Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 13, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
611	6.1	警告 Network	Apache Software Foundation	Apache HTTP Server	Apache Software FoundationのApache HTTP Serverにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-29170	2026-06-10 14:28	2026-06-8	Show	GitHub Exploit DB Packet Storm

612	7.5	重要 Network	Apache Software Foundation	Apache HTTP Server	Apache Software FoundationのApache HTTP Serverにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-34355	2026-06-10 14:28	2026-06-8	Show	GitHub Exploit DB Packet Storm

613	7.5	重要 Network	Apache Software Foundation	Apache HTTP Server	Apache Software FoundationのApache HTTP Serverにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-34356	2026-06-10 14:28	2026-06-8	Show	GitHub Exploit DB Packet Storm

614	5.9	警告 Network	VMware	Spring Framework	VMwareのSpring Frameworkにおけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-41840	2026-06-10 14:28	2026-06-9	Show	GitHub Exploit DB Packet Storm

615	5.9	警告 Network	VMware	Spring Framework	VMwareのSpring Frameworkにおける重要な情報を含むキャッシュの使用に関する脆弱性	CWE-524 重要な情報を含むキャッシュの使用	CVE-2026-41841	2026-06-10 14:28	2026-06-9	Show	GitHub Exploit DB Packet Storm

616	7.5	重要 Network	VMware	Spring Framework	VMwareのSpring Frameworkにおけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-41842	2026-06-10 14:28	2026-06-9	Show	GitHub Exploit DB Packet Storm

617	5.9	警告 Network	VMware	Spring Framework	VMwareのSpring Frameworkにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-41843	2026-06-10 14:28	2026-06-9	Show	GitHub Exploit DB Packet Storm

618	7.5	重要 Network	VMware	Spring Framework	VMwareのSpring Frameworkにおける整数オーバーフローの脆弱性	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2026-41849	2026-06-10 14:28	2026-06-9	Show	GitHub Exploit DB Packet Storm

619	7.5	重要 Network	VMware	Spring Framework	VMwareのSpring Frameworkにおけるアルゴリズムの複雑さに関する脆弱性	CWE-407 アルゴリズムの複雑性	CVE-2026-41850	2026-06-10 14:28	2026-06-9	Show	GitHub Exploit DB Packet Storm

620	7.5	重要 Network	VMware	Spring Framework	VMwareのSpring Frameworkにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-41851	2026-06-10 14:27	2026-06-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
258471	9.8	CRITICAL Network	itextpdf	rups	A vulnerability classified as problematic was found in iText RUPS. This vulnerability affects unknown code of the file src/main/java/com/itextpdf/rups/model/XfaFile.java. The manipulation leads to xm…	-	CVE-2017-20151	2024-11-21 12:22	2022-12-30	Show	GitHub Exploit DB Packet Storm

258472	6.1	MEDIUM Network	imageserve_project	imageserve	A vulnerability has been found in aerouk imageserve and classified as problematic. Affected by this vulnerability is an unknown functionality. The manipulation of the argument REQUEST_URI leads to cr…	-	CVE-2017-20153	2024-11-21 12:22	2022-12-30	Show	GitHub Exploit DB Packet Storm

258473	7.5	HIGH Network	imageserve_project	imageserve	A vulnerability, which was classified as problematic, was found in aerouk imageserve. Affected is an unknown function of the file public/viewer.php of the component File Handler. The manipulation of …	-	CVE-2017-20152	2024-11-21 12:22	2022-12-30	Show	GitHub Exploit DB Packet Storm

258474	8.8	HIGH Network	challenge_website_project	challenge_website	A vulnerability was found in challenge website. It has been rated as critical. This issue affects some unknown processing. The manipulation leads to sql injection. The name of the patch is f1644b1d35…	CWE-89 SQL Injection	CVE-2017-20150	2024-11-21 12:22	2022-12-29	Show	GitHub Exploit DB Packet Storm

258475	9.8	CRITICAL Network	gorillatoolkit	handlers	Usage of the CORS handler may apply improper CORS headers, allowing the requester to explicitly control the value of the Access-Control-Allow-Origin header, which bypasses the expected behavior of th…	CWE-346 Origin Validation Error	CVE-2017-20146	2024-11-21 12:22	2022-12-28	Show	GitHub Exploit DB Packet Storm

258476	9.8	CRITICAL Network	mikrotik	routeros	The Mikrotik RouterOS web server allows memory corruption in releases before Stable 6.38.5 and Long-term 6.37.5, aka Chimay-Red. A remote and unauthenticated user can trigger the vulnerability by sen…	CWE-787 Out-of-bounds Write	CVE-2017-20149	2024-11-21 12:22	2022-10-15	Show	GitHub Exploit DB Packet Storm

258477	9.8	CRITICAL Network	debian	logcheck	In the ebuild package through logcheck-1.3.23.ebuild for Logcheck on Gentoo, it is possible to achieve root privilege escalation from the logcheck user because of insecure recursive chown calls.	NVD-CWE-noinfo	CVE-2017-20148	2024-11-21 12:22	2022-09-21	Show	GitHub Exploit DB Packet Storm

258478	6.5	MEDIUM Network	smokeping	smokeping	In the ebuild package through smokeping-2.7.3-r1 for SmokePing on Gentoo, the initscript uses a PID file that is writable by the smokeping user. By writing arbitrary PIDs to that file, the smokeping …	NVD-CWE-noinfo	CVE-2017-20147	2024-11-21 12:22	2022-09-21	Show	GitHub Exploit DB Packet Storm

258479	9.8	CRITICAL Network	tecrail	responsive_filemanager	A vulnerability was found in Tecrail Responsive Filemanger up to 9.10.x and classified as critical. The manipulation leads to path traversal. The attack may be launched remotely. The exploit has been…	CWE-22 Path Traversal	CVE-2017-20145	2024-11-21 12:22	2022-07-25	Show	GitHub Exploit DB Packet Storm

258480	7.8	HIGH Local	anvsoft	pdf_converter	A vulnerability has been found in Anvsoft PDFMate PDF Converter Pro 1.7.5.0 and classified as critical. The manipulation leads to memory corruption. The attack can be launched remotely. The exploit h…	-	CVE-2017-20144	2024-11-21 12:22	2022-07-25	Show	GitHub Exploit DB Packet Storm