Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
247371	4.3	警告	campusvirtualcomputrade	-	Campus Virtual-LMS におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-2149	2012-06-26 16:10	2009-06-22	Show	GitHub Exploit DB Packet Storm

247372	7.5	危険	campusvirtualcomputrade	-	Campus Virtual-LMS の news/index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-2148	2012-06-26 16:10	2009-06-22	Show	GitHub Exploit DB Packet Storm

247373	7.5	危険	WordPress.org firestats edgewall	-	WordPress の FireStats プラグインにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-2144	2012-06-26 16:10	2009-06-13	Show	GitHub Exploit DB Packet Storm

247374	7.5	危険	firestats WordPress.org	-	WordPress の FireStats プラグインの firestats-wordpress.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2009-2143	2012-06-26 16:10	2009-06-13	Show	GitHub Exploit DB Packet Storm

247375	9.3	危険	go-oo	-	Go-oo の cppcanvas/source/mtfrenderer/emfplus.cxx におけるヒープベースの脆弱性	CWE-119 バッファエラー	CVE-2009-2140	2012-06-26 16:10	2009-09-21	Show	GitHub Exploit DB Packet Storm

247376	6.8	警告	4homepages	-	4images の global.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-2132	2012-06-26 16:10	2009-06-19	Show	GitHub Exploit DB Packet Storm

247377	3.5	注意	4homepages	-	4images におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-2131	2012-06-26 16:10	2009-06-19	Show	GitHub Exploit DB Packet Storm

247378	5	警告	elvinbts	-	Elvin における inc/ 配下の login.ei の PHP ソースコードを読まれる脆弱性	CWE-200 情報漏えい	CVE-2009-2130	2012-06-26 16:10	2009-06-19	Show	GitHub Exploit DB Packet Storm

247379	6.8	警告	elvinbts	-	Elvin の login.php におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2009-2129	2012-06-26 16:10	2009-06-19	Show	GitHub Exploit DB Packet Storm

247380	7.5	危険	elvinbts	-	Elvin の close_bug.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-2128	2012-06-26 16:10	2009-06-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 27, 2026, 4:35 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
201	7.5	HIGH Network	-	-	Johnson & Johnson Campus Recruiting before 2025-10-31 allows viewing of data provided by recruited students, and notes entered about students by interviewers. New	CWE-602 Client-Side Enforcement of Server-Side Security	CVE-2026-57912	2026-06-27 01:17	2026-06-26	Show	GitHub Exploit DB Packet Storm

202	7.5	HIGH Network	-	-	Johnson & Johnson Audit Tracking Management System (ATMS) before 2026-04-21 allows viewing of meeting minutes and transcripts. New	CWE-602 Client-Side Enforcement of Server-Side Security	CVE-2026-57913	2026-06-27 01:17	2026-06-26	Show	GitHub Exploit DB Packet Storm

203	6.8	MEDIUM Network	-	-	Mattermost Plugins versions <=11.6 10.18.11 11.3.6 11.6.5.0 fail to sanitize error responses from the OpenAI API before logging, which allows a user with access to server logs or support packets to o… New	CWE-532 Inclusion of Sensitive Information in Log Files	CVE-2026-9699	2026-06-27 01:16	2026-06-27	Show	GitHub Exploit DB Packet Storm

204	-		-	-	Unauthenticated remote information disclosure vulnerability in Ollama's model quantization engine allows an attacker to read and exfiltrate the server's heap memory, potentially leading to sensitive … New	-	CVE-2026-5757	2026-06-27 01:16	2026-06-27	Show	GitHub Exploit DB Packet Storm

205	9.8	CRITICAL Network	-	-	An unauthenticated stack-based buffer overflow vulnerability exists in thttpd in GeoVision GV-LPC2011 and GV-LPC2211 V1.12 and earlier. The vulnerability is caused by insufficient bounds checking whe… New	CWE-121 Stack-based Buffer Overflow	CVE-2026-57878	2026-06-27 01:16	2026-06-26	Show	GitHub Exploit DB Packet Storm

206	8.6	HIGH Network	-	-	An unauthenticated format string vulnerability exists in vlsvr in GeoVision GV-LPC2011 and GV-LPC2211 V1.12 and earlier. The vulnerability is caused by improper handling of externally controlled inpu… New	CWE-134 Use of Externally-Controlled Format String	CVE-2026-57877	2026-06-27 01:16	2026-06-26	Show	GitHub Exploit DB Packet Storm

207	7.5	HIGH Network	-	-	An unauthenticated out-of-bounds write vulnerability exists in onvif.cgi in GeoVision GV-LPC2011 and GV-LPC2211 V1.12 and earlier. The vulnerability is caused by insufficient bounds checking when pro… New	CWE-787 Out-of-bounds Write	CVE-2026-57876	2026-06-27 01:16	2026-06-26	Show	GitHub Exploit DB Packet Storm

208	7.5	HIGH Network	-	-	An unauthenticated NULL pointer dereference vulnerability exists in the HTTP request parsing logic of multiple CGI components in GeoVision GV-LPC2011 and GV-LPC2211 V1.12 and earlier. The vulnerabili… New	CWE-476 NULL Pointer Dereference	CVE-2026-57875	2026-06-27 01:16	2026-06-26	Show	GitHub Exploit DB Packet Storm

209	7.5	HIGH Network	-	-	An unauthenticated buffer overflow vulnerability exists in IEEE8021x_upload.cgi in GeoVision GV-LPC2011 and GV-LPC2211 V1.12 and earlier. The vulnerability is caused by insufficient bounds checking w… New	CWE-120 Classic Buffer Overflow	CVE-2026-57874	2026-06-27 01:16	2026-06-26	Show	GitHub Exploit DB Packet Storm

210	7.5	HIGH Network	-	-	An unauthenticated NULL pointer dereference vulnerability exists in IEEE8021x_upload.cgi in GeoVision GV-LPC2011 and GV-LPC2211 V1.12 and earlier. The vulnerability is caused by improper validation o… New	CWE-476 NULL Pointer Dereference	CVE-2026-57873	2026-06-27 01:16	2026-06-26	Show	GitHub Exploit DB Packet Storm