Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 21, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
561 4.7 警告
Network 		アドビシステムズ Adobe Experience Manager アドビのAdobe Experience Managerにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-34693 2026-06-12 14:54 2026-06-9 Show GitHub Exploit DB Packet Storm
562 4.8 警告
Network 		アドビシステムズ Adobe Experience Manager アドビのAdobe Experience Managerにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-34694 2026-06-12 14:54 2026-06-9 Show GitHub Exploit DB Packet Storm
563 7.8 重要
Local 		アドビシステムズ Adobe Substance 3D Sampler アドビのAdobe Substance 3D Samplerにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2026-34709 2026-06-12 14:54 2026-06-9 Show GitHub Exploit DB Packet Storm
564 7.8 重要
Local 		アドビシステムズ Adobe Substance 3D Sampler アドビのAdobe Substance 3D Samplerにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2026-34710 2026-06-12 14:54 2026-06-9 Show GitHub Exploit DB Packet Storm
565 7.2 重要
Network 		emlog emlog emlogにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-39276 2026-06-12 14:54 2026-05-29 Show GitHub Exploit DB Packet Storm
566 8.1 重要
Network 		マイクロソフト Visual Studio Code Visual Studio Code の特権の昇格の脆弱性 CWE-20
CWE-noinfo
CVE-2026-40376 2026-06-12 14:54 2026-06-9 Show GitHub Exploit DB Packet Storm
567 7.8 重要
Local 		マイクロソフト Microsoft Windows 11 23h2
Microsoft Windows Server 2022
Microsoft Windows Server 2016
Microsoft Windows Server 2019
Microsoft&n… 		Windows ユニバーサル ディスク フォーマット ファイル システム ドライバー (UDFS) の特権昇格の脆弱性 CWE-197
数値打ち切り誤差 		CVE-2026-40409 2026-06-12 14:54 2026-06-9 Show GitHub Exploit DB Packet Storm
568 7.5 重要
Network 		VMware Spring HATEOAS VMwareのSpring HATEOASにおけるアクセス制御に関する脆弱性 CWE-284
CWE-noinfo
CVE-2026-41006 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
569 7.5 重要
Network 		VMware Spring HATEOAS VMwareのSpring HATEOASにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-41007 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
570 7.8 重要
Local 		マイクロソフト Microsoft Windows 11 23h2
Microsoft Windows Server 2022
Microsoft Windows Server 2016
Microsoft Windows Server 2019
Microsoft&n… 		Microsoft Kinect の特権昇格の脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-41092 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 21, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
259171 9.8 CRITICAL
Network 		gorillatoolkit handlers Usage of the CORS handler may apply improper CORS headers, allowing the requester to explicitly control the value of the Access-Control-Allow-Origin header, which bypasses the expected behavior of th… CWE-346
 Origin Validation Error 		CVE-2017-20146 2024-11-21 12:22 2022-12-28 Show GitHub Exploit DB Packet Storm
259172 9.8 CRITICAL
Network 		mikrotik routeros The Mikrotik RouterOS web server allows memory corruption in releases before Stable 6.38.5 and Long-term 6.37.5, aka Chimay-Red. A remote and unauthenticated user can trigger the vulnerability by sen… CWE-787
 Out-of-bounds Write 		CVE-2017-20149 2024-11-21 12:22 2022-10-15 Show GitHub Exploit DB Packet Storm
259173 9.8 CRITICAL
Network 		debian logcheck In the ebuild package through logcheck-1.3.23.ebuild for Logcheck on Gentoo, it is possible to achieve root privilege escalation from the logcheck user because of insecure recursive chown calls. NVD-CWE-noinfo
CVE-2017-20148 2024-11-21 12:22 2022-09-21 Show GitHub Exploit DB Packet Storm
259174 6.5 MEDIUM
Network 		smokeping smokeping In the ebuild package through smokeping-2.7.3-r1 for SmokePing on Gentoo, the initscript uses a PID file that is writable by the smokeping user. By writing arbitrary PIDs to that file, the smokeping … NVD-CWE-noinfo
CVE-2017-20147 2024-11-21 12:22 2022-09-21 Show GitHub Exploit DB Packet Storm
259175 9.8 CRITICAL
Network 		tecrail responsive_filemanager A vulnerability was found in Tecrail Responsive Filemanger up to 9.10.x and classified as critical. The manipulation leads to path traversal. The attack may be launched remotely. The exploit has been… CWE-22
Path Traversal 		CVE-2017-20145 2024-11-21 12:22 2022-07-25 Show GitHub Exploit DB Packet Storm
259176 7.8 HIGH
Local 		anvsoft pdf_converter A vulnerability has been found in Anvsoft PDFMate PDF Converter Pro 1.7.5.0 and classified as critical. The manipulation leads to memory corruption. The attack can be launched remotely. The exploit h… - CVE-2017-20144 2024-11-21 12:22 2022-07-25 Show GitHub Exploit DB Packet Storm
259177 9.8 CRITICAL
Network 		ambit movie_portal_script A vulnerability, which was classified as critical, has been found in Itech Movie Portal Script 7.36. This issue affects some unknown processing of the file /film-rating.php. The manipulation of the a… - CVE-2017-20143 2024-11-21 12:22 2022-07-23 Show GitHub Exploit DB Packet Storm
259178 9.8 CRITICAL
Network 		ambit movie_portal_script A vulnerability classified as critical was found in Itech Movie Portal Script 7.36. This vulnerability affects unknown code of the file /artist-display.php. The manipulation of the argument act leads… - CVE-2017-20142 2024-11-21 12:22 2022-07-23 Show GitHub Exploit DB Packet Storm
259179 9.8 CRITICAL
Network 		ambit movie_portal_script A vulnerability classified as critical has been found in Itech Movie Portal Script 7.36. This affects an unknown part of the file /movie.php. The manipulation of the argument f leads to sql injection… - CVE-2017-20141 2024-11-21 12:22 2022-07-23 Show GitHub Exploit DB Packet Storm
259180 6.1 MEDIUM
Network 		ambit movie_portal_script A vulnerability was found in Itech Movie Portal Script 7.36. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /movie.php. The manipulation of the arg… - CVE-2017-20140 2024-11-21 12:22 2022-07-23 Show GitHub Exploit DB Packet Storm