Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 15, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
401 6.1 警告
Network 		マイクロソフト Microsoft SharePoint Server Microsoft SharePoint Server のなりすましの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-33113 2026-06-12 14:33 2026-06-9 Show GitHub Exploit DB Packet Storm
402 - - 三菱電機 ロスナイセントラル換気システム
炊飯器
IHクッキングヒーター
ルームエアコン向け無線LANアダプター
三菱HEMS用 制御アダプター、無線LANアダプター
冷蔵庫
バス乾燥・暖房・換気システム
ルームエアコン
換気扇用・ロスナイ用スマートスイッチ
パッケージエアコン
ヒートポンプ給湯機・HEMS対応アダプター、無線LANアダ… 		複数の三菱電機製家電製品に搭載されているRealtek社製チップ向けWi-Fiドライバにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2025-49604 2026-06-12 12:05 2026-03-25 Show GitHub Exploit DB Packet Storm
403 - - 日立 Hitachi Virtual Storage Platform 日立ディスクアレイシステムにおけるiSCSI脆弱性対策について - CVE-2025-7737 2026-06-12 10:01 2026-06-11 Show GitHub Exploit DB Packet Storm
404 6.5 警告
Network 		Apache Software Foundation answer Apache Software Foundationのanswerにおける危険なタイプのファイルの無制限アップロードに関する脆弱性 CWE-434
危険なタイプのファイルの無制限アップロード 		CVE-2026-34031 2026-06-11 16:25 2026-06-9 Show GitHub Exploit DB Packet Storm
405 7 重要
Local 		マイクロソフト Microsoft Windows 11 25h2
Microsoft Windows Server 2012
Microsoft Windows 11 24h2
Microsoft Windows 10 21h2
Microsoft Wind… 		WinSock 用 Windows Ancillary Function Driver の特権の昇格の脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-34335 2026-06-11 16:25 2026-06-9 Show GitHub Exploit DB Packet Storm
406 7.8 重要
Local 		アドビシステムズ Adobe InDesign アドビのAdobe InDesignにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-121
スタックオーバーフロー 		CVE-2026-34695 2026-06-11 16:25 2026-06-9 Show GitHub Exploit DB Packet Storm
407 7.8 重要
Local 		アドビシステムズ Adobe InDesign アドビのAdobe InDesignにおける解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-34696 2026-06-11 16:25 2026-06-9 Show GitHub Exploit DB Packet Storm
408 7.8 重要
Local 		アドビシステムズ Adobe InDesign アドビのAdobe InDesignにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-121
スタックオーバーフロー 		CVE-2026-34697 2026-06-11 16:25 2026-06-9 Show GitHub Exploit DB Packet Storm
409 7.8 重要
Local 		アドビシステムズ Adobe InDesign アドビのAdobe InDesignにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-34698 2026-06-11 16:24 2026-06-9 Show GitHub Exploit DB Packet Storm
410 7.8 重要
Local 		アドビシステムズ Adobe InDesign アドビのAdobe InDesignにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-34699 2026-06-11 16:24 2026-06-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
258701 - - - A vulnerability was found in Zimbra zm-admin-ajax up to 8.8.1. It has been classified as problematic. This affects the function XFormItem.prototype.setError of the file WebRoot/js/ajax/dwt/xforms/XFo… - CVE-2017-20191 2024-11-21 12:22 2024-03-31 Show GitHub Exploit DB Packet Storm
258702 - - - Some Microsoft technologies as used in Windows 8 through 11 allow a temporary client-side performance degradation during processing of multiple Unicode combining characters, aka a "Zalgo text" attack… - CVE-2017-20190 2024-11-21 12:22 2024-03-27 Show GitHub Exploit DB Packet Storm
258703 9.8 CRITICAL
Network 		clojure clojure In Clojure before 1.9.0, classes can be used to construct a serialized object that executes arbitrary code upon deserialization. This is relevant if a server deserializes untrusted objects. CWE-502
 Deserialization of Untrusted Data 		CVE-2017-20189 2024-11-21 12:22 2024-01-22 Show GitHub Exploit DB Packet Storm
258704 9.8 CRITICAL
Network 		floriangaerber magnesium-php ** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in Magnesium-PHP up to 0.3.0. It has been classified as problematic. Affected is the function formatEmailString of the file src/Magnesium/Mes… - CVE-2017-20187 2024-11-21 12:22 2023-11-6 Show GitHub Exploit DB Packet Storm
258705 7.5 HIGH
Network 		nikooo777 cksurf ** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in nikooo777 ckSurf up to 1.19.2. It has been declared as problematic. This vulnerability affects the function SpecListMenuDead of the file c… - CVE-2017-20186 2024-11-21 12:22 2023-08-28 Show GitHub Exploit DB Packet Storm
258706 6.1 MEDIUM
Network 		server_web_monitor_page_project server_web_monitor_page ** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in Fuzzy SWMP. It has been rated as problematic. This issue affects some unknown processing of the file swmp.php of the component GET Paramet… - CVE-2017-20185 2024-11-21 12:22 2023-06-6 Show GitHub Exploit DB Packet Storm
258707 6.1 MEDIUM
Network 		external_media_without_import_project external_media_without_import A vulnerability was found in External Media without Import Plugin up to 1.0.0 on WordPress. It has been declared as problematic. This vulnerability affects the function print_media_new_panel of the f… CWE-79
Cross-site Scripting 		CVE-2017-20183 2024-11-21 12:22 2023-05-5 Show GitHub Exploit DB Packet Storm
258708 7.5 HIGH
Network 		gavazzionline powersoft Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Carlo Gavazzi Powersoft up to version 2.1.1.1 allows an unauthenticated, remote attacker to download an… - CVE-2017-20184 2024-11-21 12:22 2023-05-4 Show GitHub Exploit DB Packet Storm
258709 6.1 MEDIUM
Network 		mobilevikings django_ajax_utilities A vulnerability was found in Mobile Vikings Django AJAX Utilities up to 1.2.1 and classified as problematic. This issue affects the function Pagination of the file django_ajax/static/ajax-utilities/j… CWE-79
Cross-site Scripting 		CVE-2017-20182 2024-11-21 12:22 2023-03-10 Show GitHub Exploit DB Packet Storm
258710 5.5 MEDIUM
Local 		vocable_trainer_project vocable_trainer A vulnerability classified as critical was found in hgzojer Vocable Trainer up to 1.3.0 on Android. This vulnerability affects unknown code of the file src/at/hgz/vocabletrainer/VocableTrainerProvide… - CVE-2017-20181 2024-11-21 12:22 2023-03-7 Show GitHub Exploit DB Packet Storm