Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 14, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
239751 4.3 警告 David Ian Bennett - Maian Links の admin/inc/footer.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2008-2213 2012-09-25 17:17 2008-05-14 Show GitHub Exploit DB Packet Storm
239752 4.3 警告 David Ian Bennett - Maian Cart におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2008-2212 2012-09-25 17:17 2008-05-14 Show GitHub Exploit DB Packet Storm
239753 4.3 警告 David Ian Bennett - Maian Guestbook の admin/inc/footer.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2008-2211 2012-09-25 17:17 2008-05-14 Show GitHub Exploit DB Packet Storm
239754 4.3 警告 David Ian Bennett - Maian Support におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2008-2210 2012-09-25 17:17 2008-05-14 Show GitHub Exploit DB Packet Storm
239755 4.3 警告 David Ian Bennett - Maian Greeting の admin/inc/header.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2008-2209 2012-09-25 17:17 2008-05-14 Show GitHub Exploit DB Packet Storm
239756 7.5 危険 David Ian Bennett - Maian Greeting の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2008-2208 2012-09-25 17:17 2008-05-14 Show GitHub Exploit DB Packet Storm
239757 4.3 警告 David Ian Bennett - Maian Gallery の admin/index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2008-2207 2012-09-25 17:17 2008-05-14 Show GitHub Exploit DB Packet Storm
239758 4.3 警告 David Ian Bennett - Maian Music におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2008-2206 2012-09-25 17:17 2008-05-14 Show GitHub Exploit DB Packet Storm
239759 7.5 危険 David Ian Bennett - Maian Music の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2008-2205 2012-09-25 17:17 2008-05-14 Show GitHub Exploit DB Packet Storm
239760 4.3 警告 David Ian Bennett - Maian Search の admin/inc/header.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2008-2204 2012-09-25 17:17 2008-05-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 15, 2026, 4:10 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
851 7.5 HIGH
Network
- - Dulwich is a pure-Python implementation of the Git file formats and protocols. Starting in version 0.23.2 and prior to version 1.2.5, `dulwich.porcelain.submodule_update`, and by extension `porcelain… New CWE-22
Path Traversal
CVE-2026-52726 2026-06-12 00:21 2026-06-11 Show GitHub Exploit DB Packet Storm
852 7.8 HIGH
Local
microsoft windows_10_1809
windows_10_21h2
windows_10_22h2
windows_11_23h2
windows_11_24h2
windows_11_25h2
windows_11_26h1
windows_server_2019
windows_server_2022
windows_server_2025
Use after free in Windows SDK allows an authorized attacker to elevate privileges locally. Update CWE-190
CWE-416
 Integer Overflow or Wraparound
 Use After Free
CVE-2026-45593 2026-06-12 00:14 2026-06-10 Show GitHub Exploit DB Packet Storm
853 5.5 MEDIUM
Local
microsoft windows_10_1607
windows_10_1809
windows_10_21h2
windows_10_22h2
windows_11_23h2
windows_11_24h2
windows_11_25h2
windows_11_26h1
windows_server_2016
windows_server_2019
w…
Exposure of sensitive information to an unauthorized actor in Windows Application Identity (AppID) Subsystem allows an authorized attacker to disclose information locally. Update CWE-200
Information Exposure
CVE-2026-45594 2026-06-12 00:13 2026-06-10 Show GitHub Exploit DB Packet Storm
854 5.4 MEDIUM
Network
microsoft windows_10_1607
windows_10_1809
windows_10_21h2
windows_10_22h2
windows_11_23h2
windows_11_24h2
windows_11_25h2
windows_11_26h1
windows_server_2012
windows_server_2016
w…
Protection mechanism failure in Windows Mark of the Web (MOTW) allows an unauthorized attacker to bypass a security feature over a network. Update CWE-693
 Protection Mechanism Failure
CVE-2026-45595 2026-06-12 00:10 2026-06-10 Show GitHub Exploit DB Packet Storm
855 7.0 HIGH
Local
microsoft windows_10_1607
windows_10_1809
windows_10_21h2
windows_10_22h2
windows_11_23h2
windows_11_24h2
windows_11_25h2
windows_11_26h1
windows_server_2012
windows_server_2016
w…
Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally. Update CWE-362
CWE-416
Race Condition
 Use After Free
CVE-2026-45596 2026-06-12 00:07 2026-06-10 Show GitHub Exploit DB Packet Storm
856 7.0 HIGH
Local
microsoft windows_11_23h2
windows_11_24h2
windows_11_25h2
windows_11_26h1
windows_server_2022
windows_server_2025
Concurrent execution using shared resource with improper synchronization ('race condition') in UI Automation Manager (uiamanager.dll) allows an authorized attacker to elevate privileges locally. Update CWE-362
Race Condition
CVE-2026-45597 2026-06-12 00:03 2026-06-10 Show GitHub Exploit DB Packet Storm
857 7.0 HIGH
Local
microsoft windows_10_1607
windows_10_1809
windows_10_21h2
windows_10_22h2
windows_11_23h2
windows_11_24h2
windows_11_25h2
windows_11_26h1
windows_server_2012
windows_server_2016
w…
Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally. Update CWE-362
Race Condition
CVE-2026-45598 2026-06-12 00:00 2026-06-10 Show GitHub Exploit DB Packet Storm
858 8.1 HIGH
Network
microsoft windows_10_1607
windows_10_1809
windows_10_21h2
windows_10_22h2
windows_11_23h2
windows_11_24h2
windows_11_25h2
windows_11_26h1
windows_server_2012
windows_server_2016
w…
Use after free in Universal Plug and Play (upnp.dll) allows an unauthorized attacker to execute code over a network. CWE-416
 Use After Free
CVE-2026-45599 2026-06-11 23:57 2026-06-10 Show GitHub Exploit DB Packet Storm
859 7.1 HIGH
Local
- - A malicious application may cause unexpected changes in memory shared between processes. A memory corruption issue was addressed with improved state management. This issue is fixed in macOS Monterey … CWE-362
Race Condition
CVE-2022-26758 2026-06-11 23:43 2026-06-11 Show GitHub Exploit DB Packet Storm
860 3.5 LOW
Physics
- - A person with access to a Mac may be able to bypass Login Window. A consistency issue was addressed with improved state handling. This issue is fixed in macOS Monterey 12.4. CWE-287
Improper Authentication
CVE-2022-48575 2026-06-11 23:43 2026-06-11 Show GitHub Exploit DB Packet Storm