Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 30, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1191 7.8 重要
Local 		アドビシステムズ Adobe Acrobat Reader DC
Adobe Acrobat
Adobe Acrobat DC 		アドビのAdobe Acrobat等の複数製品における境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2026-47965 2026-06-22 11:49 2026-06-12 Show GitHub Exploit DB Packet Storm
1192 8.2 重要
Network 		アドビシステムズ Adobe Acrobat アドビのAdobe Acrobatにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-48294 2026-06-22 11:49 2026-06-17 Show GitHub Exploit DB Packet Storm
1193 9.3 緊急
Network 		Rocket.Chat Rocket.Chat Rocket.Chatにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-48616 2026-06-22 11:49 2026-06-17 Show GitHub Exploit DB Packet Storm
1194 7.5 重要
Network 		ws project ws ws projectのwsにおける複数の脆弱性 CWE-400
CWE-770
CVE-2026-48779 2026-06-22 11:49 2026-06-17 Show GitHub Exploit DB Packet Storm
1195 7.5 重要
Network 		Rocket.Chat Rocket.Chat Rocket.Chatにおける認証に関する脆弱性 CWE-287
不適切な認証 		CVE-2026-48929 2026-06-22 11:49 2026-06-17 Show GitHub Exploit DB Packet Storm
1196 9.8 緊急
Network 		MariaDB Corporation Ab. MariaDB MariaDB Corporation Ab.のMariaDBにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-49261 2026-06-22 11:49 2026-06-11 Show GitHub Exploit DB Packet Storm
1197 9.1 緊急
Network 		Apache Software Foundation Apache Shiro Apache Software FoundationのApache ShiroにおけるLDAP インジェクションの脆弱性 CWE-90
LDAP インジェクション 		CVE-2026-49268 2026-06-22 11:48 2026-06-17 Show GitHub Exploit DB Packet Storm
1198 7 重要
Local 		マイクロソフト Microsoft Malware Protection Engine Microsoft Defender Elevation of Privilege Vulnerability CWE-59
リンク解釈の問題 		CVE-2026-50656 2026-06-22 11:48 2026-06-16 Show GitHub Exploit DB Packet Storm
1199 8.1 重要
Network 		KubeV2V Migration assessment KubeV2VのMigration assessmentにおける重要な機能に対する認証の欠如に関する脆弱性 CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2026-53469 2026-06-22 11:48 2026-06-10 Show GitHub Exploit DB Packet Storm
1200 8.1 重要
Network 		KubeV2V Migration assessment KubeV2VのMigration assessmentにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-53470 2026-06-22 11:48 2026-06-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 30, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
254431 9.8 CRITICAL
Network 		busybox
debian
canonical 		busybox
debian_linux
ubuntu_linux 		BusyBox project BusyBox wget version prior to commit 8e2174e9bd836e53c8b9c6e00d1bc6e2a718686e contains a Buffer Overflow vulnerability in Busybox wget that can result in heap buffer overflow. This at… CWE-120
Classic Buffer Overflow 		CVE-2018-1000517 2024-11-21 12:40 2018-06-27 Show GitHub Exploit DB Packet Storm
254432 7.5 HIGH
Network 		news-articles_project news-articles ventrian News-Articles version NewsArticles.00.09.11 contains a XML External Entity (XXE) vulnerability in News-Articles/API/MetaWebLog/Handler.ashx.vb that can result in Attacker can read any file i… CWE-611
XXE 		CVE-2018-1000515 2024-11-21 12:40 2018-06-27 Show GitHub Exploit DB Packet Storm
254433 4.3 MEDIUM
Network 		limesurvey limesurvey LimeSurvey version 3.0.0-beta.3+17110 contains a Cross ite Request Forgery (CSRF) vulnerability in Boxes that can result in CSRF admins to delete boxes. This vulnerability appears to have been fixed … CWE-352
 Origin Validation Error 		CVE-2018-1000514 2024-11-21 12:40 2018-06-27 Show GitHub Exploit DB Packet Storm
254434 6.1 MEDIUM
Network 		galaxyproject galaxy The Galaxy Project Galaxy version v14.10 contains a CWE-79: Improper Neutralization of Input During Web Page Generation vulnerability in Many templates used in the Galaxy server did not properly sani… CWE-79
Cross-site Scripting 		CVE-2018-1000516 2024-11-21 12:40 2018-06-27 Show GitHub Exploit DB Packet Storm
254435 4.8 MEDIUM
Network 		limesurvey limesurvey LimeSurvey version 3.0.0-beta.3+17110 contains a Cross Site Scripting (XSS) vulnerability in Boxes that can result in JS code execution against LimeSurvey admins. This vulnerability appears to have b… CWE-79
Cross-site Scripting 		CVE-2018-1000513 2024-11-21 12:40 2018-06-27 Show GitHub Exploit DB Packet Storm
254436 6.1 MEDIUM
Network 		tooltipy_project tooltipy Tooltipy Tooltipy (tooltips for WP) version 5 contains a Cross Site Scripting (XSS) vulnerability in Glossary shortcode that can result in could allow anybody to do almost anything an admin can. This… CWE-79
Cross-site Scripting 		CVE-2018-1000512 2024-11-21 12:40 2018-06-27 Show GitHub Exploit DB Packet Storm
254437 7.5 HIGH
Network 		wpulike ulike WP ULike version 2.8.1, 3.1 contains a Incorrect Access Control vulnerability in AJAX that can result in allows anybody to delete any row in certain tables. This attack appear to be exploitable via A… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2018-1000511 2024-11-21 12:40 2018-06-27 Show GitHub Exploit DB Packet Storm
254438 6.5 MEDIUM
Network 		silkypress image_zoom WP Image Zoom version 1.23 contains a Incorrect Access Control vulnerability in AJAX settings that can result in allows anybody to cause denial of service. This attack appear to be exploitable via Ca… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2018-1000510 2024-11-21 12:40 2018-06-27 Show GitHub Exploit DB Packet Storm
254439 7.2 HIGH
Network 		redirection redirection Redirection version 2.7.1 contains a Serialisation vulnerability possibly allowing ACE vulnerability in Settings page AJAX that can result in could allow admin to execute arbitrary code in some circu… CWE-502
 Deserialization of Untrusted Data 		CVE-2018-1000509 2024-11-21 12:40 2018-06-27 Show GitHub Exploit DB Packet Storm
254440 4.8 MEDIUM
Network 		wpulike ulike WP ULike version 2.8.1, 3.1 contains a Cross Site Scripting (XSS) vulnerability in Settings screen that can result in allows unauthorised users to do almost anything an admin can. This attack appear … CWE-79
Cross-site Scripting 		CVE-2018-1000508 2024-11-21 12:40 2018-06-27 Show GitHub Exploit DB Packet Storm