Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 28, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
260811	9.3	危険	アップルアドビシステムズサン・マイクロシステムズレッドハット	-	Adobe Flash Player および Adobe AIR における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-3796	2010-02-9 12:35	2009-12-8	Show	GitHub Exploit DB Packet Storm

260812	9.3	危険	アップルアドビシステムズサン・マイクロシステムズレッドハット	-	Adobe Flash Player および Adobe AIR におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-3794	2010-02-9 12:35	2009-12-8	Show	GitHub Exploit DB Packet Storm

260813	10	危険	IBM	-	IBM Lotus Domino Web Access におけるリンク処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2010-0276	2010-02-8 13:19	2010-01-7	Show	GitHub Exploit DB Packet Storm

260814	10	危険	IBM	-	IBM Lotus Domino Web Access における脆弱性	CWE-noinfo 情報不足	CVE-2009-4594	2010-02-8 13:19	2009-06-5	Show	GitHub Exploit DB Packet Storm

260815	10	危険	IBM	-	IBM Lotus Domino Web Access の Ultra-light Mode における status-alerts URL の処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2010-0275	2010-02-8 13:18	2010-01-7	Show	GitHub Exploit DB Packet Storm

260816	10	危険	IBM	-	IBM Lotus Domino Web Access の Ultra-light Mode における脆弱性	CWE-noinfo 情報不足	CVE-2010-0274	2010-02-8 13:17	2010-01-7	Show	GitHub Exploit DB Packet Storm

260817	3.6	注意	サイバートラスト株式会社 D-Bus レッドハット	-	D-Bus の _dbus_validate_signature_with_reason 関数におけるシグネチャを偽装される脆弱性	CWE-20 不適切な入力確認	CVE-2009-1189	2010-02-5 14:22	2009-04-27	Show	GitHub Exploit DB Packet Storm

260818	6.5	警告	シスコシステムズ	-	Cisco ASA のデフォルト設定におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-4455	2010-02-4 11:20	2009-12-17	Show	GitHub Exploit DB Packet Storm

260819	4	警告	IBM	-	IBM DB2 におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2009-4439	2010-02-4 11:20	2009-12-28	Show	GitHub Exploit DB Packet Storm

260820	6.5	警告	IBM	-	IBM DB2 におけるデータを使用される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-4438	2010-02-4 11:19	2009-12-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 29, 2026, 4:19 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
3181	-		-	-	Quest Bot is an opensource Discord Bot. Prior to version 1.1.6, a moderator with the relevant Discord permission bit can use the bot to moderate users above them in the Discord role hierarchy, as lon…	CWE-862 Missing Authorization	CVE-2026-47197	2026-06-13 13:17	2026-06-12	Show	GitHub Exploit DB Packet Storm

3182	-		-	-	vm2 is an open source vm/sandbox for Node.js. Prior to version 3.11.4, NodeVM exposes some process-wide observability builtins when they are allowed through require.builtin. The diagnostics_channel, …	CWE-668 Exposure of Resource to Wrong Sphere	CVE-2026-47141	2026-06-13 13:17	2026-06-13	Show	GitHub Exploit DB Packet Storm

3183	10.0	CRITICAL Network	-	-	vm2 is an open source vm/sandbox for Node.js. Prior to version 3.11.4, by combining Buffer.call.call({}.__lookupGetter__, Buffer, "__proto__"), Buffer.call.call({}.__lookupSetter__, Buffer, "__proto_…	CWE-913 Improper Control of Dynamically-Managed Code Resources	CVE-2026-47131	2026-06-13 13:17	2026-06-13	Show	GitHub Exploit DB Packet Storm

3184	-		-	-	Quest Bot is an opensource modern Discord Bot built for moderation, utilities and support. Prior to version 1.0.5, the latest release suppresses mentions in several moderation commands, but /unban an…	CWE-116 Improper Encoding or Escaping of Output	CVE-2026-47188	2026-06-13 12:16	2026-06-12	Show	GitHub Exploit DB Packet Storm

3185	-		-	-	Quest Bot is an opensource modern Discord Bot built for moderation, utilities and support. Prior to version 1.0.4, several moderation commands echo user-controlled reason text in public bot replies w…	CWE-116 Improper Encoding or Escaping of Output	CVE-2026-47175	2026-06-13 12:16	2026-06-12	Show	GitHub Exploit DB Packet Storm

3186	8.6	HIGH Network	axios	axios	Axios is a promise based HTTP client for the browser and Node.js. Prior to 0.32.0 and 1.16.0, Axios does not normalise IPv4-mapped IPv6 addresses. When NO_PROXY lists an IPv4 address such as 127.0.0.…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-44492	2026-06-13 12:16	2026-06-12	Show	GitHub Exploit DB Packet Storm

3187	7.5	HIGH Network	axios	axios	Axios is a promise based HTTP client for the browser and Node.js. Prior to 0.32.0 and 1.16.0, Axios’ Node.js HTTP adapter can leak proxy credentials to a redirect target in affected versions. When a …	CWE-200 Information Exposure	CVE-2026-44486	2026-06-13 12:16	2026-06-12	Show	GitHub Exploit DB Packet Storm

3188	8.8	HIGH Network	vim	vim	Vim is an open source, command line text editor. Prior to version 9.2.0495, a Vimscript code injection vulnerability exists in s:NetrwBookHistSave() in the netrw plugin (runtime/pack/dist/opt/netrw/a…	CWE-74 CWE-94 Injection Code Injection	CVE-2026-47162	2026-06-13 10:04	2026-06-12	Show	GitHub Exploit DB Packet Storm

3189	7.5	HIGH Network	apache	cxf	There is no restriction on the amount of attachment headers that a message can contain when being deserialized by Apache CXF, which can lead to uncontrolled resource consumption or a denial of servic…	CWE-400 Uncontrolled Resource Consumption	CVE-2026-50645	2026-06-13 10:00	2026-06-12	Show	GitHub Exploit DB Packet Storm

3190	8.3	HIGH Adjacent	google	chrome	Use after free in Cast in Google Chrome prior to 149.0.7827.115 allowed an attacker on the local network segment to potentially perform a sandbox escape via malicious network traffic. (Chromium secur…	CWE-416 Use After Free	CVE-2026-12014	2026-06-13 09:54	2026-06-12	Show	GitHub Exploit DB Packet Storm