Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 30, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
243351 8.5 危険 vBulletin Solutions, Inc. - Jelsoft vBulletin の admincp/attachment.php における SQL インジェクションの脆弱性 - CVE-2007-2911 2012-09-25 16:47 2007-03-19 Show GitHub Exploit DB Packet Storm
243352 4.3 警告 vBulletin Solutions, Inc. - Jelsoft vBulletin におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-2910 2012-09-25 16:47 2007-05-15 Show GitHub Exploit DB Packet Storm
243353 3.5 注意 vBulletin Solutions, Inc. - Jelsoft vBulletin の calendar.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2909 2012-09-25 16:47 2007-05-15 Show GitHub Exploit DB Packet Storm
243354 4.3 警告 vBulletin Solutions, Inc. - Jelsoft vBulletin の calendar.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2908 2012-09-25 16:47 2007-05-30 Show GitHub Exploit DB Packet Storm
243355 5 警告 マイクロソフト - Microsoft Office 2000の OUACTRL.OCX におけるバッファオーバーフローの脆弱性 - CVE-2007-2903 2012-09-25 16:47 2007-05-30 Show GitHub Exploit DB Packet Storm
243356 7.5 危険 navboard - NavBoard の admin_config.php における data/config.php に任意の PHP コードを挿入される脆弱性 CWE-94
コード・インジェクション 		CVE-2007-2899 2012-09-25 16:47 2007-05-30 Show GitHub Exploit DB Packet Storm
243357 7.5 危険 マイクロソフト - Microsoft IIS 6.0 におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-2897 2012-09-25 16:47 2007-05-30 Show GitHub Exploit DB Packet Storm
243358 7.5 危険 LEAD Technologies, Inc. - LeadTools Raster Dialog File Object におけるバッファオーバーフローの脆弱性 - CVE-2007-2895 2012-09-25 16:47 2007-05-29 Show GitHub Exploit DB Packet Storm
243359 5 警告 Nortel Networks - Meridian/CS の Nortel CS メディアカードにおけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-2886 2012-09-25 16:47 2007-05-29 Show GitHub Exploit DB Packet Storm
243360 4.3 警告 マイクロソフト - MSVDT Database Designer の VDT70.DLL におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-2885 2012-09-25 16:47 2007-05-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 30, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
831 5.3 MEDIUM
Network 		wolfssl wolfssl Chain intermediate CA:TRUE without keyCertSign accepted as a signing CA. Intermediate CA certificates are required to have the keyCertSign key usage when a Key Usage extension is present, but chain-s… CWE-295
Improper Certificate Validation  		CVE-2026-55964 2026-06-27 03:53 2026-06-26 Show GitHub Exploit DB Packet Storm
832 5.5 MEDIUM
Local 		jqlang jq jq is a command-line JSON processor. Prior to 1.8.2, on 32bit system, jvp_string_append has a chance of integer/multiple overflowing and then causing a massive buffer overrun. This vulnerability is … CWE-190
 Integer Overflow or Wraparound 		CVE-2026-54679 2026-06-27 03:53 2026-06-26 Show GitHub Exploit DB Packet Storm
833 7.1 HIGH
Local 		jqlang jq jq is a command-line JSON processor. Prior to 1.8.2,` jq --rawfile` can turn a handled oversized-string error into invalid-state reuse and a real heap out-of-bounds write in assertion-disabled builds… CWE-787
 Out-of-bounds Write 		CVE-2026-49839 2026-06-27 03:53 2026-06-26 Show GitHub Exploit DB Packet Storm
834 5.5 MEDIUM
Local 		jqlang jq jq is a command-line JSON processor. Prior to 1.8.2, comparing two sufficiently deeply nested arrays with the == operator exhausts the C stack on jq's ordinary command-line surface, resulting in deni… CWE-674
 Uncontrolled Recursion 		CVE-2026-47770 2026-06-27 03:53 2026-06-26 Show GitHub Exploit DB Packet Storm
835 4.3 MEDIUM
Network 		gitlab gitlab GitLab has remediated an issue in GitLab CE/EE affecting all versions from 14.8 before 18.11.6, 19.0 before 19.0.3, and 19.1 before 19.1.1 that under certain conditions could have allowed an authenti… CWE-94
Code Injection 		CVE-2026-1606 2026-06-27 03:40 2026-06-25 Show GitHub Exploit DB Packet Storm
836 5.3 MEDIUM
Network 		gitlab gitlab GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.5 before 18.11.6, 19.0 before 19.0.3, and 19.1 before 19.1.1 that under certain conditions could have allowed an unauthen… CWE-862
 Missing Authorization 		CVE-2026-2238 2026-06-27 03:40 2026-06-25 Show GitHub Exploit DB Packet Storm
837 4.3 MEDIUM
Network 		gitlab gitlab GitLab has remediated an issue in GitLab CE/EE affecting all versions from 13.6 before 18.11.6, 19.0 before 19.0.3, and 19.1 before 19.1.1 that under certain conditions could have allowed an authenti… CWE-863
 Incorrect Authorization 		CVE-2026-5796 2026-06-27 03:39 2026-06-25 Show GitHub Exploit DB Packet Storm
838 4.3 MEDIUM
Network 		gitlab gitlab GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.11 before 18.11.6, 19.0 before 19.0.3, and 19.1 before 19.1.1 that under certain conditions could have allowed an authent… CWE-863
 Incorrect Authorization 		CVE-2026-5952 2026-06-27 03:38 2026-06-25 Show GitHub Exploit DB Packet Storm
839 3.8 LOW
Network 		gitlab gitlab GitLab has remediated an issue in GitLab EE affecting all versions from 17.9 before 18.11.6, 19.0 before 19.0.3, and 19.1 before 19.1.1 that under certain conditions could have allowed an authenticat… CWE-863
 Incorrect Authorization 		CVE-2026-0934 2026-06-27 03:36 2026-06-25 Show GitHub Exploit DB Packet Storm
840 5.4 MEDIUM
Network 		gitlab gitlab GitLab has remediated an issue in GitLab EE affecting all versions from 16.4 before 18.11.6, 19.0 before 19.0.3, and 19.1 before 19.1.1 that under certain conditions could have allowed an authenticat… CWE-79
Cross-site Scripting 		CVE-2026-10086 2026-06-27 03:36 2026-06-25 Show GitHub Exploit DB Packet Storm