Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 26, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
4381 6.5 警告
Network 		Mattermost, Inc. Mattermost Server Mattermost, Inc.のMattermost Serverにおける例外的な状態のチェックに関する脆弱性 CWE-754
例外的な状態における不適切なチェック 		CVE-2026-4054 2026-05-20 13:31 2026-05-15 Show GitHub Exploit DB Packet Storm
4382 8.2 重要
Network 		TheCodingMachine Gotenberg TheCodingMachineのGotenbergにおける複数の脆弱性 CWE-184
CWE-73
CVE-2026-40893 2026-05-20 13:31 2026-05-14 Show GitHub Exploit DB Packet Storm
4383 7.8 重要
Local 		George Nachman iTerm2 George NachmanのiTerm2における信頼できない制御領域からの機能の組み込みに関する脆弱性 CWE-829
信頼性のない制御領域からの機能の組み込み 		CVE-2026-41253 2026-05-20 13:31 2026-04-18 Show GitHub Exploit DB Packet Storm
4384 8.2 重要
Network 		Quantum Nous New API Quantum NousのNew APIにおける複数の脆弱性 CWE-1188
CWE-345
CWE-863
CVE-2026-41432 2026-05-20 13:31 2026-05-8 Show GitHub Exploit DB Packet Storm
4385 8.8 重要
Network 		anyscale ray anyscaleのrayにおける複数の脆弱性 CWE-502
CWE-94
CVE-2026-41486 2026-05-20 13:31 2026-05-8 Show GitHub Exploit DB Packet Storm
4386 4.4 警告
Local 		cilium cilium ciliumにおける複数の脆弱性 CWE-200
CWE-312
CWE-312
CVE-2026-41520 2026-05-20 13:31 2026-05-8 Show GitHub Exploit DB Packet Storm
4387 7 重要
Local 		VMware VMware Fusion VMwareのVMware FusionにおけるTime-of-check Time-of-use (TOCTOU) 競合状態の脆弱性 CWE-367
Time-of-check Time-of-use (TOCTOU) 競合状態 		CVE-2026-41702 2026-05-20 13:31 2026-05-15 Show GitHub Exploit DB Packet Storm
4388 4.3 警告
Network 		Timo Sirainen
Open-Xchange		 Dovecot Pro
Dovecot 		Timo Sirainen等の複数ベンダの製品におけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2026-42006 2026-05-20 13:31 2026-05-12 Show GitHub Exploit DB Packet Storm
4389 4.3 警告
Network 		getkirby kirby getkirbyのkirbyにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-42051 2026-05-20 13:30 2026-05-9 Show GitHub Exploit DB Packet Storm
4390 6.5 警告
Network 		getkirby kirby getkirbyのkirbyにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-42069 2026-05-20 13:30 2026-05-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 27, 2026, 4:35 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
305801 - vmware vcenter_chargeback_manager VMware vCenter Chargeback Manager (aka CBM) before 2.0.1 does not properly handle XML API requests, which allows remote attackers to read arbitrary files or cause a denial of service via unspecified … CWE-20
 Improper Input Validation  		CVE-2012-1472 2024-11-21 10:37 2012-03-13 Show GitHub Exploit DB Packet Storm
305802 - yassl cyassl yaSSL CyaSSL before 2.0.8 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted X.509 certificate. CWE-399
 Resource Management Errors 		CVE-2012-1558 2024-11-21 10:37 2012-03-13 Show GitHub Exploit DB Packet Storm
305803 - parallels parallels_plesk_panel SQL injection vulnerability in admin/plib/api-rpc/Agent.php in Parallels Plesk Panel 7.x and 8.x before 8.6 MU#2, 9.x before 9.5 MU#11, 10.0.x before MU#13, 10.1.x before MU#22, 10.2.x before MU#16, … CWE-89
SQL Injection 		CVE-2012-1557 2024-11-21 10:37 2012-03-13 Show GitHub Exploit DB Packet Storm
305804 - microsoft ie
internet_explorer 		Microsoft Internet Explorer 6 through 9, and 10 Consumer Preview, allows remote attackers to bypass Protected Mode or cause a denial of service (memory corruption) by leveraging access to a Low integ… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-1545 2024-11-21 10:37 2012-03-9 Show GitHub Exploit DB Packet Storm
305805 - movabletype movable_type_open_source
movable_type_enterprise
movable_type_advanced
movable_type_pro 		The default configuration of Movable Type before 4.38, 5.0x before 5.07, and 5.1x before 5.13 supports the "mt:Include file=" attribute, which allows remote authenticated users to conduct directory t… CWE-22
Path Traversal 		CVE-2012-1497 2024-11-21 10:37 2012-03-3 Show GitHub Exploit DB Packet Storm
305806 9.8 CRITICAL
Network 		404like_project 404like A vulnerability was found in 404like Plugin up to 1.0.2 on WordPress. It has been classified as critical. Affected is the function checkPage of the file 404Like.php. The manipulation of the argument … - CVE-2012-10009 2024-11-21 10:36 2023-03-21 Show GitHub Exploit DB Packet Storm
305807 8.8 HIGH
Network 		bestwebsoft portfolio A vulnerability was found in BestWebSoft Portfolio Plugin up to 2.04 on WordPress. It has been classified as problematic. This affects an unknown part. The manipulation leads to cross-site request fo… - CVE-2012-10017 2024-11-21 10:36 2023-12-26 Show GitHub Exploit DB Packet Storm
305808 7.5 HIGH
Network 		halulu simple-download-button-shortcode A vulnerability classified as problematic has been found in Halulu simple-download-button-shortcode Plugin 1.0 on WordPress. Affected is an unknown function of the file simple-download-button_dl.php … NVD-CWE-noinfo
CVE-2012-10016 2024-11-21 10:36 2023-10-17 Show GitHub Exploit DB Packet Storm
305809 8.8 HIGH
Network 		bestwebsoft twitter A vulnerability was found in BestWebSoft Twitter Plugin up to 2.14 on WordPress. It has been classified as problematic. Affected is the function twttr_settings_page of the file twitter.php of the com… - CVE-2012-10015 2024-11-21 10:36 2023-05-31 Show GitHub Exploit DB Packet Storm
305810 6.1 MEDIUM
Network 		kau-boys backend_localization A vulnerability was found in Kau-Boy Backend Localization Plugin up to 1.6.1 on WordPress. It has been rated as problematic. This issue affects some unknown processing of the file backend_localizatio… - CVE-2012-10013 2024-11-21 10:36 2023-04-25 Show GitHub Exploit DB Packet Storm