Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 7, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
232771 7.5 危険 techexcel inc. - DevTrack における SQL インジェクションの脆弱性 - CVE-2007-0853 2012-12-20 18:19 2007-02-8 Show GitHub Exploit DB Packet Storm
232772 6.8 警告 techexcel inc. - DevTrack におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-0852 2012-12-20 18:19 2007-02-8 Show GitHub Exploit DB Packet Storm
232773 7.5 危険 syscp team - SysCP の scripts/cronscript.php における任意のコードを実行される脆弱性 - CVE-2007-0850 2012-12-20 18:19 2007-02-8 Show GitHub Exploit DB Packet Storm
232774 7.2 危険 syscp team - SysCP の scripts/cronscript.php における権限を取得される脆弱性 - CVE-2007-0849 2012-12-20 18:19 2007-02-8 Show GitHub Exploit DB Packet Storm
232775 10 危険 vbdrupal - vbDrupal における脆弱性 - CVE-2007-0841 2012-12-20 18:19 2007-01-30 Show GitHub Exploit DB Packet Storm
232776 7.5 危険 Wafer - Valarsoft WebMatic の index/index_album.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-0839 2012-12-20 18:19 2007-02-7 Show GitHub Exploit DB Packet Storm
232777 1.2 注意 VMware - VMware Workstation におけるクリップボードコンテンツを読み取られる脆弱性 - CVE-2007-0833 2012-12-20 18:19 2007-02-7 Show GitHub Exploit DB Packet Storm
232778 1.2 注意 VMware - VMware Workstation における重要な情報を取得される脆弱性 - CVE-2007-0832 2012-12-20 18:19 2007-02-7 Show GitHub Exploit DB Packet Storm
232779 1.9 注意 Slackware - Slackware Linux 上で稼動する xterm におけるファイルパーミッションを回避される脆弱性 - CVE-2007-0823 2012-12-20 18:19 2007-02-7 Show GitHub Exploit DB Packet Storm
232780 4.3 警告 uapplication - Uapplication Uphotogallery の images_archive.asp におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-0815 2012-12-20 18:19 2007-02-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 8, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
991 6.1 MEDIUM
Local 		- - Memory allocation with excessive size value vulnerability in Samsung Open Source rlottie allows Excessive Allocation. This issue affects rlottie: before 0b4e308fa88c72cbb60cc8a2c1d2c2ad89b101dd. New CWE-789
 Memory Allocation with Excessive Size Value 		CVE-2026-47319 2026-06-5 00:27 2026-06-4 Show GitHub Exploit DB Packet Storm
992 6.1 MEDIUM
Local 		- - Access of uninitialized pointer, Uncontrolled Recursion vulnerability in Samsung Open Source rlottie allows Pointer Manipulation, Oversized Serialized Data Payloads. This issue affects rlottie: befo… New CWE-674
CWE-824
 Uncontrolled Recursion
 Access of Uninitialized Pointer 		CVE-2026-47320 2026-06-5 00:27 2026-06-4 Show GitHub Exploit DB Packet Storm
993 6.1 MEDIUM
Local 		- - Integer overflow or wraparound vulnerability in Samsung Open Source rlottie allows Integer Attacks. This issue affects rlottie: before 21292665023e5074b38254432716866d00f1985f. New CWE-190
 Integer Overflow or Wraparound 		CVE-2026-49510 2026-06-5 00:27 2026-06-4 Show GitHub Exploit DB Packet Storm
994 6.1 MEDIUM
Local 		- - Out-of-bounds write vulnerability in Samsung Open Source rlottie allows Overflow Buffers. This issue affects rlottie: before dcfde72eae1b0464dc0dd760aec00ada6a148635. New CWE-787
 Out-of-bounds Write 		CVE-2026-8916 2026-06-5 00:27 2026-06-4 Show GitHub Exploit DB Packet Storm
995 - - - This vulnerability exists in GX Earth ONT models due to improper handling of user-supplied input in multiple diagnostic functions in its web management interface. An authenticated remote attacker cou… New CWE-78
OS Command  		CVE-2026-45431 2026-06-5 00:26 2026-06-4 Show GitHub Exploit DB Packet Storm
996 - - - This vulnerability exists in GX Earth ONT models due to the transmission of user credentials in plaintext over HTTP in its web management interface. A remote attacker could exploit this vulnerability… New CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2026-45432 2026-06-5 00:26 2026-06-4 Show GitHub Exploit DB Packet Storm
997 - - - This vulnerability exists in GX Earth 2022 ONT models due to the presence of hardcoded RSA private key within the device firmware. A remote attacker could exploit this vulnerability by extracting the… New CWE-321
 Use of Hard-coded Cryptographic Key 		CVE-2026-45433 2026-06-5 00:26 2026-06-4 Show GitHub Exploit DB Packet Storm
998 9.1 CRITICAL
Network 		- - A vulnerability in mlflow/mlflow versions prior to 3.11.0 allows for the resolution of environment variables in AI Gateway secrets, which can be exploited to exfiltrate sensitive server-side environm… Update CWE-201
 Insertion of Sensitive Information Into Sent Data 		CVE-2026-4035 2026-06-5 00:25 2026-06-3 Show GitHub Exploit DB Packet Storm
999 6.1 MEDIUM
Network 		- - A vulnerability in jupyter-server versions 1.12.0 through 2.17.0 allows an attacker to bypass CORS origin validation when the `allow_origin_pat` configuration is used. The issue arises from the use o… Update CWE-346
 Origin Validation Error 		CVE-2026-6657 2026-06-5 00:25 2026-06-4 Show GitHub Exploit DB Packet Storm
1000 - - - A local privilege escalation vulnerability exists in Forcepoint VPN Client that allows a local non-administrative user to escalate privileges to SYSTEM. This issue affects VPN Client for Windows: ver… New CWE-250
 Execution with Unnecessary Privileges 		CVE-2025-12694 2026-06-5 00:25 2026-06-4 Show GitHub Exploit DB Packet Storm