Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
232751 7.5 危険 virtual programming - VP-ASP Shopping Cart の shopgiftregsearch.asp における SQL インジェクションの脆弱性 - CVE-2007-0224 2012-12-20 18:19 2007-01-12 Show GitHub Exploit DB Packet Storm
232752 6.8 警告 The phpMyAdmin Project - phpMyAdmin におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-0204 2012-12-20 18:19 2007-01-11 Show GitHub Exploit DB Packet Storm
232753 10 危険 The phpMyAdmin Project - phpMyAdmin における脆弱性 - CVE-2007-0203 2012-12-20 18:19 2007-01-11 Show GitHub Exploit DB Packet Storm
232754 10 危険 tis - TIS Internet FWTK の ftp-gw におけるバッファオーバーフローの脆弱性 - CVE-2007-0201 2012-12-20 18:19 2007-01-11 Show GitHub Exploit DB Packet Storm
232755 6.8 警告 サン・マイクロシステムズ - iPlanet Web Server の /search におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-0183 2012-12-20 18:19 2007-01-12 Show GitHub Exploit DB Packet Storm
232756 7.5 危険 scriptaty - magic photo storage の Web サイトにおける PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-0182 2012-12-20 18:19 2007-01-12 Show GitHub Exploit DB Packet Storm
232757 7.5 危険 scriptaty - magic photo storage の Web サイトにおける PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-0181 2012-12-20 18:19 2007-01-10 Show GitHub Exploit DB Packet Storm
232758 7.5 危険 PHPKIT - PHPKIT の comment.php における SQL インジェクションの脆弱性 - CVE-2007-0179 2012-12-20 18:19 2007-01-10 Show GitHub Exploit DB Packet Storm
232759 7.5 危険 sina - Sina UC2006 の BRWOSSRE2UC.dll ActiveX コントロールにおけるバッファオーバーフローの脆弱性 - CVE-2007-0174 2012-12-20 18:19 2007-01-10 Show GitHub Exploit DB Packet Storm
232760 7.5 危険 voice of web - AllMyGuests における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-0172 2012-12-20 18:19 2007-01-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
211 5.3 MEDIUM
Local 		- - A security flaw has been discovered in NousResearch hermes-agent up to 2026.4.23. This affects the function _sync_anthropic_entry_from_credentials_file of the file agent/credential_pool.py of the com… New CWE-287
Improper Authentication 		CVE-2026-10548 2026-06-3 23:16 2026-06-2 Show GitHub Exploit DB Packet Storm
212 7.8 HIGH
Local 		google android In resumeConfigurationDispatch of ActivityRecord.java, there is a possible background application launch (bal) due to a logic error in the code. This could lead to local escalation of privilege with … New CWE-693
 Protection Mechanism Failure 		CVE-2026-0077 2026-06-3 23:16 2026-06-2 Show GitHub Exploit DB Packet Storm
213 7.8 HIGH
Local 		google android In multiple functions, there is a possible way to access the contacts database due to a SQL injection. This could lead to local escalation of privilege with no additional execution privileges needed.… New CWE-89
SQL Injection 		CVE-2026-0075 2026-06-3 23:16 2026-06-2 Show GitHub Exploit DB Packet Storm
214 - - - An out-of-bounds read in the ext4_ext_binsearch_idx function in src/ext4_extent.c of the lwext4 1.0.0 library allows attackers to cause a denial of service by supplying a specially crafted ext4 files… New - CVE-2025-70101 2026-06-3 23:16 2026-06-3 Show GitHub Exploit DB Packet Storm
215 - - - A divide-by-zero vulnerability in the ext4_block_set_lb_size function in src/ext4_blockdev.c of the lwext4 1.0.0 library allows attackers to cause a denial of service by providing a malformed ext4 fi… New - CVE-2025-70100 2026-06-3 23:16 2026-06-3 Show GitHub Exploit DB Packet Storm
216 - - - SWUpdate before 2026.05 is affected by a time-of-check time-of-use (TOCTOU) race condition that allows local unprivileged attackers to escalate privileges to root or install untrusted contents using … New CWE-367
 Time-of-check Time-of-use (TOCTOU) Race Condition 		CVE-2025-41259 2026-06-3 23:16 2026-06-3 Show GitHub Exploit DB Packet Storm
217 7.8 HIGH
Local 		google android In setUserDisclaimerAcknowledged of CarDevicePolicyService.java, there is a possible way to bypass the user dialog when adding an account to a managed device due to a missing permission check. This c… New CWE-862
 Missing Authorization 		CVE-2025-26418 2026-06-3 23:16 2026-06-2 Show GitHub Exploit DB Packet Storm
218 7.8 HIGH
Local 		google android In many functions of ComputerEngine.java, there is a possible way to access URIs across users due to a logic error in the code. This could lead to local escalation of privilege with no additional exe… New CWE-284
Improper Access Control 		CVE-2025-22426 2026-06-3 23:16 2026-06-2 Show GitHub Exploit DB Packet Storm
219 4.3 MEDIUM
Network 		- - An improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in Backup Task functionality in Synology Hyper Backup before 4.1.2-4036 allows remote authenticated use… New CWE-22
Path Traversal 		CVE-2024-47273 2026-06-3 23:16 2026-06-3 Show GitHub Exploit DB Packet Storm
220 4.1 MEDIUM
Network 		- - An improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in Backup.Repository webapi component in Synology Hyper Backup before 4.1.2-4036 allows remote authenti… New CWE-22
Path Traversal 		CVE-2024-47263 2026-06-3 23:16 2026-06-3 Show GitHub Exploit DB Packet Storm