Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 25, 2026, 12:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2531	6.1	警告 Network	citeum	opencti	citeumのopenctiにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-35212	2026-06-8 12:31	2026-06-2	Show	GitHub Exploit DB Packet Storm

2532	8.2	重要 Network	Mosaic5G	Flexric	Mosaic5GのFlexricにおけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-37234	2026-06-8 12:31	2026-06-1	Show	GitHub Exploit DB Packet Storm

2533	7.8	重要 Local	radare	radare2	radareのradare2におけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-40527	2026-06-8 12:31	2026-04-17	Show	GitHub Exploit DB Packet Storm

2534	7.5	重要 Network	quic-go project	quic-go	quic-go projectのquic-goにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-40898	2026-06-8 12:31	2026-06-4	Show	GitHub Exploit DB Packet Storm

2535	6.5	警告 Network	VMware	Spring Cloud Function	VMwareのSpring Cloud Functionにおける再帰制御に関する脆弱性	CWE-674 不適切な再帰制御	CVE-2026-40989	2026-06-8 12:31	2026-06-1	Show	GitHub Exploit DB Packet Storm

2536	6.5	警告 Network	VMware	Spring Cloud Function	VMwareのSpring Cloud Functionにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-40990	2026-06-8 12:31	2026-06-1	Show	GitHub Exploit DB Packet Storm

2537	7.5	重要 Network	librechat	librechat	LibreChatにおけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2026-4276	2026-06-8 12:31	2026-03-16	Show	GitHub Exploit DB Packet Storm

2538	4.8	警告 Network	ERLANG	Erlang/OTP	ERLANGのErlang/OTPにおける複数の脆弱性	CWE-295 CWE-296	CVE-2026-42789	2026-06-8 12:31	2026-05-27	Show	GitHub Exploit DB Packet Storm

2539	6.1	警告 Network	Prometheus	Prometheus	Prometheusにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-44903	2026-06-8 12:31	2026-05-26	Show	GitHub Exploit DB Packet Storm

2540	4.3	警告 Network	strawberry	Strawberry GraphQL	strawberryのStrawberry GraphQLにおける複数の脆弱性	CWE-200 CWE-201	CVE-2026-45739	2026-06-8 12:31	2026-06-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 25, 2026, 4:04 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
305991	-	arcinfo	pcvue frontvue plantvue	Integer overflow in an unspecified ActiveX control in SVUIGrd.ocx in ARC Informatique PcVue 6.0 through 10.0, FrontVue, and PlantVue allows remote attackers to execute arbitrary code via a large valu…	CWE-189 Numeric Errors	CVE-2011-4043	2024-11-21 10:31	2012-04-3	Show	GitHub Exploit DB Packet Storm

305992	-	arcinfo	pcvue plantvue frontvue	An unspecified ActiveX control in SVUIGrd.ocx in ARC Informatique PcVue 6.0 through 10.0, FrontVue, and PlantVue allows remote attackers to execute arbitrary code by using a crafted HTML document to …	NVD-CWE-noinfo	CVE-2011-4042	2024-11-21 10:31	2012-04-3	Show	GitHub Exploit DB Packet Storm

305993	-	apple	safari	Use-after-free vulnerability in Apple Safari 5.1.2, when a plug-in with a blocking function is installed, allows user-assisted remote attackers to execute arbitrary code via a crafted web page that i…	CWE-399 Resource Management Errors	CVE-2011-3845	2024-11-21 10:31	2012-03-8	Show	GitHub Exploit DB Packet Storm

305994	-	apple	safari	Apple Safari 5.0.5 does not properly implement the setInterval function, which allows remote attackers to spoof the address bar via a crafted web page.	CWE-20 Improper Input Validation	CVE-2011-3844	2024-11-21 10:31	2012-03-8	Show	GitHub Exploit DB Packet Storm

305995	-	novell	groupwise	The client in Novell GroupWise 8.0x through 8.02HP3 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption and application crash) via a long e-mail add…	CWE-94 Code Injection	CVE-2011-4189	2024-11-21 10:31	2012-03-3	Show	GitHub Exploit DB Packet Storm

305996	-	novell	iprint	Buffer overflow in the GetDriverSettings function in nipplib.dll in Novell iPrint Client before 5.78 on Windows allows remote attackers to execute arbitrary code via a long realm field, a different v…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2011-4187	2024-11-21 10:31	2012-02-21	Show	GitHub Exploit DB Packet Storm

305997	-	novell	iprint	Heap-based buffer overflow in nipplib.dll in Novell iPrint Client before 5.78 on Windows allows remote attackers to execute arbitrary code via a crafted client-file-name parameter in a printer-url, a…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2011-4186	2024-11-21 10:31	2012-02-21	Show	GitHub Exploit DB Packet Storm

305998	-	novell	iprint	The GetPrinterURLList2 method in the ActiveX control in Novell iPrint Client before 5.78 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2011-4185	2024-11-21 10:31	2012-02-21	Show	GitHub Exploit DB Packet Storm

305999	-	earl_miles	views	SQL injection vulnerability in the Views module before 6.x-2.13 for Drupal allows remote attackers to execute arbitrary SQL commands via vectors related to "filters/arguments on certain types of view…	CWE-89 SQL Injection	CVE-2011-4113	2024-11-21 10:31	2012-02-18	Show	GitHub Exploit DB Packet Storm

306000	-	robert_ancell	lightdm	LightDM before 1.0.6 allows local users to change ownership of arbitrary files via a symlink attack on ~/.Xauthority.	CWE-59 Link Following	CVE-2011-4105	2024-11-21 10:31	2012-02-18	Show	GitHub Exploit DB Packet Storm