Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 10, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
242761	4.3	警告	MediaWiki	-	MediaWiki の wikitext パーサにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1582	2012-09-12 13:47	2012-03-21	Show	GitHub Exploit DB Packet Storm

242762	5	警告	MediaWiki	-	MediaWiki における任意のユーザのパスワードを変更される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-1581	2012-09-12 13:46	2012-03-21	Show	GitHub Exploit DB Packet Storm

242763	6.8	警告	MediaWiki	-	MediaWiki の Special:Upload におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-1580	2012-09-12 13:45	2012-03-21	Show	GitHub Exploit DB Packet Storm

242764	5	警告	MediaWiki	-	MediaWiki のリソースローダにおける重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2012-1579	2012-09-12 13:44	2012-03-21	Show	GitHub Exploit DB Packet Storm

242765	6.8	警告	MediaWiki	-	MediaWiki におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-1578	2012-09-12 13:43	2012-03-21	Show	GitHub Exploit DB Packet Storm

242766	4.6	警告	ヒューレット・パッカード	-	HP Business Availability Center における Web セッションをハイジャックされる脆弱性	CWE-noinfo 情報不足	CVE-2012-3257	2012-09-12 11:18	2012-09-6	Show	GitHub Exploit DB Packet Storm

242767	6.8	警告	ヒューレット・パッカード	-	HP Business Availability Center におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-3256	2012-09-12 11:17	2012-09-6	Show	GitHub Exploit DB Packet Storm

242768	4.3	警告	ヒューレット・パッカード	-	HP Business Availability Center におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-3255	2012-09-12 11:17	2012-09-6	Show	GitHub Exploit DB Packet Storm

242769	7.5	危険	Honeywell International Inc.	-	複数の Honeywell 製品におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-0254	2012-09-12 11:16	2012-09-7	Show	GitHub Exploit DB Packet Storm

242770	7.5	危険	OpenEMR	-	OpenEMR の interface/login/validateUser.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-2115	2012-09-12 10:05	2012-09-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 11, 2026, 5:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
91	6.1	MEDIUM Network	-	-	draw.io is a configurable diagramming and whiteboarding application. Prior to version 29.7.12, a crafted .drawio file can execute arbitrary JavaScript in the editor's origin when the file is opened. … New	CWE-79 Cross-site Scripting	CVE-2026-46642	2026-06-11 03:17	2026-06-11	Show	GitHub Exploit DB Packet Storm

92	-		-	-	Fission is an open-source, Kubernetes-native serverless framework that simplifies the deployment of functions and applications on Kubernetes. Prior to version 1.23.0, before the round-1 security swee… New	CWE-78 CWE-250 CWE-269 OS Command Execution with Unnecessary Privileges Improper Privilege Management	CVE-2026-46618	2026-06-11 03:17	2026-06-11	Show	GitHub Exploit DB Packet Storm

93	-		-	-	Fission is an open-source, Kubernetes-native serverless framework that simplifies the deployment of functions and applications on Kubernetes. Prior to version 1.23.0, Fission runtime pods were create… New	CWE-250 CWE-269 CWE-538 Execution with Unnecessary Privileges Improper Privilege Management File and Directory Information Exposure	CVE-2026-46617	2026-06-11 03:17	2026-06-11	Show	GitHub Exploit DB Packet Storm

94	9.8	CRITICAL Network	-	-	Fission is an open-source, Kubernetes-native serverless framework that simplifies the deployment of functions and applications on Kubernetes. Prior to version 1.23.0, the Fission router registers an … New	CWE-284 CWE-862 Improper Access Control Missing Authorization	CVE-2026-46614	2026-06-11 03:17	2026-06-11	Show	GitHub Exploit DB Packet Storm

95	8.8	HIGH Network	-	-	Fission is an open-source, Kubernetes-native serverless framework that simplifies the deployment of functions and applications on Kubernetes. Prior to version 1.23.0, the Fission storagesvc component… New	CWE-306 Missing Authentication for Critical Function	CVE-2026-46612	2026-06-11 03:17	2026-06-11	Show	GitHub Exploit DB Packet Storm

96	8.1	HIGH Network	-	-	FrankenPHP is a modern application server for PHP. From version 1.11.2 to before version 1.12.3, the splitPos() function in cgi.go misuses golang.org/x/text/search with search.IgnoreCase when the req… New	CWE-20 CWE-176 CWE-178 Improper Input Validation Improper Handling of Unicode Encoding Improper Handling of Case Sensitivity	CVE-2026-45062	2026-06-11 03:16	2026-06-11	Show	GitHub Exploit DB Packet Storm

97	7.5	HIGH Network	-	-	Shenzhen Tenda Technology Co., Ltd Tenda PW201A v1.0.5 was discovered to contain a buffer overflow in the page parameter of the qossetting function. This vulnerability allows attackers to cause a Den… New	CWE-120 Classic Buffer Overflow	CVE-2026-36803	2026-06-11 03:16	2026-06-10	Show	GitHub Exploit DB Packet Storm

98	7.5	HIGH Network	-	-	Shenzhen Tenda Technology Co., Ltd Tenda PW201A v1.0.5 was discovered to contain a buffer overflow in the page parameter of the SafeMacFilter function. This vulnerability allows attackers to cause a … New	CWE-120 Classic Buffer Overflow	CVE-2026-36802	2026-06-11 03:16	2026-06-10	Show	GitHub Exploit DB Packet Storm

99	7.5	HIGH Network	-	-	Shenzhen Tenda Technology Co., Ltd Tenda G0 v15.11.0.5 was discovered to contain a buffer overflow in the IPMacBindRule parameter of the formIPMacBindAdd function. This vulnerability allows attackers… New	CWE-120 Classic Buffer Overflow	CVE-2026-36801	2026-06-11 03:16	2026-06-10	Show	GitHub Exploit DB Packet Storm

100	7.5	HIGH Network	-	-	Shenzhen Tenda Technology Co., Ltd Tenda W3 Wireless Router v1.0.0.3(2204) was discovered to contain multiple stack overflows in the R7WebsSecurityHandler function via the username and password param… New	CWE-121 Stack-based Buffer Overflow	CVE-2026-36794	2026-06-11 03:16	2026-06-10	Show	GitHub Exploit DB Packet Storm