Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 11, 2026, 6:13 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226161	7.2	危険	ソフォス	-	Sophos Web Appliance の /opt/cma/bin/clear_keys.pl の close_connections 関数における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-4984	2013-09-11 14:45	2013-09-9	Show	GitHub Exploit DB Packet Storm

226162	7.5	危険	VMware	-	VMware ESX および ESXi におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2013-3657	2013-09-11 14:02	2013-09-6	Show	GitHub Exploit DB Packet Storm

226163	6.4	警告	VMware	-	VMware ESX および ESXi におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2013-3658	2013-09-11 13:54	2013-09-6	Show	GitHub Exploit DB Packet Storm

226164	4.3	警告	VideoWhisper.com	-	WordPress 用 VideoWhisper Live Streaming Integration プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-5714	2013-09-11 13:51	2013-08-23	Show	GitHub Exploit DB Packet Storm

226165	5	警告	Digium	-	複数の Asterisk 製品の SIP チャネルドライバにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-5642	2013-09-11 13:50	2013-08-27	Show	GitHub Exploit DB Packet Storm

226166	5	警告	Digium	-	Asterisk Open Source および Certified Asterisk の SIP チャネルドライバにおけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2013-5641	2013-09-11 13:49	2013-08-27	Show	GitHub Exploit DB Packet Storm

226167	5	警告	Strata Technologies	-	Twilight CMS で使用される DeWeS Web サーバにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2013-4900	2013-09-11 13:46	2013-08-21	Show	GitHub Exploit DB Packet Storm

226168	4.3	警告	Strata Technologies	-	Twilight CMS におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-4899	2013-09-11 13:45	2013-08-21	Show	GitHub Exploit DB Packet Storm

226169	2.6	注意	サイボウズ	-	サイボウズ Office におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-4703	2013-09-11 13:32	2013-09-9	Show	GitHub Exploit DB Packet Storm

226170	4.3	警告	IBM	-	IBM WebSphere Commerce の Search コンポーネントにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-2992	2013-09-10 16:56	2013-08-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
4121	5.4	MEDIUM Network	synology	contacts	Improper neutralization of input during web page generation ('Cross-site Scripting') vulnerability in contact functionality in Synology Contacts before 1.0.10-20659 allows remote authenticated users …	CWE-79 Cross-site Scripting	CVE-2025-13167	2026-05-29 01:37	2026-05-27	Show	GitHub Exploit DB Packet Storm

4122	9.4	CRITICAL Network	free5gc	free5gc	free5GC is an open-source implementation of the 5G core network. Prior to 4.2.2, free5GC's NEF mounts the 3gpp-traffic-influence API without inbound OAuth2/bearer-token authorization. A network attac…	CWE-862 Missing Authorization	CVE-2026-44326	2026-05-29 01:25	2026-05-28	Show	GitHub Exploit DB Packet Storm

4123	10.0	CRITICAL Network	free5gc	free5gc	free5GC is an open-source implementation of the 5G core network. Prior to 4.2.2, free5GC's NEF mounts the nnef-oam route group without inbound OAuth2/bearer-token authorization. A network attacker wh…	CWE-306 CWE-862 Missing Authentication for Critical Function Missing Authorization	CVE-2026-44327	2026-05-29 01:24	2026-05-28	Show	GitHub Exploit DB Packet Storm

4124	8.2	HIGH Network	free5gc	free5gc	free5GC is an open-source implementation of the 5G core network. Prior to 4.2.2, free5GC's SMF mounts the UPI management route group without inbound OAuth2 middleware. On top of that, the DELETE /upi…	CWE-306 CWE-476 CWE-862 Missing Authentication for Critical Function NULL Pointer Dereference Missing Authorization	CVE-2026-44328	2026-05-29 01:24	2026-05-28	Show	GitHub Exploit DB Packet Storm

4125	10.0	CRITICAL Network	free5gc	free5gc	free5GC is an open-source implementation of the 5G core network. Prior to 4.2.2, free5GC's SMF mounts the UPI management route group without OAuth2/bearer-token authorization middleware. A network at…	CWE-306 CWE-862 Missing Authentication for Critical Function Missing Authorization	CVE-2026-44329	2026-05-29 01:23	2026-05-28	Show	GitHub Exploit DB Packet Storm

4126	8.8	HIGH Network	-	-	A weakness has been identified in UTT HiPER 1200GW up to 2.5.3-170306. Affected is an unknown function of the file /goform/formPptpClientConfig of the component Web Management Interface. This manipul…	CWE-119 CWE-121 Incorrect Access of Indexable Resource ('Range Error') Stack-based Buffer Overflow	CVE-2026-9628	2026-05-29 01:16	2026-05-27	Show	GitHub Exploit DB Packet Storm

4127	6.3	MEDIUM Network	-	-	A vulnerability was found in itsourcecode Courier Management System 1.0. The affected element is an unknown function of the file /parcel_list.php. Performing a manipulation of the argument s results …	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-9607	2026-05-29 01:16	2026-05-27	Show	GitHub Exploit DB Packet Storm

4128	4.3	MEDIUM Network	-	-	A weakness has been identified in SourceCodester CET Automated Grading System with AI Predictive Analytics 1.0. This impacts an unknown function of the file /index.php of the component SQL Handler. E…	CWE-200 CWE-209 Information Exposure Information Exposure Through an Error Message	CVE-2026-9583	2026-05-29 01:16	2026-05-27	Show	GitHub Exploit DB Packet Storm

4129	7.3	HIGH Network	-	-	A vulnerability has been found in sambitraj STUDENT-MANAGEMENT-SYSTEM up to 56ba287f2e9031523ccb4244cb6e3fe530e4e5d5. The affected element is an unknown function of the component Dashboard. Such mani…	CWE-266 CWE-284 Incorrect Privilege Assignment Improper Access Control	CVE-2026-9562	2026-05-29 01:16	2026-05-27	Show	GitHub Exploit DB Packet Storm

4130	6.3	MEDIUM Network	-	-	A vulnerability was identified in Totolink CA750-PoE 6.2c.510. This affects the function setWebWlanIdx of the file /cgi-bin/cstecgi.cgi of the component Setting Handler. Such manipulation of the argu…	CWE-77 CWE-78 Command Injection OS Command	CVE-2026-9511	2026-05-29 01:16	2026-05-26	Show	GitHub Exploit DB Packet Storm