Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 24, 2026, 12:02 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2521	8.1	重要 Network	Zabbix	Zabbix	Zabbixにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-23925	2026-06-8 12:32	2026-03-6	Show	GitHub Exploit DB Packet Storm

2522	5.3	警告 Network	OpenStack	Openstack Keystone	OpenStackのOpenstack Keystoneにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-33551	2026-06-8 12:32	2026-04-10	Show	GitHub Exploit DB Packet Storm

2523	6.5	警告 Network	Mattermost, Inc.	Mattermost Desktop	Mattermost, Inc.のMattermost Desktopにおけるカスタム URL スキームのハンドラの不適切な認可に関する脆弱性	CWE-939 カスタム URL スキームのハンドラの不適切な認可	CVE-2026-3471	2026-06-8 12:32	2026-05-18	Show	GitHub Exploit DB Packet Storm

2524	7.3	重要 Local	AIOHTTP	AIOHTTP	AIOHTTPにおける信頼できないデータのデシリアライゼーションに関する脆弱性	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2026-34993	2026-06-8 12:31	2026-06-2	Show	GitHub Exploit DB Packet Storm

2525	3.1	低 Network	Django Software Foundation	Django	Django Software FoundationのDjangoにおける重要な情報を含むキャッシュの使用に関する脆弱性	CWE-524 重要な情報を含むキャッシュの使用	CVE-2026-35193	2026-06-8 12:31	2026-06-3	Show	GitHub Exploit DB Packet Storm

2526	6.1	警告 Network	citeum	opencti	citeumのopenctiにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-35212	2026-06-8 12:31	2026-06-2	Show	GitHub Exploit DB Packet Storm

2527	8.2	重要 Network	Mosaic5G	Flexric	Mosaic5GのFlexricにおけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-37234	2026-06-8 12:31	2026-06-1	Show	GitHub Exploit DB Packet Storm

2528	7.8	重要 Local	radare	radare2	radareのradare2におけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-40527	2026-06-8 12:31	2026-04-17	Show	GitHub Exploit DB Packet Storm

2529	7.5	重要 Network	quic-go project	quic-go	quic-go projectのquic-goにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-40898	2026-06-8 12:31	2026-06-4	Show	GitHub Exploit DB Packet Storm

2530	6.5	警告 Network	VMware	Spring Cloud Function	VMwareのSpring Cloud Functionにおける再帰制御に関する脆弱性	CWE-674 不適切な再帰制御	CVE-2026-40989	2026-06-8 12:31	2026-06-1	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 24, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
306061	-	hp	managed_printing_administration	Directory traversal vulnerability in the MPAUploader.Uploader.1.UploadFiles method in HP Managed Printing Administration before 2.6.4 allows remote attackers to create arbitrary files via crafted for…	CWE-22 Path Traversal	CVE-2011-4166	2024-11-21 10:31	2011-12-27	Show	GitHub Exploit DB Packet Storm

306062	-	7t	igss	Buffer overflow in 7-Technologies (7T) Interactive Graphical SCADA System (IGSS) 9.0.0.11200 allows remote attackers to cause a denial of service via a crafted packet to TCP port 12401.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2011-4050	2024-11-21 10:31	2011-12-27	Show	GitHub Exploit DB Packet Storm

306063	-	wuzly	wuzly	The administration functionality in Wuzly 2.0 allows remote attackers to bypass authentication by setting the dXNlcm5hbWU cookie.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2011-3839	2024-11-21 10:31	2011-12-25	Show	GitHub Exploit DB Packet Storm

306064	-	wuzly	wuzly	Multiple SQL injection vulnerabilities in Wuzly 2.0 allow remote attackers to execute arbitrary SQL commands via the (1) u parameter to fp.php, (2) epage parameter to newpage.php, (3) epost parameter…	CWE-89 SQL Injection	CVE-2011-3838	2024-11-21 10:31	2011-12-25	Show	GitHub Exploit DB Packet Storm

306065	-	wuzly	wuzly	Directory traversal vulnerability in blog_system/data_functions.php in Wuzly 2.0 allows remote attackers to read arbitrary files via a .. (dot dot) in the preview parameter to index.php.	CWE-22 Path Traversal	CVE-2011-3837	2024-11-21 10:31	2011-12-25	Show	GitHub Exploit DB Packet Storm

306066	-	wuzly	wuzly	Multiple cross-site request forgery (CSRF) vulnerabilities in Wuzly 2.0 allow remote attackers to hijack the authentication of administrators for requests that (1) add an administrator, (2) perform c…	CWE-352 Origin Validation Error	CVE-2011-3836	2024-11-21 10:31	2011-12-25	Show	GitHub Exploit DB Packet Storm

306067	-	wuzly	wuzly	Multiple cross-site scripting (XSS) vulnerabilities in Wuzly 2.0 allow remote attackers to inject arbitrary web script or HTML via the Referer header to (1) admin/login.php and (2) admin/404.php; the…	CWE-79 Cross-site Scripting	CVE-2011-3835	2024-11-21 10:31	2011-12-25	Show	GitHub Exploit DB Packet Storm

306068	-	pukiwiki	pukiwiki_plus\!	Cross-site scripting (XSS) vulnerability in plugin/comment.inc.php in PukiWiki Plus! 1.4.7plus-u2-i18n and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vecto…	CWE-79 Cross-site Scripting	CVE-2011-3990	2024-11-21 10:31	2011-12-23	Show	GitHub Exploit DB Packet Storm

306069	-	sielcosistemi	winlog_lite winlog_pro	Buffer overflow in Sielco Sistemi Winlog PRO before 2.07.09 and Winlog Lite before 2.07.09 allows user-assisted remote attackers to execute arbitrary code via invalid data in unspecified fields of a …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2011-4037	2024-11-21 10:31	2011-12-23	Show	GitHub Exploit DB Packet Storm

306070	-	rsa	securid	Untrusted search path vulnerability in EMC RSA SecurID Software Token 4.1 before 4.1.1 allows local users to gain privileges via a Trojan horse DLL in the current working directory, as demonstrated b…	NVD-CWE-Other	CVE-2011-4141	2024-11-21 10:31	2011-12-17	Show	GitHub Exploit DB Packet Storm