Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 1, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
241691	6.8	警告	Autosave	-	Drupal 用 Autosave モジュールにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-2097	2012-09-3 16:02	2012-04-11	Show	GitHub Exploit DB Packet Storm

241692	7.1	危険	WellinTech	-	WellinTech KingSCADA における重要な情報を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2012-1977	2012-09-3 15:57	2012-01-20	Show	GitHub Exploit DB Packet Storm

241693	6	警告	IBM	-	IBM WebSphere Application Server における管理者のアクセス権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2012-3325	2012-09-3 14:21	2012-08-30	Show	GitHub Exploit DB Packet Storm

241694	6.4	警告	EPractize Labs	-	EPractize Labs Subscription Manager における任意のファイルを上書きされる脆弱性	CWE-20 不適切な入力確認	CVE-2011-5136	2012-09-3 14:20	2012-08-30	Show	GitHub Exploit DB Packet Storm

241695	6	警告	Docebo	-	DoceboLMS の iotask モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-5135	2012-09-3 14:18	2012-08-30	Show	GitHub Exploit DB Packet Storm

241696	6	警告	Widget Factory Limited	-	Joomla! 用 JCE コンポーネントにおける任意の PHP コードを実行される脆弱性	CWE-Other その他	CVE-2011-5134	2012-09-3 14:15	2012-08-30	Show	GitHub Exploit DB Packet Storm

241697	10	危険	MyBB Group	-	MyBB における脆弱性	CWE-noinfo 情報不足	CVE-2011-5133	2012-09-3 14:14	2011-11-25	Show	GitHub Exploit DB Packet Storm

241698	4.3	警告	MyBB Group	-	MyBB におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5132	2012-09-3 14:13	2011-11-25	Show	GitHub Exploit DB Packet Storm

241699	6.8	警告	MyBB Group	-	MyBB の global.php におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2011-5131	2012-09-3 13:53	2011-11-25	Show	GitHub Exploit DB Packet Storm

241700	6.8	警告	Haudenschilt	-	Family Connections CMS の dev/less.php における任意のコマンドを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-5130	2012-09-3 13:49	2011-11-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2211	-		-	-	IEC 60870-5-104 used in bidirectional mode in RTU500 is vulnerable for a NULL pointer dereferencing, if a specially crafted sequence of messages is sent for a certain time, causing Denial of Service …	CWE-476 NULL Pointer Dereference	CVE-2026-8479	2026-05-27 01:16	2026-05-26	Show	GitHub Exploit DB Packet Storm

2212	-		-	-	FastNetMon Community Edition through 1.2.9 contains an out-of-bounds read vulnerability in the NetFlow v9 data flowset processor. In src/netflow_plugin/netflow_v9_collector.cpp, the Data template bra…	-	CVE-2026-48683	2026-05-27 01:16	2026-05-27	Show	GitHub Exploit DB Packet Storm

2213	7.6	HIGH Network	-	-	Karakeep is a elf-hostable bookmark-everything app. A Server-Side Request Forgery (SSRF) protection bypass vulnerability was identified in versions prior to 0.32.0 affecting redirect-following proces…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-45082	2026-05-27 01:16	2026-05-27	Show	GitHub Exploit DB Packet Storm

2214	6.2	MEDIUM Local	-	-	In Arm ArmNN through 2026-03-27, an integer overflow in TensorShape::GetNumElements() in armnn/Tensor.cpp allows a crafted TFLite model file to bypass buffer size validation and trigger a heap-based …	CWE-190 Integer Overflow or Wraparound	CVE-2026-42627	2026-05-27 01:16	2026-05-23	Show	GitHub Exploit DB Packet Storm

2215	-		-	-	An Insecure Direct Object Reference (IDOR) vulnerability was discovered in ONLYOFFICE DocSpace before 3.2.1. The flaw exists in multiple REST API endpoints. This allows authenticated users with low-l…	-	CVE-2026-38587	2026-05-27 01:16	2026-05-27	Show	GitHub Exploit DB Packet Storm

2216	7.0	HIGH Local	samba	rsync	Rsync versions before 3.4.3 contain a time-of-check to time-of-use (TOCTOU) race condition in daemon file handling that allows attackers to redirect file writes outside intended directories by replac…	CWE-367 Time-of-check Time-of-use (TOCTOU) Race Condition	CVE-2026-29518	2026-05-27 01:16	2026-05-20	Show	GitHub Exploit DB Packet Storm

2217	7.8	HIGH Local	-	-	A high-severity vulnerability in the deployment of Genetec RabbitMQ that allows a privilege escalation attack.	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2026-25112	2026-05-27 01:16	2026-05-27	Show	GitHub Exploit DB Packet Storm

2218	7.3	HIGH Network	-	-	A security flaw has been discovered in Das Parking Management System 停车场管理系统 6.2.0. This vulnerability affects unknown code of the component Search API Endpoint. The manipulation of the argument Valu…	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-9552	2026-05-27 00:17	2026-05-27	Show	GitHub Exploit DB Packet Storm

2219	7.3	HIGH Network	-	-	A vulnerability was identified in Das Parking Management System 停车场管理系统 6.2.0. This affects the function xp_cmdshell of the file ParkingRecord/ExportParkingRecords of the component API Endpoint. The …	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-9551	2026-05-27 00:17	2026-05-27	Show	GitHub Exploit DB Packet Storm

2220	7.3	HIGH Network	-	-	A vulnerability was determined in Acrel Electrical EEMS Enterprise Power Operation and Maintenance Cloud Platform 1.3.0. Affected by this issue is some unknown functionality of the file /SubstationWE…	CWE-22 Path Traversal	CVE-2026-9550	2026-05-27 00:16	2026-05-27	Show	GitHub Exploit DB Packet Storm