Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 16, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
244811 7.5 危険 strongSwan - strongSwan の GMP プラグインにおける認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2012-2388 2012-07-2 11:10 2012-05-31 Show GitHub Exploit DB Packet Storm
244812 5 警告 WordPress.org - WordPress の wp-includes/formatting.php におけるサービス運用妨害 (クラッシュ) の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-4957 2012-07-2 11:08 2011-04-5 Show GitHub Exploit DB Packet Storm
244813 4.3 警告 WordPress.org - WordPress におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-4956 2012-07-2 11:00 2011-04-5 Show GitHub Exploit DB Packet Storm
244814 4 警告 Peter Pokrivcak - Drupal 用 Post Affiliate Pro モジュールにおける他のユーザのコミッションを読まれる脆弱性 CWE-noinfo
情報不足 		CVE-2012-3802 2012-07-2 10:59 2012-05-16 Show GitHub Exploit DB Packet Storm
244815 3.3 注意 Wireshark - Wireshark の IEEE 802.11 解析機能におけるサービス運用妨害 (DoS) の脆弱性 CWE-94
コード・インジェクション 		CVE-2012-1594 2012-06-29 18:57 2012-03-27 Show GitHub Exploit DB Packet Storm
244816 - - John Franklin - ** 削除 ** Drupal 用 Advertisement モジュールにおけるサイトの重要な設定情報を取得される脆弱性 - CVE-2012-3801 2012-06-29 11:03 2012-05-16 Show GitHub Exploit DB Packet Storm
244817 2.1 注意 Moshe Weitzman - Drupal 用 Organic Groups モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-3800 2012-06-29 11:02 2012-06-6 Show GitHub Exploit DB Packet Storm
244818 5.1 警告 Nextide - Drupal 用 Maestro モジュールにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-3799 2012-06-29 11:01 2012-06-6 Show GitHub Exploit DB Packet Storm
244819 5 警告 Bryce Hamrick - Drupal 用 Janrain Capture モジュールにおけるパスワードの推測が容易になる脆弱性 CWE-200
情報漏えい 		CVE-2012-3798 2012-06-29 10:55 2012-06-13 Show GitHub Exploit DB Packet Storm
244820 2.6 注意 Ricardo Sanz Ante - Drupal 用 Ubercart AJAX Cart における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2012-2731 2012-06-29 10:54 2012-06-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2831 - - - In Vinyl Cache before 9.0.1 and Varnish Cache before 9.0.3, a deficiency in HTTP/2 request parsing can be exploited to launch a backend request desync attack (request smuggling), which in turn can be… CWE-444
HTTP Request Smuggling 		CVE-2026-50052 2026-06-5 01:15 2026-06-3 Show GitHub Exploit DB Packet Storm
2832 - - - Pterodactyl is a free, open-source game server management panel. Prior to version 1.12.3, the Pterodactyl Client API has a logic flaw that lets users bypass their assigned limits for database allocat… CWE-367
CWE-770
 Time-of-check Time-of-use (TOCTOU) Race Condition
 Allocation of Resources Without Limits or Throttling 		CVE-2026-35202 2026-06-5 01:12 2026-06-3 Show GitHub Exploit DB Packet Storm
2833 5.3 MEDIUM
Network 		- - CloudburstMC Protocol is a protocol library for Minecraft Bedrock Edition. Prior to version 3.0.0.Beta12-20260420.182526-15, CloudburstMC Protocol is partially missing validation for FULL type authen… CWE-287
Improper Authentication 		CVE-2026-45289 2026-06-5 01:12 2026-06-3 Show GitHub Exploit DB Packet Storm
2834 4.9 MEDIUM
Network 		- - alf.io is an open source ticket reservation system for conferences, trade shows, workshops, and meetups. Prior to version 2.0-M5-2606, the alf.io extension sandbox injects a fully-functional HTTP cli… CWE-22
CWE-73
Path Traversal
 External Control of File Name or Path 		CVE-2026-41412 2026-06-5 01:12 2026-06-3 Show GitHub Exploit DB Packet Storm
2835 6.5 MEDIUM
Network 		- - wire-ios is an iOS client for the Wire secure messaging application. Prior to version 4.16.0, upon receiving a crafted malicious Proteus external message with an encrypted payload that is shorter tha… CWE-20
CWE-191
 Improper Input Validation 
 Integer Underflow (Wrap or Wraparound) 		CVE-2026-35049 2026-06-5 01:12 2026-06-3 Show GitHub Exploit DB Packet Storm
2836 8.5 HIGH
Network 		- - Medplum before 5.1.14 contains a server-side request forgery vulnerability in the subscription worker that allows authenticated users to perform unauthorized internal network requests by creating FHI… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-49120 2026-06-5 01:10 2026-06-3 Show GitHub Exploit DB Packet Storm
2837 8.8 HIGH
Adjacent 		- - BrowserStack Runner through 0.9.5 contains a remote code execution vulnerability in the /_log HTTP handler that allows unauthenticated network-adjacent attackers to execute arbitrary code by submitti… CWE-94
Code Injection 		CVE-2026-49143 2026-06-5 01:10 2026-06-3 Show GitHub Exploit DB Packet Storm
2838 6.5 MEDIUM
Adjacent 		- - BrowserStack Runner through 0.9.5 contains a path traversal vulnerability in the _default HTTP handler in lib/server.js that allows unauthenticated network-adjacent attackers to read arbitrary files.… CWE-22
Path Traversal 		CVE-2026-49144 2026-06-5 01:10 2026-06-3 Show GitHub Exploit DB Packet Storm
2839 5.9 MEDIUM
Network 		- - QloApps through 1.7.0, fixed in commit 64e9722, contains a weak cryptographic algorithm vulnerability that allows attackers to compromise user credentials by exploiting the use of MD5 for password ha… CWE-916
 Use of Password Hash With Insufficient Computational Effort 		CVE-2026-25861 2026-06-5 01:10 2026-06-3 Show GitHub Exploit DB Packet Storm
2840 3.6 LOW
Local 		- - A vulnerability has been found in mlrun up to 1.12.0-rc3. This impacts the function mlrun.utils.helpers.calculate_dataframe_hash of the file mlrun/utils/helpers.py of the component DataFrame Hash Han… CWE-327
CWE-328
 Use of a Broken or Risky Cryptographic Algorithm
 Use of Weak Hash 		CVE-2026-10766 2026-06-5 01:10 2026-06-4 Show GitHub Exploit DB Packet Storm