Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 27, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4441	8.1	重要 Network	Daniel Garcia	Vaultwarden	Daniel GarciaのVaultwardenにおけるセッション期限に関する脆弱性	CWE-613 不適切なセッション期限	CVE-2026-43911	2026-05-20 13:28	2026-05-11	Show	GitHub Exploit DB Packet Storm

4442	7.5	重要 Network	Bytecode Alliance	wasmtime	Bytecode Allianceのwasmtimeにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-44216	2026-05-20 13:28	2026-05-14	Show	GitHub Exploit DB Packet Storm

4443	5.3	警告 Network	pyLoad	pyLoad	pyLoadにおけるエラーメッセージによる情報漏えいに関する脆弱性	CWE-209 エラーメッセージによる情報漏えい	CVE-2026-44226	2026-05-20 13:28	2026-05-11	Show	GitHub Exploit DB Packet Storm

4444	7.5	重要 Network	Netty	Netty	Nettyにおけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-44248	2026-05-20 13:28	2026-05-13	Show	GitHub Exploit DB Packet Storm

4445	6.5	警告 Network	Shellhub	Shellhub	Shellhubにおけるユーザ制御の鍵による認証回避に関する脆弱性	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-44424	2026-05-20 13:28	2026-05-13	Show	GitHub Exploit DB Packet Storm

4446	5.4	警告 Network	Shellhub	Shellhub	Shellhubにおける複数の脆弱性	CWE-1333 CWE-20 CWE-943	CVE-2026-44425	2026-05-20 13:28	2026-05-13	Show	GitHub Exploit DB Packet Storm

4447	5	警告 Network	openwebui	open webui	openwebuiのopen webuiにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2026-44550	2026-05-20 13:28	2026-05-15	Show	GitHub Exploit DB Packet Storm

4448	9.1	緊急 Network	openwebui	open webui	openwebuiのopen webuiにおける認証に関する脆弱性	CWE-287 CWE-noinfo	CVE-2026-44551	2026-05-20 13:28	2026-05-15	Show	GitHub Exploit DB Packet Storm

4449	8.7	重要 Network	openwebui	open webui	openwebuiのopen webuiにおける誤った領域へのリソースの漏えいに関する脆弱性	CWE-668 誤った領域へのリソースの漏えい	CVE-2026-44552	2026-05-20 13:28	2026-05-15	Show	GitHub Exploit DB Packet Storm

4450	8.1	重要 Network	openwebui	open webui	openwebuiのopen webuiにおけるセッション期限に関する脆弱性	CWE-613 不適切なセッション期限	CVE-2026-44553	2026-05-20 13:28	2026-05-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 27, 2026, 4:35 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
305801	-		vmware	vcenter_chargeback_manager	VMware vCenter Chargeback Manager (aka CBM) before 2.0.1 does not properly handle XML API requests, which allows remote attackers to read arbitrary files or cause a denial of service via unspecified …	CWE-20 Improper Input Validation	CVE-2012-1472	2024-11-21 10:37	2012-03-13	Show	GitHub Exploit DB Packet Storm

305802	-		yassl	cyassl	yaSSL CyaSSL before 2.0.8 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted X.509 certificate.	CWE-399 Resource Management Errors	CVE-2012-1558	2024-11-21 10:37	2012-03-13	Show	GitHub Exploit DB Packet Storm

305803	-		parallels	parallels_plesk_panel	SQL injection vulnerability in admin/plib/api-rpc/Agent.php in Parallels Plesk Panel 7.x and 8.x before 8.6 MU#2, 9.x before 9.5 MU#11, 10.0.x before MU#13, 10.1.x before MU#22, 10.2.x before MU#16, …	CWE-89 SQL Injection	CVE-2012-1557	2024-11-21 10:37	2012-03-13	Show	GitHub Exploit DB Packet Storm

305804	-		microsoft	ie internet_explorer	Microsoft Internet Explorer 6 through 9, and 10 Consumer Preview, allows remote attackers to bypass Protected Mode or cause a denial of service (memory corruption) by leveraging access to a Low integ…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-1545	2024-11-21 10:37	2012-03-9	Show	GitHub Exploit DB Packet Storm

305805	-		movabletype	movable_type_open_source movable_type_enterprise movable_type_advanced movable_type_pro	The default configuration of Movable Type before 4.38, 5.0x before 5.07, and 5.1x before 5.13 supports the "mt:Include file=" attribute, which allows remote authenticated users to conduct directory t…	CWE-22 Path Traversal	CVE-2012-1497	2024-11-21 10:37	2012-03-3	Show	GitHub Exploit DB Packet Storm

305806	9.8	CRITICAL Network	404like_project	404like	A vulnerability was found in 404like Plugin up to 1.0.2 on WordPress. It has been classified as critical. Affected is the function checkPage of the file 404Like.php. The manipulation of the argument …	-	CVE-2012-10009	2024-11-21 10:36	2023-03-21	Show	GitHub Exploit DB Packet Storm

305807	8.8	HIGH Network	bestwebsoft	portfolio	A vulnerability was found in BestWebSoft Portfolio Plugin up to 2.04 on WordPress. It has been classified as problematic. This affects an unknown part. The manipulation leads to cross-site request fo…	-	CVE-2012-10017	2024-11-21 10:36	2023-12-26	Show	GitHub Exploit DB Packet Storm

305808	7.5	HIGH Network	halulu	simple-download-button-shortcode	A vulnerability classified as problematic has been found in Halulu simple-download-button-shortcode Plugin 1.0 on WordPress. Affected is an unknown function of the file simple-download-button_dl.php …	NVD-CWE-noinfo	CVE-2012-10016	2024-11-21 10:36	2023-10-17	Show	GitHub Exploit DB Packet Storm

305809	8.8	HIGH Network	bestwebsoft	twitter	A vulnerability was found in BestWebSoft Twitter Plugin up to 2.14 on WordPress. It has been classified as problematic. Affected is the function twttr_settings_page of the file twitter.php of the com…	-	CVE-2012-10015	2024-11-21 10:36	2023-05-31	Show	GitHub Exploit DB Packet Storm

305810	6.1	MEDIUM Network	kau-boys	backend_localization	A vulnerability was found in Kau-Boy Backend Localization Plugin up to 1.6.1 on WordPress. It has been rated as problematic. This issue affects some unknown processing of the file backend_localizatio…	-	CVE-2012-10013	2024-11-21 10:36	2023-04-25	Show	GitHub Exploit DB Packet Storm