Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 14, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
253101 7.6 危険 Alcatel-Lucent - Alcatel-Lucent OmniTouch Contact Center の CCAgent オプションのディフォルト設定における Contact Center 操作を監視または再設定される脆弱性 CWE-16
環境設定 		CVE-2010-3279 2012-03-27 18:42 2010-09-20 Show GitHub Exploit DB Packet Storm
253102 2.1 注意 VMware - VMware Workstation および VMware Player のインストーラにおける Web スクリプトまたは HTML の想定外の解釈が発生する脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-3277 2012-03-27 18:42 2010-09-23 Show GitHub Exploit DB Packet Storm
253103 9.3 危険 VideoLAN - VideoLAN VLC Media Player の libdirectx_plugin.dll における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-3276 2012-03-27 18:42 2011-03-28 Show GitHub Exploit DB Packet Storm
253104 9.3 危険 VideoLAN - VideoLAN VLC Media Player の libdirectx_plugin.dll における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-3275 2012-03-27 18:42 2011-03-28 Show GitHub Exploit DB Packet Storm
253105 4.3 警告 Zoho Corporation - ZOHO ManageEngine ADSelfService Plus の Employee Search Engine におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-3274 2012-03-27 18:42 2011-02-17 Show GitHub Exploit DB Packet Storm
253106 5 警告 Zoho Corporation - ZOHO ManageEngine ADSelfService Plus における任意のユーザアカウントへのアクセスを取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-3273 2012-03-27 18:42 2011-02-17 Show GitHub Exploit DB Packet Storm
253107 4.3 警告 Zoho Corporation - ZOHO ManageEngine ADSelfService Plus の security-questions 実装における任意のユーザアカウントへのアクセスを取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-3272 2012-03-27 18:42 2011-02-17 Show GitHub Exploit DB Packet Storm
253108 6.8 警告 IBM - IBM WAS の Integrated Solutions Console におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2010-3271 2012-03-27 18:42 2011-07-18 Show GitHub Exploit DB Packet Storm
253109 6.8 警告 シスコシステムズ - Cisco WebEx Meeting Center T27LB におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-3270 2012-03-27 18:42 2011-02-1 Show GitHub Exploit DB Packet Storm
253110 9.3 危険 シスコシステムズ - Cisco WRF および ARF Player T27LB におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-3269 2012-03-27 18:42 2011-02-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 15, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
131 6.5 MEDIUM
Network 		- - Nezha Monitoring is a self-hostable, lightweight, servers and websites monitoring and O&M tool. From version 2.0.14 to before version 2.1.0, authenticated users can claim the dashboard Host through N… New CWE-284
Improper Access Control 		CVE-2026-53520 2026-06-13 07:16 2026-06-13 Show GitHub Exploit DB Packet Storm
132 9.1 CRITICAL
Network 		- - Nezha Monitoring is a self-hostable, lightweight, servers and websites monitoring and O&M tool. Prior to version 2.0.13, fallbackToFrontend in the dashboard's NoRoute handler treats any URL whose raw… New CWE-22
Path Traversal 		CVE-2026-53519 2026-06-13 07:16 2026-06-13 Show GitHub Exploit DB Packet Storm
133 5.3 MEDIUM
Network 		- - Nezha Monitoring is a self-hostable, lightweight, servers and websites monitoring and O&M tool. From version 2.0.0 to before version 2.0.14, private services (`EnableShowInService: false`) are enumer… New CWE-200
CWE-285
CWE-863
Information Exposure
Improper Authorization
 Incorrect Authorization 		CVE-2026-49397 2026-06-13 07:16 2026-06-13 Show GitHub Exploit DB Packet Storm
134 7.1 HIGH
Network 		- - Nezha Monitoring is a self-hostable, lightweight, servers and websites monitoring and O&M tool. From version 0.20.0 to before version 2.0.12, authenticated agents can forge service-monitor results fo… New CWE-862
 Missing Authorization 		CVE-2026-48119 2026-06-13 07:16 2026-06-13 Show GitHub Exploit DB Packet Storm
135 6.4 MEDIUM
Network 		- - Nezha Monitoring is a self-hostable, lightweight, servers and websites monitoring and O&M tool. From version 0.20.0 to before version 2.0.10, an authenticated Nezha dashboard user can create or updat… New CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-47268 2026-06-13 07:16 2026-06-13 Show GitHub Exploit DB Packet Storm
136 6.5 MEDIUM
Network 		- - Nezha Monitoring is a self-hostable, lightweight, servers and websites monitoring and O&M tool. From version 1.4.0 to before version 2.0.9, any authenticated non-admin member can connect to the serve… New CWE-200
Information Exposure 		CVE-2026-47124 2026-06-13 07:16 2026-06-13 Show GitHub Exploit DB Packet Storm
137 7.1 HIGH
Network 		- - Nezha Monitoring is a self-hostable, lightweight, servers and websites monitoring and O&M tool. From version 1.4.0 to before version 2.0.8, a RoleMember can fire other users' cron tasks via AlertRule… New CWE-862
CWE-863
 Missing Authorization
 Incorrect Authorization 		CVE-2026-47120 2026-06-13 07:16 2026-06-13 Show GitHub Exploit DB Packet Storm
138 9.9 CRITICAL
Network 		- - Nezha Monitoring is a self-hostable, lightweight, servers and websites monitoring and O&M tool. From version 1.4.0 to before version 2.0.8, a RoleMember user can create a scheduled cron task with Cov… New CWE-78
CWE-269
CWE-862
OS Command 
 Improper Privilege Management
 Missing Authorization 		CVE-2026-46716 2026-06-13 07:16 2026-06-13 Show GitHub Exploit DB Packet Storm
139 - - - Software installed and run as a non-privileged user may conduct GPU system calls to write to arbitrary freed physical pages. Physical memory allocated and freed, without the deferred free mechanis… New CWE-416
 Use After Free 		CVE-2026-41158 2026-06-13 07:16 2026-06-13 Show GitHub Exploit DB Packet Storm
140 - - - A web page that contains unusual WebGPU content loaded into the GPU GLES render process and can trigger an out-of-bound write in the GPU user-space driver, leading to memory corruption and possible b… New CWE-787
 Out-of-bounds Write 		CVE-2026-41157 2026-06-13 07:16 2026-06-13 Show GitHub Exploit DB Packet Storm