Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 13, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
223141	6.4	警告	アップル	-	Apple OS X の OpenSSL 用の特定の Apple パッチにおけるカスタムアプリケーション内の追加検証を回避される脆弱性	CWE-20 不適切な入力確認	CVE-2014-2234	2014-03-6 11:34	2014-03-3	Show	GitHub Exploit DB Packet Storm

223142	7.8	危険	Synology Inc.	-	Synology DiskStation Manager に認証情報がハードコードされている問題	CWE-200 CWE-255	CVE-2014-2264	2014-03-6 10:56	2014-02-27	Show	GitHub Exploit DB Packet Storm

223143	7.5	危険	Posh portal project	-	POSH の portal/addtoapplication.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-2211	2014-03-5 18:29	2014-02-20	Show	GitHub Exploit DB Packet Storm

223144	7.5	危険	Artifex Software	-	MuPDF の xps/xps-common.c 内の xps_parse_color 関数におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2014-2013	2014-03-5 18:28	2014-01-17	Show	GitHub Exploit DB Packet Storm

223145	4.3	警告	MyBB Group	-	MyBB の Upload/search.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-1840	2014-03-5 18:28	2014-02-2	Show	GitHub Exploit DB Packet Storm

223146	2.1	注意	レッドハット	-	IcedTea-Web の plugin/icedteanp/IcedTeaNPPlugin.cc における Java アプレットと Web ブラウザ間のメッセージを読まれる脆弱性	CWE-200 情報漏えい	CVE-2013-6493	2014-03-5 18:25	2013-09-23	Show	GitHub Exploit DB Packet Storm

223147	6.3	警告	OpenFabrics Alliance レッドハット	-	OpenFabrics ibutils における任意のファイルを上書きされる脆弱性	CWE-59 リンク解釈の問題	CVE-2013-2561	2014-03-5 17:35	2013-11-21	Show	GitHub Exploit DB Packet Storm

223148	3.5	注意	MIT Kerberos	-	MIT Kerberos 5 の鍵配布センタの do_tgs_req.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-1417	2014-03-5 17:34	2013-06-21	Show	GitHub Exploit DB Packet Storm

223149	4.3	警告	MIT Kerberos	-	MIT Kerberos の鍵配布センタの main.c 内の setup_server_realm 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2013-1418	2014-03-5 17:33	2013-11-4	Show	GitHub Exploit DB Packet Storm

223150	7.1	危険	David King Canonical	-	GNOME Vino の vino-server.c の vino_server_client_data_pending 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-5745	2014-03-5 17:26	2013-09-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
481	8.7	HIGH Network	gitlab	gitlab	GitLab has remediated an issue in GitLab EE affecting all versions from 15.5 before 18.10.8, 18.11 before 18.11.5, and 19.0 before 19.0.2 that under certain conditions could have allowed an authentic… New	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2026-6552	2026-06-12 02:36	2026-06-11	Show	GitHub Exploit DB Packet Storm

482	4.6	MEDIUM Adjacent	espressif	esp-idf	ESF-IDF is the Espressif Internet of Things (IOT) Development Framework. In versions 5.2.6, 5.3.5, 5.4.4, 5.5.3, and 6.0, an out-of-bounds read exists in the BlueDroid AVRCP vendor-command parser (av… New	CWE-125 Out-of-bounds Read	CVE-2026-46532	2026-06-12 02:36	2026-06-10	Show	GitHub Exploit DB Packet Storm

483	9.8	CRITICAL Network	microsoft	windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_11_23h2 windows_11_24h2 windows_11_25h2 windows_11_26h1 windows_server_2012 windows_server_2016 w…	Stack-based buffer overflow in Windows DHCP Client allows an unauthorized attacker to execute code over a network. Update	CWE-121 Stack-based Buffer Overflow	CVE-2026-44815	2026-06-12 02:35	2026-06-10	Show	GitHub Exploit DB Packet Storm

484	3.7	LOW Network	gitlab	gitlab	GitLab has remediated an issue in GitLab CE/EE affecting all versions from 15.9 before 18.10.8, 18.11 before 18.11.5, and 19.0 before 19.0.2 that under certain conditions could have allowed an authen… New	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2026-6976	2026-06-12 02:34	2026-06-11	Show	GitHub Exploit DB Packet Storm

485	7.5	HIGH Network	gitlab	gitlab	GitLab has remediated an issue in GitLab CE/EE affecting all versions from 12.10 before 18.10.8, 18.11 before 18.11.5, and 19.0 before 19.0.2 that under certain conditions could have allowed an unaut… New	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2026-7250	2026-06-12 02:34	2026-06-11	Show	GitHub Exploit DB Packet Storm

486	4.3	MEDIUM Network	gitlab	gitlab	GitLab has remediated an issue in GitLab CE/EE affecting all versions from 15.9 before 18.10.8, 18.11 before 18.11.5, and 19.0 before 19.0.2 that under certain conditions, could have allowed an unaut… New	CWE-153 Improper Neutralization of Substitution Characters	CVE-2026-9694	2026-06-12 02:32	2026-06-11	Show	GitHub Exploit DB Packet Storm

487	6.1	MEDIUM Network	adobe	experience_manager	Adobe Experience Manager Forms JEE versions LTS SP1, 6.5.24.0 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by an attacker to inject malicious scr… Update	CWE-79 Cross-site Scripting	CVE-2026-34691	2026-06-12 02:29	2026-06-10	Show	GitHub Exploit DB Packet Storm

488	6.5	MEDIUM Network	gitlab	gitlab	GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.10 before 18.10.8, 18.11 before 18.11.5, and 19.0 before 19.0.2 that under certain conditions could have allowed an authe… New	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-9204	2026-06-12 02:28	2026-06-11	Show	GitHub Exploit DB Packet Storm

489	8.7	HIGH Network	gitlab	gitlab	GitLab has remediated an issue in GitLab EE affecting all versions from 13.1.4 before 18.10.8, 18.11 before 18.11.5, and 19.0 before 19.0.2 that under certain conditions could have allowed an authent… New	CWE-79 Cross-site Scripting	CVE-2026-8589	2026-06-12 02:28	2026-06-11	Show	GitHub Exploit DB Packet Storm

490	4.7	MEDIUM Network	adobe	experience_manager	Adobe Experience Manager Forms JEE versions LTS SP1, 6.5.24.0 and earlier are affected by a reflected Cross-Site Scripting (XSS) vulnerability. An attacker could exploit this vulnerability to inject … Update	CWE-79 Cross-site Scripting	CVE-2026-34693	2026-06-12 02:22	2026-06-10	Show	GitHub Exploit DB Packet Storm