Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 16, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
241011	7.5	危険	MAXDev	-	MD-Pro の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-5222	2012-09-25 16:59	2007-10-4	Show	GitHub Exploit DB Packet Storm

241012	6.8	警告	jacob hinkle	-	Jacob Hinkle GodSend における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-5215	2012-09-25 16:59	2007-10-4	Show	GitHub Exploit DB Packet Storm

241013	3.3	注意	Novell	-	hugin における任意のファイルを上書きされる脆弱性	CWE-59 リンク解釈の問題	CVE-2007-5200	2012-09-25 16:59	2007-10-12	Show	GitHub Exploit DB Packet Storm

241014	6.8	警告	Nagios Enterprises, LLC	-	Nagios プラグインの redir 関数におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-5198	2012-09-25 16:59	2007-10-4	Show	GitHub Exploit DB Packet Storm

241015	7.5	危険	Mono Project	-	Mono の Mono.Math.BigInteger クラスにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-5197	2012-09-25 16:59	2007-11-2	Show	GitHub Exploit DB Packet Storm

241016	4.3	警告	megasol	-	OdysseySuite の Mailbox.mws におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-5183	2012-09-25 16:59	2007-10-3	Show	GitHub Exploit DB Packet Storm

241017	4.3	警告	netkamp	-	Netkamp Emlak Scripti の mail.asp におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-5182	2012-09-25 16:59	2007-10-3	Show	GitHub Exploit DB Packet Storm

241018	7.5	危険	netkamp	-	Netkamp Emlak Scripti の detay.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-5181	2012-09-25 16:59	2007-10-3	Show	GitHub Exploit DB Packet Storm

241019	7.5	危険	ohesa emlak portali	-	Ohesa Emlak Portali における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-5180	2012-09-25 16:59	2007-10-3	Show	GitHub Exploit DB Packet Storm

241020	6.8	警告	mxbb	-	mxBB 用の mx_glance モジュールにおけるリモートファイルインクルージョン攻撃を実行される脆弱性	CWE-94 コード・インジェクション	CVE-2007-5178	2012-09-25 16:59	2007-10-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1151	7.5	HIGH Network	apache f5 debian	http_server nginx debian_linux	Memory Allocation with Excessive Size Value vulnerability in Apache HTTP Server's mod_http leads to denial of service via malicious HTTP requests. This issue affects Apache HTTP Server: from 2.4.17 …	CWE-789 Memory Allocation with Excessive Size Value	CVE-2026-49975	2026-06-11 04:36	2026-06-9	Show	GitHub Exploit DB Packet Storm

1152	7.3	HIGH Network	apache	http_server	Use After Free vulnerability in Apache HTTP Server module mod_http2 when file handles are already exhausted. This issue affects Apache HTTP Server: from 2.4.55 through 2.4.67.	CWE-416 Use After Free	CVE-2026-48913	2026-06-11 04:31	2026-06-9	Show	GitHub Exploit DB Packet Storm

1153	8.8	HIGH Network	hcltech	digital_experience digital_experience_compose	HCL Digital Experience is affected by an OS command injection vulnerability in the Digital Asset Management API. An attacker may execute arbitrary operating system commands, typically inheriting the…	CWE-78 OS Command	CVE-2026-21837	2026-06-11 04:25	2026-06-5	Show	GitHub Exploit DB Packet Storm

1154	6.1	MEDIUM Network	hcltech	digital_experience_compose digital_experience	HCL Digital Experience and HCL Digital Experience Compose could be susceptible to Host header injection. An attacker can manipulate the Host header and cause the application to behave in unexpected …	CWE-601 Open Redirect	CVE-2026-21826	2026-06-11 04:24	2026-06-5	Show	GitHub Exploit DB Packet Storm

1155	6.1	MEDIUM Network	hcltech	digital_experience_compose digital_experience	HCL Digital Experience Compose is affected by a reflected cross-site scripting (XSS) vulnerability in the search center. An attacker could execute arbitrary JavaScript in the victim's browser.	CWE-79 Cross-site Scripting	CVE-2026-21825	2026-06-11 04:24	2026-06-5	Show	GitHub Exploit DB Packet Storm

1156	8.8	HIGH Network	google	chrome	Out of bounds read in DevTools in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Low)	CWE-125 Out-of-bounds Read	CVE-2026-11279	2026-06-11 04:22	2026-06-5	Show	GitHub Exploit DB Packet Storm

1157	6.5	MEDIUM Network	google	chrome	Inappropriate implementation in CustomTabs in Google Chrome on Android prior to 149.0.7827.53 allowed a local attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: …	CWE-346 Origin Validation Error	CVE-2026-11278	2026-06-11 04:19	2026-06-5	Show	GitHub Exploit DB Packet Storm

1158	-		-	-	bz2.BZ2Decompressor objects could be reused after a decompression error. If an application caught the resulting OSError and retried with the same decompressor, crafted input could cause the decompres…	CWE-121 Stack-based Buffer Overflow	CVE-2026-9669	2026-06-11 04:16	2026-06-9	Show	GitHub Exploit DB Packet Storm

1159	-		-	-	An unauthenticated user on the local network can gain control of the router and make unauthorized changes to its operation.	CWE-20 Improper Input Validation	CVE-2026-9211	2026-06-11 04:16	2026-06-10	Show	GitHub Exploit DB Packet Storm

1160	-		-	-	Insufficient input validation vulnerability in the listed NETGEAR models allows authenticated administrators connected to the local network to make unauthorized modification of router software and fu…	CWE-20 Improper Input Validation	CVE-2026-9210	2026-06-11 04:16	2026-06-10	Show	GitHub Exploit DB Packet Storm