Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
247361	4.3	警告	campware.org	-	Campsite の admin-files/templates/list_dir.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-2181	2012-06-26 16:10	2009-06-23	Show	GitHub Exploit DB Packet Storm

247362	6.8	警告	fuzzylime	-	fuzzylime (cms) の code/display.php における任意のファイルを上書きされる脆弱性	CWE-22 パス・トラバーサル	CVE-2009-2177	2012-06-26 16:10	2009-06-23	Show	GitHub Exploit DB Packet Storm

247363	7.5	危険	fuzzylime	-	fuzzylime (cms) におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-2176	2012-06-26 16:10	2009-06-23	Show	GitHub Exploit DB Packet Storm

247364	3.5	注意	gameis	-	Carom3D の LAN ゲーム機能におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2009-2173	2012-06-26 16:10	2009-06-23	Show	GitHub Exploit DB Packet Storm

247365	4.3	警告	dream	-	Radio and TV Player addon for vBulletin の forum/radioandtv.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-2172	2012-06-26 16:10	2009-06-23	Show	GitHub Exploit DB Packet Storm

247366	9.3	危険	EdrawSoft	-	Edraw PDF Viewer コンポーネントの pdfviewer.ocx における任意のファイルを作成される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2169	2012-06-26 16:10	2009-06-22	Show	GitHub Exploit DB Packet Storm

247367	7.5	危険	egyplus	-	EgyPlus 7ammel の cpanel/login.php における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2009-2168	2012-06-26 16:10	2009-06-22	Show	GitHub Exploit DB Packet Storm

247368	6.8	警告	egyplus	-	EgyPlus 7ammel の cpanel/login.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-2167	2012-06-26 16:10	2009-06-22	Show	GitHub Exploit DB Packet Storm

247369	5	警告	adaptweb	-	AdaptWeb の index.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-2151	2012-06-26 16:10	2009-06-22	Show	GitHub Exploit DB Packet Storm

247370	6.8	警告	campusvirtualcomputrade	-	Campus Virtual-LMS におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2009-2150	2012-06-26 16:10	2009-06-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 27, 2026, 4:35 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
201	7.5	HIGH Network	-	-	Johnson & Johnson Campus Recruiting before 2025-10-31 allows viewing of data provided by recruited students, and notes entered about students by interviewers. New	CWE-602 Client-Side Enforcement of Server-Side Security	CVE-2026-57912	2026-06-27 01:17	2026-06-26	Show	GitHub Exploit DB Packet Storm

202	7.5	HIGH Network	-	-	Johnson & Johnson Audit Tracking Management System (ATMS) before 2026-04-21 allows viewing of meeting minutes and transcripts. New	CWE-602 Client-Side Enforcement of Server-Side Security	CVE-2026-57913	2026-06-27 01:17	2026-06-26	Show	GitHub Exploit DB Packet Storm

203	6.8	MEDIUM Network	-	-	Mattermost Plugins versions <=11.6 10.18.11 11.3.6 11.6.5.0 fail to sanitize error responses from the OpenAI API before logging, which allows a user with access to server logs or support packets to o… New	CWE-532 Inclusion of Sensitive Information in Log Files	CVE-2026-9699	2026-06-27 01:16	2026-06-27	Show	GitHub Exploit DB Packet Storm

204	-		-	-	Unauthenticated remote information disclosure vulnerability in Ollama's model quantization engine allows an attacker to read and exfiltrate the server's heap memory, potentially leading to sensitive … New	-	CVE-2026-5757	2026-06-27 01:16	2026-06-27	Show	GitHub Exploit DB Packet Storm

205	9.8	CRITICAL Network	-	-	An unauthenticated stack-based buffer overflow vulnerability exists in thttpd in GeoVision GV-LPC2011 and GV-LPC2211 V1.12 and earlier. The vulnerability is caused by insufficient bounds checking whe… New	CWE-121 Stack-based Buffer Overflow	CVE-2026-57878	2026-06-27 01:16	2026-06-26	Show	GitHub Exploit DB Packet Storm

206	8.6	HIGH Network	-	-	An unauthenticated format string vulnerability exists in vlsvr in GeoVision GV-LPC2011 and GV-LPC2211 V1.12 and earlier. The vulnerability is caused by improper handling of externally controlled inpu… New	CWE-134 Use of Externally-Controlled Format String	CVE-2026-57877	2026-06-27 01:16	2026-06-26	Show	GitHub Exploit DB Packet Storm

207	7.5	HIGH Network	-	-	An unauthenticated out-of-bounds write vulnerability exists in onvif.cgi in GeoVision GV-LPC2011 and GV-LPC2211 V1.12 and earlier. The vulnerability is caused by insufficient bounds checking when pro… New	CWE-787 Out-of-bounds Write	CVE-2026-57876	2026-06-27 01:16	2026-06-26	Show	GitHub Exploit DB Packet Storm

208	7.5	HIGH Network	-	-	An unauthenticated NULL pointer dereference vulnerability exists in the HTTP request parsing logic of multiple CGI components in GeoVision GV-LPC2011 and GV-LPC2211 V1.12 and earlier. The vulnerabili… New	CWE-476 NULL Pointer Dereference	CVE-2026-57875	2026-06-27 01:16	2026-06-26	Show	GitHub Exploit DB Packet Storm

209	7.5	HIGH Network	-	-	An unauthenticated buffer overflow vulnerability exists in IEEE8021x_upload.cgi in GeoVision GV-LPC2011 and GV-LPC2211 V1.12 and earlier. The vulnerability is caused by insufficient bounds checking w… New	CWE-120 Classic Buffer Overflow	CVE-2026-57874	2026-06-27 01:16	2026-06-26	Show	GitHub Exploit DB Packet Storm

210	7.5	HIGH Network	-	-	An unauthenticated NULL pointer dereference vulnerability exists in IEEE8021x_upload.cgi in GeoVision GV-LPC2011 and GV-LPC2211 V1.12 and earlier. The vulnerability is caused by improper validation o… New	CWE-476 NULL Pointer Dereference	CVE-2026-57873	2026-06-27 01:16	2026-06-26	Show	GitHub Exploit DB Packet Storm