Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 11, 2026, 6:13 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
241021	5	警告	madwifi	-	MadWifi の if_ath.c におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-2830	2012-09-25 16:47	2007-05-23	Show	GitHub Exploit DB Packet Storm

241022	5	警告	madwifi	-	MadWifi の net80211/ieee80211_wireless.c におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-2829	2012-09-25 16:47	2007-05-23	Show	GitHub Exploit DB Packet Storm

241023	6	警告	johntp	-	WordPress 用の AdSense-Deluxe プラグインにおけるクロスサイトリクエストフォージェリの脆弱性	-	CVE-2007-2828	2012-09-25 16:47	2007-05-22	Show	GitHub Exploit DB Packet Storm

241024	9.3	危険	LEAD Technologies, Inc.	-	LEAD Technologies の LeadTools におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-2827	2012-09-25 16:47	2007-05-22	Show	GitHub Exploit DB Packet Storm

241025	7.5	危険	madirish webmail	-	Madirish Webmail の lib/addressbook.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-2826	2012-09-25 16:47	2007-05-22	Show	GitHub Exploit DB Packet Storm

241026	6.8	警告	ht editor	-	HT Editor におけるバッファオーバーフローの脆弱性	-	CVE-2007-2823	2012-09-25 16:47	2007-05-22	Show	GitHub Exploit DB Packet Storm

241027	7.5	危険	ksign	-	AxKSignSWAT.dll におけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2007-2820	2012-09-25 16:47	2007-05-22	Show	GitHub Exploit DB Packet Storm

241028	7.5	危険	ol bookmarks	-	ol'bookmarks の read/index.php における SQL インジェクションの脆弱性	-	CVE-2007-2817	2012-09-25 16:47	2007-05-22	Show	GitHub Exploit DB Packet Storm

241029	7.5	危険	ol bookmarks	-	ol'bookmarks における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-2816	2012-09-25 16:47	2007-05-22	Show	GitHub Exploit DB Packet Storm

241030	10	危険	マイクロソフト	-	Microsoft IIS Web Server の webhits.dll における非公開 Web ディレクトリへアクセスされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2007-2815	2012-09-25 16:47	2007-05-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
611	9.8	CRITICAL Network	-	-	A lack of cryptographic signature verification in the validateAccessToken function of bookcars v8.3 allows attackers to bypass authentication via a forged JWT token. New	CWE-347 Improper Verification of Cryptographic Signature	CVE-2026-36721	2026-06-11 00:16	2026-06-10	Show	GitHub Exploit DB Packet Storm

612	7.5	HIGH Network	-	-	An information disclosure vulnerability in the /api/v1/user/info endpoint of AgentChat v2.3.0 allows unauthenticated attackers to obtain sensitive information, including SHA256 password hashes, via e… New	CWE-200 Information Exposure	CVE-2026-36719	2026-06-11 00:16	2026-06-10	Show	GitHub Exploit DB Packet Storm

613	8.4	HIGH Local	-	-	Slate Digital Connect 1.37.0 for macOS installs a privileged helper tool, com.slatedigital.connect.privileged.helper.tool, which exposes the XPC service com.slatedigital.connect.privileged.helper.too… New	CWE-367 Time-of-check Time-of-use (TOCTOU) Race Condition	CVE-2026-24067	2026-06-11 00:16	2026-06-10	Show	GitHub Exploit DB Packet Storm

614	8.4	HIGH Local	-	-	Slate Digital Connect 1.37.0 for macOS installs a privileged helper tool, com.slatedigital.connect.privileged.helper.tool, which exposes the XPC service com.slatedigital.connect.privileged.helper.too… New	CWE-296 Improper Following of a Certificate's Chain of Trust	CVE-2026-24066	2026-06-11 00:16	2026-06-10	Show	GitHub Exploit DB Packet Storm

615	7.8	HIGH Local	-	-	Waves Central for macOS versions 13.0.9 through 16.5.5 contain a local privilege escalation vulnerability. A trusted XPC client component included with the product is signed with hardened runtime ent… New	CWE-426 Untrusted Search Path	CVE-2026-24064	2026-06-11 00:16	2026-06-10	Show	GitHub Exploit DB Packet Storm

616	6.5	MEDIUM Network	-	-	A heap buffer overflow flaw was found in 389 Directory Server. When serializing objectclass definitions, the oc_superior (SUP) field length is omitted from buffer size calculations in read_schema_dse… New	CWE-122 Heap-based Buffer Overflow	CVE-2026-11884	2026-06-11 00:16	2026-06-11	Show	GitHub Exploit DB Packet Storm

617	8.3	HIGH Network	google	chrome	Insufficient validation of untrusted input in Drag and Drop in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perfor… Update	CWE-20 Improper Input Validation	CVE-2026-11029	2026-06-11 00:16	2026-06-5	Show	GitHub Exploit DB Packet Storm

618	5.5	MEDIUM Local	-	-	A NULL pointer dereference in the gf_isom_get_user_data_count function (isomedia/isom_read.c) of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service (DoS) via supplying a crafted MP4 file. New	CWE-476 NULL Pointer Dereference	CVE-2025-55651	2026-06-11 00:16	2026-06-10	Show	GitHub Exploit DB Packet Storm

619	6.7	MEDIUM Local	-	-	During an internal security assessment, a potential out-of-bounds write vulnerability was discovered in the BIOS of some ThinkPad products could allow a privileged local user to execute code in Syste… New	CWE-787 Out-of-bounds Write	CVE-2025-10238	2026-06-11 00:16	2026-06-11	Show	GitHub Exploit DB Packet Storm

620	6.7	MEDIUM Local	-	-	During an internal security assessment, a potential vulnerability was discovered in some ThinkPad embedded controller firmware that could allow a privileged local user to perform arbitrary reads or w… New	CWE-327 Use of a Broken or Risky Cryptographic Algorithm	CVE-2025-10237	2026-06-11 00:16	2026-06-11	Show	GitHub Exploit DB Packet Storm