Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 17, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2731	6.1	警告 Network	SimpleSAMLphp	simplesamlphp-casserver	SimpleSAMLphpのsimplesamlphp-casserverにおけるオープンリダイレクトの脆弱性	CWE-601 オープンリダイレクト	CVE-2025-65954	2026-05-25 10:26	2026-05-18	Show	GitHub Exploit DB Packet Storm

2732	5.3	警告 Network	LupinLin1	JiMeng Web MCP Server	LupinLin1のJiMeng Web MCP Serverにおけるログファイルからの情報漏えいに関する脆弱性	CWE-532 ログファイルからの情報漏えい	CVE-2025-70040	2026-05-25 10:25	2026-03-9	Show	GitHub Exploit DB Packet Storm

2733	5.4	警告 Network	ERLANG	Erlang/ssh Erlang/OTP	ERLANGのErlang/OTP等の複数製品におけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-23942	2026-05-25 10:25	2026-03-13	Show	GitHub Exploit DB Packet Storm

2734	5.3	警告 Network	ERLANG	Erlang/ssh Erlang/OTP	ERLANGのErlang/OTP等の複数製品における高圧縮データの処理 (データ増幅)に関する脆弱性	CWE-409 高圧縮データの不適切な処理 (データ増幅)	CVE-2026-23943	2026-05-25 10:25	2026-03-13	Show	GitHub Exploit DB Packet Storm

2735	7.8	重要 Local	Uderzo Software	SpaceSniffer	Uderzo SoftwareのSpaceSnifferにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-121 スタックオーバーフロー	CVE-2026-26738	2026-05-25 10:25	2026-03-10	Show	GitHub Exploit DB Packet Storm

2736	9.8	緊急 Network	zlib	zlib	Ruby-lang.orgのZlibにおける複数の脆弱性	CWE-120 CWE-131	CVE-2026-27820	2026-05-25 10:25	2026-04-16	Show	GitHub Exploit DB Packet Storm

2737	7.8	重要 Local	Louis Pilfold	Gleam	Louis PilfoldのGleamにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-32146	2026-05-25 10:25	2026-04-11	Show	GitHub Exploit DB Packet Storm

2738	4.3	警告 Network	ERLANG	Erlang/ssh Erlang/OTP	ERLANGのErlang/OTP等の複数製品におけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-32147	2026-05-25 10:25	2026-04-21	Show	GitHub Exploit DB Packet Storm

2739	7.8	重要 Local	Elixir-ecto	Postgrex	Elixir-ectoのPostgrexにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2026-32687	2026-05-25 10:25	2026-05-12	Show	GitHub Exploit DB Packet Storm

2740	7.5	重要 Network	マイクロソフト	go-ntlmssp	マイクロソフトのgo-ntlmsspにおける整数オーバーフローの脆弱性	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2026-32952	2026-05-25 10:25	2026-04-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 17, 2026, 4:19 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
306761	7.2	HIGH Network	websitebaker	websitebaker	An Arbitrary File Upload vulnerability exists in admin/media/upload.php in WebsiteBaker 2.8.1 and earlier due to a failure to restrict uploaded files with .htaccess, .php4, .php5, and .phtl extension…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2011-2933	2024-11-21 10:29	2020-01-15	Show	GitHub Exploit DB Packet Storm

306762	9.8	CRITICAL Network	jcow	jcow_cms	A Code Execution vulnerability exists the attachment parameter to index.php in Jcow CMS 4.x to 4.2 and 5.2 to 5.2.	CWE-20 Improper Input Validation	CVE-2011-3203	2024-11-21 10:29	2020-01-15	Show	GitHub Exploit DB Packet Storm

306763	5.5	MEDIUM Local	linuxfoundation debian fedoraproject	foomatic-filters debian_linux fedora	foomatic-rip filter v4.0.12 and prior used insecurely creates temporary files for storage of PostScript data by rendering the data when the debug mode was enabled. This flaw may be exploited by a loc…	CWE-59 Link Following	CVE-2011-2924	2024-11-21 10:29	2019-11-20	Show	GitHub Exploit DB Packet Storm

306764	5.5	MEDIUM Local	linuxfoundation debian	foomatic-filters debian_linux	foomatic-rip filter, all versions, used insecurely creates temporary files for storage of PostScript data by rendering the data when the debug mode was enabled. This flaw may be exploited by a local …	CWE-59 Link Following	CVE-2011-2923	2024-11-21 10:29	2019-11-20	Show	GitHub Exploit DB Packet Storm

306765	7.8	HIGH Local	ktsuss_project	ktsuss	ktsuss versions 1.4 and prior spawns the GTK interface to run as root. This can allow a local attacker to escalate privileges to root and use the "GTK_MODULES" environment variable to possibly execut…	CWE-20 Improper Input Validation	CVE-2011-2922	2024-11-21 10:29	2019-11-20	Show	GitHub Exploit DB Packet Storm

306766	9.8	CRITICAL Network	ktsuss_project	ktsuss	ktsuss versions 1.4 and prior has the uid set to root and does not drop privileges prior to executing user specified commands, which can result in command execution with root privileges.	CWE-273 Improper Check for Dropped Privileges	CVE-2011-2921	2024-11-21 10:29	2019-11-20	Show	GitHub Exploit DB Packet Storm

306767	5.5	MEDIUM Local	qtnx_project	qtnx	qtnx 0.9 stores non-custom SSH keys in a world-readable configuration file. If a user has a world-readable or world-executable home directory, another local system user could obtain the private key u…	CWE-312 Cleartext Storage of Sensitive Information	CVE-2011-2916	2024-11-21 10:29	2019-11-16	Show	GitHub Exploit DB Packet Storm

306768	6.7	MEDIUM Local	linux-ax25 debian	ax25-tools debian_linux	The AX.25 daemon (ax25d) in ax25-tools before 0.0.8-13 does not check the return value of a setuid call. The setuid call is responsible for dropping privileges but if the call fails the daemon would …	CWE-269 Improper Privilege Management	CVE-2011-2910	2024-11-21 10:29	2019-11-16	Show	GitHub Exploit DB Packet Storm

306769	9.8	CRITICAL Network	elgg	elgg	Elgg through 1.7.10 has a SQL injection vulnerability	CWE-89 SQL Injection	CVE-2011-2936	2024-11-21 10:29	2019-11-12	Show	GitHub Exploit DB Packet Storm

306770	6.1	MEDIUM Network	elgg	elgg	Elgg through 1.7.10 has XSS	CWE-79 Cross-site Scripting	CVE-2011-2935	2024-11-21 10:29	2019-11-12	Show	GitHub Exploit DB Packet Storm