Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 20, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3531	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows Win32k の特権の昇格の脆弱性	CWE-190 CWE-416	CVE-2026-34333	2026-05-18 12:17	2026-05-12	Show	GitHub Exploit DB Packet Storm

3532	7	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows TCP/IP の特権昇格の脆弱性	CWE-362 競合状態	CVE-2026-34334	2026-05-18 12:17	2026-05-12	Show	GitHub Exploit DB Packet Storm

3533	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows DWM Core ライブラリの情報漏えいの脆弱性	CWE-126 バッファオーバーリード	CVE-2026-34336	2026-05-18 12:17	2026-05-12	Show	GitHub Exploit DB Packet Storm

3534	7	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Wind…	Windows Cloud Files Mini Filter ドライバーの特権の昇格の脆弱性	CWE-362 CWE-416	CVE-2026-34337	2026-05-18 12:16	2026-05-12	Show	GitHub Exploit DB Packet Storm

3535	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows テレフォニーサービスの特権昇格の脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-34338	2026-05-18 12:16	2026-05-12	Show	GitHub Exploit DB Packet Storm

3536	5.5	警告 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows ライトウェイトディレクトリアクセスプロトコル (LDAP) のサービス拒否の脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-34339	2026-05-18 12:16	2026-05-12	Show	GitHub Exploit DB Packet Storm

3537	7	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Wind…	Windows Projected File System の特権の昇格の脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-34340	2026-05-18 12:16	2026-05-12	Show	GitHub Exploit DB Packet Storm

3538	7	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows Link-Layer Discovery Protocol (LLDP) の特権昇格の脆弱性	CWE-415 二重解放	CVE-2026-34341	2026-05-18 12:16	2026-05-12	Show	GitHub Exploit DB Packet Storm

3539	7	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows 印刷スプーラーの特権の昇格の脆弱性	CWE-362 競合状態	CVE-2026-34342	2026-05-18 12:16	2026-05-12	Show	GitHub Exploit DB Packet Storm

3540	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows アプリケーション ID (AppID) のサブシステムの特権昇格の脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-34343	2026-05-18 12:16	2026-05-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 21, 2026, 4:01 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
305711	-	adobe	acrobat acrobat_reader	Unspecified vulnerability in the PRC component in Adobe Reader and Acrobat 9.x before 9.4.7 on Windows, Adobe Reader and Acrobat 9.x through 9.4.6 on Mac OS X, Adobe Reader and Acrobat 10.x through 1…	NVD-CWE-noinfo	CVE-2011-4369	2024-11-21 10:32	2011-12-17	Show	GitHub Exploit DB Packet Storm

305712	-	parallels	parallels_plesk_panel	Cross-site scripting (XSS) vulnerability in the Site Editor (aka SiteBuilder) feature in Parallels Plesk Panel 10.4.4_build20111103.18 allows remote attackers to inject arbitrary web script or HTML v…	CWE-79 Cross-site Scripting	CVE-2011-4777	2024-11-21 10:32	2011-12-16	Show	GitHub Exploit DB Packet Storm

305713	-	parallels	parallels_plesk_panel	Multiple cross-site scripting (XSS) vulnerabilities in the Control Panel in Parallels Plesk Panel 10.4.4_build20111103.18 allow remote attackers to inject arbitrary web script or HTML via crafted inp…	CWE-79 Cross-site Scripting	CVE-2011-4776	2024-11-21 10:32	2011-12-16	Show	GitHub Exploit DB Packet Storm

305714	-	parallels	parallels_plesk_small_business_panel	The Site Editor (aka SiteBuilder) feature in Parallels Plesk Small Business Panel 10.2.0 omits the Content-Type header's charset parameter for certain resources, which might allow remote attackers to…	NVD-CWE-Other	CVE-2011-4768	2024-11-21 10:32	2011-12-16	Show	GitHub Exploit DB Packet Storm

305715	-	parallels	parallels_plesk_small_business_panel	The Site Editor (aka SiteBuilder) feature in Parallels Plesk Small Business Panel 10.2.0 has web pages containing e-mail addresses that are not intended for correspondence about the local application…	CWE-200 Information Exposure	CVE-2011-4767	2024-11-21 10:32	2011-12-16	Show	GitHub Exploit DB Packet Storm

305716	-	parallels	parallels_plesk_small_business_panel	The Site Editor (aka SiteBuilder) feature in Parallels Plesk Small Business Panel 10.2.0 allows remote attackers to obtain ASP source code via a direct request to wysiwyg/fckconfig.js. NOTE: CVE dis…	CWE-200 Information Exposure	CVE-2011-4766	2024-11-21 10:32	2011-12-16	Show	GitHub Exploit DB Packet Storm

305717	-	parallels	parallels_plesk_small_business_panel	The Site Editor (aka SiteBuilder) feature in Parallels Plesk Small Business Panel 10.2.0 does not include the HTTPOnly flag in a Set-Cookie header for a cookie, which makes it easier for remote attac…	CWE-200 Information Exposure	CVE-2011-4765	2024-11-21 10:32	2011-12-16	Show	GitHub Exploit DB Packet Storm

305718	-	parallels	parallels_plesk_small_business_panel	Multiple cross-site scripting (XSS) vulnerabilities in the Site Editor (aka SiteBuilder) feature in Parallels Plesk Small Business Panel 10.2.0 allow remote attackers to inject arbitrary web script o…	CWE-79 Cross-site Scripting	CVE-2011-4764	2024-11-21 10:32	2011-12-16	Show	GitHub Exploit DB Packet Storm

305719	-	parallels	parallels_plesk_small_business_panel	Multiple SQL injection vulnerabilities in the Site Editor (aka SiteBuilder) feature in Parallels Plesk Small Business Panel 10.2.0 allow remote attackers to execute arbitrary SQL commands via crafted…	CWE-89 SQL Injection	CVE-2011-4763	2024-11-21 10:32	2011-12-16	Show	GitHub Exploit DB Packet Storm

305720	-	parallels	parallels_plesk_small_business_panel	Parallels Plesk Small Business Panel 10.2.0 sends incorrect Content-Type headers for certain resources, which might allow remote attackers to have an unspecified impact by leveraging an interpretatio…	NVD-CWE-Other	CVE-2011-4762	2024-11-21 10:32	2011-12-16	Show	GitHub Exploit DB Packet Storm