Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 28, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
240141	9.3	危険	myplugins	-	Winamp 用の gen_msn プラグインにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-0833	2012-09-25 17:27	2009-03-5	Show	GitHub Exploit DB Packet Storm

240142	7.5	危険	php.brickhost	-	phpScheduleIt における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-0820	2012-09-25 17:27	2009-03-4	Show	GitHub Exploit DB Packet Storm

240143	9.3	危険	imera	-	Imera TeamLinks Client の ImeraIEPlugin.dll における任意の URL の実行を強制される脆弱性	CWE-20 不適切な入力確認	CVE-2009-0813	2012-09-25 17:27	2009-03-4	Show	GitHub Exploit DB Packet Storm

240144	6.5	警告	opengoo	-	OpenGoo におけるユーザのパーミッションを変更される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-0806	2012-09-25 17:27	2009-03-4	Show	GitHub Exploit DB Packet Storm

240145	7.5	危険	mpfr	-	GNU MPFR におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-0757	2012-09-25 17:27	2009-03-3	Show	GitHub Exploit DB Packet Storm

240146	5	警告	mldonkey	-	MLDonkey における絶対パストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-0753	2012-09-25 17:27	2009-03-3	Show	GitHub Exploit DB Packet Storm

240147	5.1	警告	Papoo Software	-	Papoo CMS の lib/classes/message_class.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-0735	2012-09-25 17:27	2009-02-25	Show	GitHub Exploit DB Packet Storm

240148	9.3	危険	ノキア	-	Nokia PC Suite の MultimediaPlayer.exe におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-0734	2012-09-25 17:27	2009-02-25	Show	GitHub Exploit DB Packet Storm

240149	5	警告	lingx	-	Downloadcenter におけるユーザ資格情報を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-0732	2012-09-25 17:27	2009-02-24	Show	GitHub Exploit DB Packet Storm

240150	6.8	警告	lingx	-	Page Engine CMS におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-0729	2012-09-25 17:27	2009-02-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 28, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
3771	6.5	MEDIUM Network	-	-	Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. In versions 8.2.6.4 and prior, the /smon/agent/{version,uptime,status,checks}/<server_ip> family of routes takes…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-45561	2026-06-11 02:16	2026-06-11	Show	GitHub Exploit DB Packet Storm

3772	6.1	MEDIUM Network	-	-	Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. In versions 8.2.6.4 and prior, wrap_line (app/modules/common/common.py:181-186) and highlight_word (app/modules/…	CWE-79 Cross-site Scripting	CVE-2026-45560	2026-06-11 02:16	2026-06-11	Show	GitHub Exploit DB Packet Storm

3773	9.1	CRITICAL Network	-	-	Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. In versions 8.2.6.4 and prior, PUT /smon/check (app/routes/smon/routes.py:117-138) gates only on roxywi_common.c…	CWE-639 CWE-862 CWE-863 Authorization Bypass Through User-Controlled Key Missing Authorization Incorrect Authorization	CVE-2026-45550	2026-06-11 02:16	2026-06-11	Show	GitHub Exploit DB Packet Storm

3774	8.5	HIGH Network	-	-	Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. In versions 8.2.6.4 and prior, agent_action (app/routes/smon/agent_routes.py:166-179) has decorators @bp.post('/…	CWE-862 CWE-863 Missing Authorization Incorrect Authorization	CVE-2026-45549	2026-06-11 02:16	2026-06-11	Show	GitHub Exploit DB Packet Storm

3775	7.5	HIGH Network	-	-	Shenzhen Tenda Technology Co., Ltd Tenda W15E v15.11.0.10 was discovered to contain a buffer overflow in the picCropName parameter of the formCropAndSetWewifiPic function. This vulnerability allows a…	CWE-121 Stack-based Buffer Overflow	CVE-2026-36813	2026-06-11 02:16	2026-06-10	Show	GitHub Exploit DB Packet Storm

3776	7.5	HIGH Network	-	-	Shenzhen Tenda Technology Co., Ltd Tenda W15E v15.11.0.10 was discovered to contain a buffer overflow in the webAuthUserPwd parameter of the formModifyWebAuthUser function. This vulnerability allows …	CWE-121 Stack-based Buffer Overflow	CVE-2026-36806	2026-06-11 02:16	2026-06-10	Show	GitHub Exploit DB Packet Storm

3777	7.5	HIGH Network	-	-	Shenzhen Tenda Technology Co., Ltd Tenda G0 v15.11.0.5 was discovered to contain multiple buffer overflows in the Saveqqlist function via the qqStr and markStr parameters. These vulnerabilities allow…	CWE-121 Stack-based Buffer Overflow	CVE-2026-36805	2026-06-11 02:16	2026-06-10	Show	GitHub Exploit DB Packet Storm

3778	-		-	-	Insufficient input validation in NETGEAR JR6150 (AC750 WiFi Router 802.11ac Dual Band Gigabit released in 2014) allows users connected to the local WiFi Networks to execute operating system commands.…	CWE-20 Improper Input Validation	CVE-2026-0419	2026-06-11 02:16	2026-06-10	Show	GitHub Exploit DB Packet Storm

3779	-		-	-	Insufficient configuration management in the listed devices allows authenticated administrators connected to the local network to tamper with the system.	CWE-15 External Control of System or Configuration Setting	CVE-2026-0418	2026-06-11 02:16	2026-06-10	Show	GitHub Exploit DB Packet Storm

3780	4.0	MEDIUM Network	-	-	Dräger Atlan A350 versions 1.00 up to and including 1.01 contains an improper input handling vulnerability that allows attackers to cause a denial of service by sending specifically crafted non-Medib…	CWE-1286 Improper Validation of Syntactic Correctness of Input	CVE-2021-4479	2026-06-11 02:16	2026-06-3	Show	GitHub Exploit DB Packet Storm