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
236011	9.3	危険	PHPNUKE	-	PHP-NUKE 用の iFrame モジュールにおける PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1626	2012-12-20 18:19	2007-03-23	Show	GitHub Exploit DB Packet Storm

236012	4.3	警告	realguestbook	-	realGuestbook の save_entry.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-1625	2012-12-20 18:19	2007-03-23	Show	GitHub Exploit DB Packet Storm

236013	7.5	危険	realguestbook	-	realGuestbook における SQL インジェクションの脆弱性	-	CVE-2007-1624	2012-12-20 18:19	2007-03-23	Show	GitHub Exploit DB Packet Storm

236014	4.3	警告	realguestbook	-	realGuestbook におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-1623	2012-12-20 18:19	2007-03-23	Show	GitHub Exploit DB Packet Storm

236015	4.3	警告	WordPress.org	-	WordPress の wp-admin/vars.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-1622	2012-12-20 18:19	2007-03-22	Show	GitHub Exploit DB Packet Storm

236016	7.5	危険	scriptmagix	-	ScriptMagix Photo Rating の viewcomments.php における SQL インジェクションの脆弱性	-	CVE-2007-1619	2012-12-20 18:19	2007-03-22	Show	GitHub Exploit DB Packet Storm

236017	7.5	危険	scriptmagix	-	ScriptMagix FAQ Builder の index.php における SQL インジェクションの脆弱性	-	CVE-2007-1618	2012-12-20 18:19	2007-03-22	Show	GitHub Exploit DB Packet Storm

236018	7.5	危険	scriptmagix	-	ScriptMagix Recipes の index.php における SQL インジェクションの脆弱性	-	CVE-2007-1617	2012-12-20 18:19	2007-03-22	Show	GitHub Exploit DB Packet Storm

236019	7.5	危険	scriptmagix	-	ScriptMagix Lyrics の index.php における SQL インジェクションの脆弱性	-	CVE-2007-1616	2012-12-20 18:19	2007-03-22	Show	GitHub Exploit DB Packet Storm

236020	7.5	危険	scriptmagix	-	ScriptMagix Jokes の index.php における SQL インジェクションの脆弱性	-	CVE-2007-1615	2012-12-20 18:19	2007-03-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 29, 2026, 4:19 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
201	7.1	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: netfilter: ip6t_hbh: reject oversized option lists struct ip6t_opts stores at most IP6T_OPTS_OPTSNR option descriptors, but hbh_m… New	-	CVE-2026-52915	2026-06-28 17:16	2026-06-24	Show	GitHub Exploit DB Packet Storm

202	9.8	CRITICAL Network	-	-	In the Linux kernel, the following vulnerability has been resolved: batman-adv: fix fragment reassembly length accounting batman-adv keeps a running payload length for queued fragments and uses it … New	-	CVE-2026-52914	2026-06-28 17:16	2026-06-24	Show	GitHub Exploit DB Packet Storm

203	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_queue: hold bridge skb->dev while queued br_pass_frame_up() rewrites skb->dev from the ingress port to the bridge m… New	-	CVE-2026-52912	2026-06-28 17:16	2026-06-24	Show	GitHub Exploit DB Packet Storm

204	8.8	HIGH Network	-	-	In the Linux kernel, the following vulnerability has been resolved: ksmbd: scope conn->binding slowpath to bound sessions only When the binding SESSION_SETUP sets conn->binding = true, the flag sta… New	-	CVE-2026-52911	2026-06-28 17:16	2026-06-21	Show	GitHub Exploit DB Packet Storm

205	3.1	LOW Network	-	-	A flaw has been found in arc53 DocsGPT up to 0.18.0. The affected element is the function encrypt_credentials of the file application/security/encryption.py of the component Credential Storage. This … New	CWE-345 Insufficient Verification of Data Authenticity	CVE-2026-13483	2026-06-28 16:16	2026-06-28	Show	GitHub Exploit DB Packet Storm

206	3.7	LOW Network	-	-	A vulnerability was detected in skypilot-org skypilot up to 0.12.0. Impacted is the function username.encode of the file sky/users/server.py of the component User ID Handler. The manipulation results… New	CWE-327 CWE-328 Use of a Broken or Risky Cryptographic Algorithm Use of Weak Hash	CVE-2026-13482	2026-06-28 14:16	2026-06-28	Show	GitHub Exploit DB Packet Storm

207	7.4	HIGH Network	-	-	Zephyr's BSD-sockets getaddrinfo() implementation (subsys/net/lib/sockets/getaddrinfo.c) passes a pointer to a stack-allocated state object (struct getaddrinfo_state ai_state) as the user_data of an … New	CWE-416 Use After Free	CVE-2026-10646	2026-06-28 14:16	2026-06-28	Show	GitHub Exploit DB Packet Storm

208	4.2	MEDIUM Adjacent	-	-	The Microchip SERCOM-G1 UART driver (drivers/serial/uart_mchp_sercom_g1.c), used by the PIC32CM-JH SoC family, contains an out-of-bounds write in its asynchronous (DMA) receive path. When uart_rx_ena… New	CWE-787 Out-of-bounds Write	CVE-2026-10644	2026-06-28 14:16	2026-06-28	Show	GitHub Exploit DB Packet Storm

209	6.5	MEDIUM Adjacent	-	-	The Zephyr Bluetooth LE Audio Basic Audio Profile (BAP) unicast client mishandles peer-supplied ASE state notifications. In unicast_client_ep_qos_state() (subsys/bluetooth/audio/bap_unicast_client.c)… New	CWE-476 NULL Pointer Dereference	CVE-2026-10593	2026-06-28 14:16	2026-06-28	Show	GitHub Exploit DB Packet Storm

210	6.5	MEDIUM Network	-	-	Nmap through 7.99 does not keep the IPv6 extension-header walk within the captured packet in ipv6_get_data_primitive (libnetutil/netutil.cc), so the pointer advances past the buffer and the remaining… New	CWE-191 Integer Underflow (Wrap or Wraparound)	CVE-2026-58058	2026-06-28 11:16	2026-06-28	Show	GitHub Exploit DB Packet Storm