Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 9, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
246491 4.3 警告 dt centrepiece - DT Centrepiece の search.asp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2776 2012-06-26 16:02 2008-06-19 Show GitHub Exploit DB Packet Storm
246492 7.5 危険 dt centrepiece - DT Centrepiece の search.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2775 2012-06-26 16:02 2008-06-19 Show GitHub Exploit DB Packet Storm
246493 7.5 危険 cartkeeper - CartKeeper CKGold Shopping Cart の item.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2774 2012-06-26 16:02 2008-06-19 Show GitHub Exploit DB Packet Storm
246494 6.8 警告 efiction - eFiction の toplists.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2754 2012-06-26 16:02 2008-06-18 Show GitHub Exploit DB Packet Storm
246495 7.5 危険 gryphon - Gryphon gllcTS2 の login.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2746 2012-06-26 16:02 2008-06-17 Show GitHub Exploit DB Packet Storm
246496 9.3 危険 black ice - Black Ice Software Annotation プラグイン の BiAnno ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-2745 2012-06-26 16:02 2008-06-17 Show GitHub Exploit DB Packet Storm
246497 7.5 危険 Achievo - Achievo の mcpuk ファイルエディタにおける任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-2742 2012-06-26 16:02 2008-06-11 Show GitHub Exploit DB Packet Storm
246498 6.5 警告 Apache Software Foundation
TYPO3 Association		 - TYPO3 における設定ファイルをアップロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-2717 2012-06-26 16:02 2008-06-16 Show GitHub Exploit DB Packet Storm
246499 9.3 危険 ESTsoft Japan 株式会社 - ALTools ESTsoft ALFTP の FTP クライアントにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-2702 2012-06-26 16:02 2008-06-13 Show GitHub Exploit DB Packet Storm
246500 4.3 警告 Exiv2 project - Exiv2 におけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2008-2696 2012-06-26 16:02 2008-06-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2071 7.5 HIGH
Network 		opentelemetry ebpf_instrumentation OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard. From version 0.1.0 to before version 0.9.0, malformed MongoDB wire messages can trigger uncaught … CWE-20
CWE-248
CWE-704
 Improper Input Validation 
 Uncaught Exception
 Incorrect Type Conversion or Cast 		CVE-2026-45685 2026-06-4 01:52 2026-06-3 Show GitHub Exploit DB Packet Storm
2072 5.3 MEDIUM
Network 		oracle rest_data_services Vulnerability in Oracle REST Data Services (component: Core). Supported versions that are affected are 24.2.0-26.1.0. Easily exploitable vulnerability allows unauthenticated attacker with network ac… CWE-400
 Uncontrolled Resource Consumption 		CVE-2026-46843 2026-06-4 01:52 2026-05-29 Show GitHub Exploit DB Packet Storm
2073 5.3 MEDIUM
Local 		opentelemetry ebpf_instrumentation OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard. From version 0.7.0 to before version 0.9.0, OBI's log enricher mishandles writev buffers by readi… CWE-126
CWE-787
 Buffer Over-read
 Out-of-bounds Write 		CVE-2026-45684 2026-06-4 01:52 2026-06-3 Show GitHub Exploit DB Packet Storm
2074 3.8 LOW
Local 		opentelemetry ebpf_instrumentation OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard. Prior to version 0.9.0, the Java TLS ioctl probe reads user-controlled ioctl pointers with bpf_pr… CWE-127
CWE-200
 Buffer Under-read
Information Exposure 		CVE-2026-45683 2026-06-4 01:52 2026-06-3 Show GitHub Exploit DB Packet Storm
2075 5.9 MEDIUM
Network 		opentelemetry ebpf_instrumentation OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard. Prior to version 0.9.0, the per-CPU message-buffer fallback path uses a 256-byte backup buffer bu… CWE-125
CWE-130
Out-of-bounds Read
 Improper Handling of Length Parameter Inconsistency 		CVE-2026-45681 2026-06-4 01:52 2026-06-3 Show GitHub Exploit DB Packet Storm
2076 5.5 MEDIUM
Local 		opentelemetry ebpf_instrumentation OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard. Prior to version 0.9.0, the custom CappedConcurrentHashMap introduced for Java TLS state tracking… CWE-401
CWE-770
 Missing Release of Memory after Effective Lifetime
 Allocation of Resources Without Limits or Throttling 		CVE-2026-45682 2026-06-4 01:51 2026-06-3 Show GitHub Exploit DB Packet Storm
2077 4.3 MEDIUM
Network 		mintplexlabs anythingllm AnythingLLM is an application that turns pieces of content into context that any LLM can use as references during chatting. Prior to 1.13.0, an approved mobile device token created in single-user mod… CWE-285
CWE-639
Improper Authorization
 Authorization Bypass Through User-Controlled Key 		CVE-2026-47713 2026-06-4 01:51 2026-05-29 Show GitHub Exploit DB Packet Storm
2078 7.5 HIGH
Network 		opentelemetry ebpf_instrumentation OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard. Prior to version 0.9.0, OBI replays BPF probe hits into histogram observations by looping once pe… CWE-400
CWE-834
 Uncontrolled Resource Consumption
 Excessive Iteration 		CVE-2026-45680 2026-06-4 01:51 2026-06-3 Show GitHub Exploit DB Packet Storm
2079 6.5 MEDIUM
Network 		opentelemetry ebpf_instrumentation OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard. Prior to version 0.9.0, OBI exports raw Redis error text as the span status message. Because Redi… CWE-117
CWE-532
 Improper Output Neutralization for Logs
 Inclusion of Sensitive Information in Log Files 		CVE-2026-45679 2026-06-4 01:50 2026-06-3 Show GitHub Exploit DB Packet Storm
2080 7.5 HIGH
Network 		opentelemetry ebpf_instrumentation OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard. Prior to version 0.9.0, the Postgres protocol parser assumes BIND message payloads contain a vali… CWE-20
CWE-754
 Improper Input Validation 
 Improper Check for Unusual or Exceptional Conditions 		CVE-2026-45678 2026-06-4 01:50 2026-06-3 Show GitHub Exploit DB Packet Storm