Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 16, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
331	7.2	重要 Network	emlog	emlog	emlogにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-39276	2026-06-12 14:54	2026-05-29	Show	GitHub Exploit DB Packet Storm

332	8.1	重要 Network	マイクロソフト	Visual Studio Code	Visual Studio Code の特権の昇格の脆弱性	CWE-20 CWE-noinfo	CVE-2026-40376	2026-06-12 14:54	2026-06-9	Show	GitHub Exploit DB Packet Storm

333	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Windows Server 2016 Microsoft Windows Server 2019 Microsoft&n…	Windows ユニバーサルディスクフォーマットファイルシステムドライバー (UDFS) の特権昇格の脆弱性	CWE-197 数値打ち切り誤差	CVE-2026-40409	2026-06-12 14:54	2026-06-9	Show	GitHub Exploit DB Packet Storm

334	7.5	重要 Network	VMware	Spring HATEOAS	VMwareのSpring HATEOASにおけるアクセス制御に関する脆弱性	CWE-284 CWE-noinfo	CVE-2026-41006	2026-06-12 14:53	2026-06-9	Show	GitHub Exploit DB Packet Storm

335	7.5	重要 Network	VMware	Spring HATEOAS	VMwareのSpring HATEOASにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-41007	2026-06-12 14:53	2026-06-9	Show	GitHub Exploit DB Packet Storm

336	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Windows Server 2016 Microsoft Windows Server 2019 Microsoft&n…	Microsoft Kinect の特権昇格の脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-41092	2026-06-12 14:53	2026-06-9	Show	GitHub Exploit DB Packet Storm

337	7	重要 Local	マイクロソフト	Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Windows Server 2016 Microsoft Windows Server 2019 Microsoft&n…	Windows DNS クライアントの特権の昇格の脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-41108	2026-06-12 14:53	2026-06-9	Show	GitHub Exploit DB Packet Storm

338	7.5	重要 Network	VMware	Spring Framework	VMwareのSpring Frameworkにおける不十分なランダム値の使用に関する脆弱性	CWE-330 不十分なランダム値の使用	CVE-2026-41838	2026-06-12 14:53	2026-06-9	Show	GitHub Exploit DB Packet Storm

339	6.1	警告 Network	VMware	Spring Framework	VMwareのSpring Frameworkにおけるオープンリダイレクトの脆弱性	CWE-601 オープンリダイレクト	CVE-2026-41844	2026-06-12 14:53	2026-06-9	Show	GitHub Exploit DB Packet Storm

340	6.1	警告 Network	VMware	Spring Framework	VMwareのSpring Frameworkにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-41845	2026-06-12 14:53	2026-06-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
258761	9.8	CRITICAL Network	kb_login_authentication_script_project	kb_login_authentication_script	A vulnerability was found in KB Login Authentication Script 1.1 and classified as critical. Affected by this issue is some unknown functionality. The manipulation of the argument username/password wi…	CWE-89 SQL Injection	CVE-2017-20127	2024-11-21 12:22	2022-07-14	Show	GitHub Exploit DB Packet Storm

258762	9.8	CRITICAL Network	kb_affiliate_referral_script_project	kb_affiliate_referral_script	A vulnerability was found in KB Affiliate Referral Script 1.0. It has been classified as critical. This affects an unknown part of the file /index.php. The manipulation of the argument username/passw…	CWE-89 SQL Injection	CVE-2017-20126	2024-11-21 12:22	2022-07-14	Show	GitHub Exploit DB Packet Storm

258763	9.8	CRITICAL Network	bestsoftinc	online_hotel_booking_system	A vulnerability classified as critical was found in Online Hotel Booking System Pro 1.2. Affected by this vulnerability is an unknown functionality of the file /roomtype-details.php. The manipulation…	CWE-89 SQL Injection	CVE-2017-20125	2024-11-21 12:22	2022-06-30	Show	GitHub Exploit DB Packet Storm

258764	8.8	HIGH Network	bestsoftinc	online_hotel_booking_system	A vulnerability classified as critical has been found in Online Hotel Booking System Pro Plugin 1.0. Affected is an unknown function of the file /front/roomtype-details.php. The manipulation of the a…	CWE-89 SQL Injection	CVE-2017-20124	2024-11-21 12:22	2022-06-30	Show	GitHub Exploit DB Packet Storm

258765	7.8	HIGH Local	sparklabs	viscosity	A vulnerability was found in Viscosity 1.6.7. It has been classified as critical. This affects an unknown part of the component DLL Handler. The manipulation leads to untrusted search path. It is pos…	CWE-427 Uncontrolled Search Path Element	CVE-2017-20123	2024-11-21 12:22	2022-06-30	Show	GitHub Exploit DB Packet Storm

258766	5.4	MEDIUM Network	bitrix24	bitrix_site_manager	A vulnerability classified as problematic was found in Bitrix Site Manager 12.06.2015. Affected by this vulnerability is an unknown functionality of the component Contact Form. The manipulation of th…	CWE-79 Cross-site Scripting	CVE-2017-20122	2024-11-21 12:22	2022-06-30	Show	GitHub Exploit DB Packet Storm

258767	7.8	HIGH Local	teradici	pcoip_management_console	A vulnerability was found in Teradici Management Console 2.2.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component Database Management. The …	CWE-269 Improper Privilege Management	CVE-2017-20121	2024-11-21 12:22	2022-06-30	Show	GitHub Exploit DB Packet Storm

258768	8.8	HIGH Network	trueconf	server	A vulnerability classified as problematic was found in TrueConf Server 4.3.7. This vulnerability affects unknown code of the file /admin/service/stop/. The manipulation leads to cross-site request fo…	CWE-352 Origin Validation Error	CVE-2017-20120	2024-11-21 12:22	2022-06-30	Show	GitHub Exploit DB Packet Storm

258769	6.1	MEDIUM Network	trueconf	server	A vulnerability classified as problematic has been found in TrueConf Server 4.3.7. This affects an unknown part of the file /admin/general/change-lang. The manipulation of the argument redirect_url l…	CWE-601 Open Redirect	CVE-2017-20119	2024-11-21 12:22	2022-06-30	Show	GitHub Exploit DB Packet Storm

258770	5.4	MEDIUM Network	trueconf	server	A vulnerability was found in TrueConf Server 4.3.7. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /admin/conferences/list/. The manipulation of th…	CWE-79 Cross-site Scripting	CVE-2017-20118	2024-11-21 12:22	2022-06-30	Show	GitHub Exploit DB Packet Storm