Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 26, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
4401 7.1 重要
Network 		Quantum Nous New API Quantum NousのNew APIにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-42339 2026-05-20 13:30 2026-05-8 Show GitHub Exploit DB Packet Storm
4402 9.8 緊急
Network 		sentry sentry sentryにおけるスプーフィングによる認証回避に関する脆弱性 CWE-290
スプーフィングによる認証回避 		CVE-2026-42354 2026-05-20 13:30 2026-05-8 Show GitHub Exploit DB Packet Storm
4403 5.5 警告
Local 		M2-Team NanaZip M2-TeamのNanaZipにおける再帰制御に関する脆弱性 CWE-674
不適切な再帰制御 		CVE-2026-42355 2026-05-20 13:30 2026-05-12 Show GitHub Exploit DB Packet Storm
4404 5.1 警告
Local 		uriparser project uriparser uriparser projectのuriparserにおける数値打ち切り誤差に関する脆弱性 CWE-197
数値打ち切り誤差 		CVE-2026-42371 2026-05-20 13:30 2026-04-27 Show GitHub Exploit DB Packet Storm
4405 5.5 警告
Local 		M2-Team NanaZip M2-TeamのNanaZipにおけるNULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2026-42442 2026-05-20 13:30 2026-05-12 Show GitHub Exploit DB Packet Storm
4406 5.5 警告
Local 		M2-Team NanaZip M2-TeamのNanaZipにおけるゼロ除算に関する脆弱性 CWE-369
ゼロ除算 		CVE-2026-42443 2026-05-20 13:30 2026-05-12 Show GitHub Exploit DB Packet Storm
4407 5.5 警告
Local 		M2-Team NanaZip M2-TeamのNanaZipにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-42444 2026-05-20 13:30 2026-05-12 Show GitHub Exploit DB Packet Storm
4408 4.3 警告
Network 		mintplexlabs anythingllm mintplexlabsのanythingllmにおける複数の脆弱性 CWE-200
CWE-639
CWE-639
CVE-2026-42456 2026-05-20 13:30 2026-05-8 Show GitHub Exploit DB Packet Storm
4409 6.1 警告
Network 		Gofiber Fiber GofiberのFiberにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-42554 2026-05-20 13:29 2026-05-11 Show GitHub Exploit DB Packet Storm
4410 9 緊急
Network 		Gitroom Postiz GitroomのPostizにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-42556 2026-05-20 13:29 2026-05-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 27, 2026, 4:35 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
305801 - vmware vcenter_chargeback_manager VMware vCenter Chargeback Manager (aka CBM) before 2.0.1 does not properly handle XML API requests, which allows remote attackers to read arbitrary files or cause a denial of service via unspecified … CWE-20
 Improper Input Validation  		CVE-2012-1472 2024-11-21 10:37 2012-03-13 Show GitHub Exploit DB Packet Storm
305802 - yassl cyassl yaSSL CyaSSL before 2.0.8 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted X.509 certificate. CWE-399
 Resource Management Errors 		CVE-2012-1558 2024-11-21 10:37 2012-03-13 Show GitHub Exploit DB Packet Storm
305803 - parallels parallels_plesk_panel SQL injection vulnerability in admin/plib/api-rpc/Agent.php in Parallels Plesk Panel 7.x and 8.x before 8.6 MU#2, 9.x before 9.5 MU#11, 10.0.x before MU#13, 10.1.x before MU#22, 10.2.x before MU#16, … CWE-89
SQL Injection 		CVE-2012-1557 2024-11-21 10:37 2012-03-13 Show GitHub Exploit DB Packet Storm
305804 - microsoft ie
internet_explorer 		Microsoft Internet Explorer 6 through 9, and 10 Consumer Preview, allows remote attackers to bypass Protected Mode or cause a denial of service (memory corruption) by leveraging access to a Low integ… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-1545 2024-11-21 10:37 2012-03-9 Show GitHub Exploit DB Packet Storm
305805 - movabletype movable_type_open_source
movable_type_enterprise
movable_type_advanced
movable_type_pro 		The default configuration of Movable Type before 4.38, 5.0x before 5.07, and 5.1x before 5.13 supports the "mt:Include file=" attribute, which allows remote authenticated users to conduct directory t… CWE-22
Path Traversal 		CVE-2012-1497 2024-11-21 10:37 2012-03-3 Show GitHub Exploit DB Packet Storm
305806 9.8 CRITICAL
Network 		404like_project 404like A vulnerability was found in 404like Plugin up to 1.0.2 on WordPress. It has been classified as critical. Affected is the function checkPage of the file 404Like.php. The manipulation of the argument … - CVE-2012-10009 2024-11-21 10:36 2023-03-21 Show GitHub Exploit DB Packet Storm
305807 8.8 HIGH
Network 		bestwebsoft portfolio A vulnerability was found in BestWebSoft Portfolio Plugin up to 2.04 on WordPress. It has been classified as problematic. This affects an unknown part. The manipulation leads to cross-site request fo… - CVE-2012-10017 2024-11-21 10:36 2023-12-26 Show GitHub Exploit DB Packet Storm
305808 7.5 HIGH
Network 		halulu simple-download-button-shortcode A vulnerability classified as problematic has been found in Halulu simple-download-button-shortcode Plugin 1.0 on WordPress. Affected is an unknown function of the file simple-download-button_dl.php … NVD-CWE-noinfo
CVE-2012-10016 2024-11-21 10:36 2023-10-17 Show GitHub Exploit DB Packet Storm
305809 8.8 HIGH
Network 		bestwebsoft twitter A vulnerability was found in BestWebSoft Twitter Plugin up to 2.14 on WordPress. It has been classified as problematic. Affected is the function twttr_settings_page of the file twitter.php of the com… - CVE-2012-10015 2024-11-21 10:36 2023-05-31 Show GitHub Exploit DB Packet Storm
305810 6.1 MEDIUM
Network 		kau-boys backend_localization A vulnerability was found in Kau-Boy Backend Localization Plugin up to 1.6.1 on WordPress. It has been rated as problematic. This issue affects some unknown processing of the file backend_localizatio… - CVE-2012-10013 2024-11-21 10:36 2023-04-25 Show GitHub Exploit DB Packet Storm