Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 14, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
224551 4.3 警告 CRU Acquisition Group - CRU Ditto Forensic FieldStation のファームウェアにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-6882 2013-12-19 15:52 2013-12-12 Show GitHub Exploit DB Packet Storm
224552 2.1 注意 valve software - Valve SteamOS の valve-bugreporter パッケージの Valve Bug Reporter における重要な情報を取得される脆弱性 CWE-310
暗号の問題 		CVE-2013-7128 2013-12-19 15:51 2013-12-14 Show GitHub Exploit DB Packet Storm
224553 4.3 警告 ThemeBeans - WordPress 用 ThemeBeans Blooog Theme におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-7129 2013-12-19 14:47 2013-12-2 Show GitHub Exploit DB Packet Storm
224554 2.1 注意 アップル - Apple Mac OS X 上で稼働する Safari における重要な情報を取得される脆弱性 CWE-310
暗号の問題 		CVE-2013-7127 2013-12-19 14:41 2013-12-13 Show GitHub Exploit DB Packet Storm
224555 8.8 危険 Google - Android におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-6271 2013-12-19 12:13 2013-11-27 Show GitHub Exploit DB Packet Storm
224556 4.7 警告 Eaton - 複数の Cooper Power Systems 製品 の DNP3 コンポーネントにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-2816 2013-12-19 11:58 2013-12-12 Show GitHub Exploit DB Packet Storm
224557 7.1 危険 Eaton - Cooper Power Systems Cybectec DNP3 Master OPC Server におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-2814 2013-12-19 11:56 2013-12-12 Show GitHub Exploit DB Packet Storm
224558 7.1 危険 Eaton - 複数の Cooper Power Systems 製品 の DNP3 コンポーネントにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-2813 2013-12-19 11:55 2013-12-12 Show GitHub Exploit DB Packet Storm
224559 8 危険 シーメンス - Siemens RuggedCom ROS の統合された HTTPS サーバにおける管理者アクションの制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-6926 2013-12-18 16:56 2013-12-6 Show GitHub Exploit DB Packet Storm
224560 8.3 危険 シーメンス - Siemens RuggedCom ROS の統合された HTTPS サーバにおける Web セッションをハイジャックされる脆弱性 CWE-Other
その他 		CVE-2013-6925 2013-12-18 16:55 2013-12-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2851 - - - Leftover engineering diagnostics and factory-level diagnostic software remain exposed on retail builds, giving malicious apps write privileges to internal NVRAM registers. CWE-134
Use of Externally-Controlled Format String 		CVE-2026-50211 2026-06-5 00:10 2026-06-4 Show GitHub Exploit DB Packet Storm
2852 - - - Weak validation logic within device dissociation API routines allows a remote entity to forcefully unbind unrelated user endpoints, causing severe denial of service. CWE-400
 Uncontrolled Resource Consumption 		CVE-2026-50212 2026-06-5 00:10 2026-06-4 Show GitHub Exploit DB Packet Storm
2853 - - - The account validation endpoint /v1/User/validate returns comprehensive user profile data sheets, which can be crawled by iterating predictable identification strings. CWE-798
 Use of Hard-coded Credentials 		CVE-2026-50213 2026-06-5 00:10 2026-06-4 Show GitHub Exploit DB Packet Storm
2854 8.2 HIGH
Network 		- - All in One Video Downloader 1.2 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the id parameter. At… CWE-89
SQL Injection 		CVE-2019-25726 2026-06-5 00:00 2026-06-4 Show GitHub Exploit DB Packet Storm
2855 9.8 CRITICAL
Network 		- - WordPress Plugin ad manager wd 1.0.11 contains an arbitrary file download vulnerability that allows unauthenticated attackers to download sensitive files by manipulating the path parameter. Attackers… CWE-22
Path Traversal 		CVE-2019-25727 2026-06-5 00:00 2026-06-4 Show GitHub Exploit DB Packet Storm
2856 8.2 HIGH
Network 		- - Care2x 2.7 contains multiple SQL injection vulnerabilities that allow unauthenticated attackers to execute arbitrary SQL commands by manipulating the ck_config cookie parameter. Attackers can inject … CWE-89
SQL Injection 		CVE-2019-25728 2026-06-5 00:00 2026-06-4 Show GitHub Exploit DB Packet Storm
2857 9.8 CRITICAL
Network 		- - PDF Signer 3.0 contains a server-side template injection vulnerability that allows unauthenticated attackers to execute arbitrary code by injecting PHP commands through the CSRF-TOKEN cookie paramete… CWE-352
 Origin Validation Error 		CVE-2019-25729 2026-06-5 00:00 2026-06-4 Show GitHub Exploit DB Packet Storm
2858 8.2 HIGH
Network 		- - Listing Hub CMS 1.0 contains a SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the id parameter. Attackers can s… CWE-89
SQL Injection 		CVE-2019-25730 2026-06-5 00:00 2026-06-4 Show GitHub Exploit DB Packet Storm
2859 8.2 HIGH
Network 		- - PHP EI-Tube Script 3 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the search parameter. Attackers… CWE-89
SQL Injection 		CVE-2019-25732 2026-06-5 00:00 2026-06-4 Show GitHub Exploit DB Packet Storm
2860 8.4 HIGH
Local 		- - NetShareWatcher 1.5.8.0 contains a structured exception handler buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying malicious input. Attackers can craft a… CWE-120
Classic Buffer Overflow 		CVE-2019-25733 2026-06-5 00:00 2026-06-4 Show GitHub Exploit DB Packet Storm