Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 28, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1141	7.8	重要 Local	Kovidgoyal	Kitty	KovidgoyalのKittyにおける複数の脆弱性	CWE-862 CWE-94	CVE-2026-42851	2026-06-17 15:46	2026-06-12	Show	GitHub Exploit DB Packet Storm

1142	9.8	緊急 Network	MariaDB Corporation Ab.	MariaDB	MariaDB Corporation Ab.のMariaDBにおけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-44170	2026-06-17 15:46	2026-06-12	Show	GitHub Exploit DB Packet Storm

1143	7.8	重要 Local	MariaDB Corporation Ab.	MariaDB	MariaDB Corporation Ab.のMariaDBにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-44171	2026-06-17 15:45	2026-06-12	Show	GitHub Exploit DB Packet Storm

1144	9.8	緊急 Network	MariaDB Corporation Ab.	MariaDB	MariaDB Corporation Ab.のMariaDBにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2026-44172	2026-06-17 15:45	2026-06-12	Show	GitHub Exploit DB Packet Storm

1145	5.3	警告 Network	MariaDB Corporation Ab.	MariaDB	MariaDB Corporation Ab.のMariaDBにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-44173	2026-06-17 15:45	2026-06-12	Show	GitHub Exploit DB Packet Storm

1146	5.3	警告 Adjacent	opentelemetry	opentelemetry	opentelemetryにおける過剰なサイズ値のメモリ割り当てに関する脆弱性	CWE-789 過剰なサイズ値のメモリ割り当て	CVE-2026-44967	2026-06-17 15:45	2026-06-12	Show	GitHub Exploit DB Packet Storm

1147	7.5	重要 Network	OpenSSL Project	OpenSSL	OpenSSL ProjectのOpenSSLにおける暗号化処理の不備に関する脆弱性	CWE-325 暗号化処理の不備	CVE-2026-45445	2026-06-17 15:45	2026-06-9	Show	GitHub Exploit DB Packet Storm

1148	4.8	警告 Network	OpenSSL Project	OpenSSL	OpenSSL ProjectのOpenSSLにおける暗号化処理の不備に関する脆弱性	CWE-325 暗号化処理の不備	CVE-2026-45446	2026-06-17 15:45	2026-06-9	Show	GitHub Exploit DB Packet Storm

1149	8.8	重要 Network	OpenSSL Project	OpenSSL	OpenSSL ProjectのOpenSSLにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-45447	2026-06-17 15:45	2026-06-9	Show	GitHub Exploit DB Packet Storm

1150	7.5	重要 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-45944	2026-06-17 15:45	2026-05-27	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 28, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
254351	7.8	HIGH Local	jenkins	github_pull_request_builder	An exposure of sensitive information vulnerability exists in Jenkins GitHub Pull Request Builder Plugin version 1.39.0 and older in GhprbCause.java that allows an attacker with local file system acce…	CWE-200 Information Exposure	CVE-2018-1000142	2024-11-21 12:39	2018-04-5	Show	GitHub Exploit DB Packet Storm

254352	8.8	HIGH Network	microsoft	security_essentials exchange_server forefront_endpoint_protection_2010 intune_endpoint_protection system_center_endpoint_protection windows_defender	A remote code execution vulnerability exists when the Microsoft Malware Protection Engine does not properly scan a specially crafted file, leading to memory corruption, aka "Microsoft Malware Protect…	CWE-787 Out-of-bounds Write	CVE-2018-0986	2024-11-21 12:39	2018-04-5	Show	GitHub Exploit DB Packet Storm

254353	9.1	CRITICAL Network	i-librarian	i_librarian	I, Librarian version 4.9 and earlier contains an Incorrect Access Control vulnerability in ajaxdiscussion.php that can result in any users gaining unauthorized access (read, write and delete) to proj…	CWE-269 Improper Privilege Management	CVE-2018-1000141	2024-11-21 12:39	2018-03-24	Show	GitHub Exploit DB Packet Storm

254354	9.8	CRITICAL Network	rsyslog debian canonical redhat	librelp debian_linux ubuntu_linux enterprise_linux_desktop enterprise_linux_server_aus enterprise_linux_workstation enterprise_linux_server_tus enterprise_linux_server enterpr…	rsyslog librelp version 1.2.14 and earlier contains a Buffer Overflow vulnerability in the checking of x509 certificates from a peer that can result in Remote code execution. This attack appear to be…	CWE-787 Out-of-bounds Write	CVE-2018-1000140	2024-11-21 12:39	2018-03-24	Show	GitHub Exploit DB Packet Storm

254355	6.1	MEDIUM Network	i-librarian	i_librarian	I, Librarian version 4.8 and earlier contains a Cross Site Scripting (XSS) vulnerability in "id" parameter in stable.php that can result in an attacker using the XSS to send a malicious script to an …	CWE-79 Cross-site Scripting	CVE-2018-1000139	2024-11-21 12:39	2018-03-24	Show	GitHub Exploit DB Packet Storm

254356	9.1	CRITICAL Network	i-librarian	i_librarian	I, Librarian version 4.8 and earlier contains a SSRF vulnerability in "url" parameter of getFromWeb in functions.php that can result in the attacker abusing functionality on the server to read or upd…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2018-1000138	2024-11-21 12:39	2018-03-24	Show	GitHub Exploit DB Packet Storm

254357	8.8	HIGH Network	i-librarian	i_librarian	I, Librarian version 4.8 and earlier contains a Cross site Request Forgery (CSRF) vulnerability in users.php that can result in the password of the admin being forced to be changed without the admini…	CWE-352 Origin Validation Error	CVE-2018-1000137	2024-11-21 12:39	2018-03-24	Show	GitHub Exploit DB Packet Storm

254358	8.1	HIGH Network	electronjs	electron	Electron version 1.7 up to 1.7.12; 1.8 up to 1.8.3 and 2.0.0 up to 2.0.0-beta.3 contains an improper handling of values vulnerability in Webviews that can result in remote code execution. This attack…	CWE-20 Improper Input Validation	CVE-2018-1000136	2024-11-21 12:39	2018-03-24	Show	GitHub Exploit DB Packet Storm

254359	7.5	HIGH Network	gnome canonical	networkmanager ubuntu_linux	GNOME NetworkManager version 1.10.2 and earlier contains a Information Exposure (CWE-200) vulnerability in DNS resolver that can result in Private DNS queries leaked to local network's DNS servers, w…	CWE-200 Information Exposure	CVE-2018-1000135	2024-11-21 12:39	2018-03-20	Show	GitHub Exploit DB Packet Storm

254360	7.5	HIGH Network	secluded	trident	Pitchfork version 1.4.6 RC1 contains an Improper Privilege Management vulnerability in Trident Pitchfork components that can result in A standard unprivileged user could gain system administrator per…	CWE-269 Improper Privilege Management	CVE-2018-1000133	2024-11-21 12:39	2018-03-16	Show	GitHub Exploit DB Packet Storm