Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 13, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
233421	7.5	危険	シマンテック	-	Windows Servers 用の Symantec Backup Exec におけるヒープベースのバッファオーバーフローの脆弱性	-	CVE-2007-3509	2012-12-20 18:19	2007-07-11	Show	GitHub Exploit DB Packet Storm

233422	6.4	警告	qt-cute	-	QuickTalk フォーラムにおけるディレクトリトラバーサルの脆弱性	-	CVE-2007-3505	2012-12-20 18:19	2007-07-2	Show	GitHub Exploit DB Packet Storm

233423	10	危険	xeforum	-	Xeweb XEForum における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2007-3500	2012-12-20 18:19	2007-06-29	Show	GitHub Exploit DB Packet Storm

233424	6.4	警告	slackroll	-	SlackRoll におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-3499	2012-12-20 18:19	2007-06-29	Show	GitHub Exploit DB Packet Storm

233425	4.3	警告	SAP	-	SAP NetWeaver Nw04 の BC-WD-JAV におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3496	2012-12-20 18:19	2007-06-29	Show	GitHub Exploit DB Packet Storm

233426	4.3	警告	SAP	-	SAP Basis コンポーネントの BC-MID-ICF におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3495	2012-12-20 18:19	2007-06-29	Show	GitHub Exploit DB Packet Storm

233427	7.5	危険	Progress Software Corporation	-	Progress Software OpenEdge の _mprosrv におけるバッファオーバーフローの脆弱性	-	CVE-2007-3491	2012-12-20 18:19	2007-06-29	Show	GitHub Exploit DB Packet Storm

233428	4.3	警告	Yandex	-	Yandex Server におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3485	2012-12-20 18:19	2007-06-28	Show	GitHub Exploit DB Packet Storm

233429	10	危険	BlackBerry	-	Research in Motion BlackBerry Enterprise Server におけるマルウェアを読み込む脆弱性	-	CVE-2007-3483	2012-12-20 18:19	2007-06-28	Show	GitHub Exploit DB Packet Storm

233430	7.8	危険	VideoLAN	-	VideoLAN VLC Media Player の input.c におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-3468	2012-12-20 18:19	2007-06-27	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
171	7.5	HIGH Network	openvm	openvm	OpenVM is a performant and modular zkVM framework built for customization and extensibility. Prior to version 1.6.0, the openvm-pairing guest library's try_honest_pairing_check function invokes Theor… New	CWE-20 NVD-CWE-noinfo Improper Input Validation	CVE-2026-46669	2026-06-13 04:38	2026-06-11	Show	GitHub Exploit DB Packet Storm

172	4.6	MEDIUM Network	umbraco	umbraco_cms	Umbraco is an ASP.NET CMS. From version 14.0.0 to before version 17.4.0, authenticated users are able to inject HTML into an input field, which is rendered in the confirmation dialog without proper o… Update	CWE-79 Cross-site Scripting	CVE-2026-46609	2026-06-13 04:34	2026-06-11	Show	GitHub Exploit DB Packet Storm

173	6.1	MEDIUM Network	umbraco	umbraco_cms	Umbraco is an ASP.NET CMS. Prior to versions 13.14.0 and 17.4.0, some of the Surface Controllers in the CMS provide to support member related operations fail to validate redirect URLs, making Razor t… Update	CWE-601 Open Redirect	CVE-2026-46616	2026-06-13 04:34	2026-06-11	Show	GitHub Exploit DB Packet Storm

174	8.8	HIGH Network	apache	ofbiz	Improper Control of Generation of Code ('Code Injection') vulnerability in Apache OFBiz allows a low-privileged authenticated user with Content/DataResource editing privileges to perform template inj… New	CWE-94 Code Injection	CVE-2026-50223	2026-06-13 04:30	2026-06-11	Show	GitHub Exploit DB Packet Storm

175	7.8	HIGH Local	microsoft	pc_manager	Improper access control in Microsoft PC Manager allows an authorized attacker to bypass a security feature locally. Update	CWE-284 Improper Access Control	CVE-2026-49161	2026-06-13 04:30	2026-06-10	Show	GitHub Exploit DB Packet Storm

176	9.8	CRITICAL Network	vmware	spring_for_graphql	Spring for GraphQL applications are vulnerable to Unsafe Deserialization when processing paginated GraphQL queries. An attacker can craft a malicious GraphQL request that can lead to Remote Code Exec… New	CWE-502 Deserialization of Untrusted Data	CVE-2026-41699	2026-06-13 04:28	2026-06-11	Show	GitHub Exploit DB Packet Storm

177	8.1	HIGH Network	microsoft	teams	Improper neutralization of special elements in output used by a downstream component ('injection') in Microsoft Teams for Android allows an authorized attacker to disclose information over a network. Update	CWE-74 Injection	CVE-2026-42835	2026-06-13 04:28	2026-06-10	Show	GitHub Exploit DB Packet Storm

178	8.2	HIGH Local	adobe	acrobat_dc acrobat_reader_dc acrobat	Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by an Uncontrolled Search Path Element vulnerability that could result in arbitrary code execution in the context of the cu… Update	CWE-427 Uncontrolled Search Path Element	CVE-2026-47937	2026-06-13 04:23	2026-06-10	Show	GitHub Exploit DB Packet Storm

179	5.5	MEDIUM Local	adobe	acrobat_dc acrobat_reader_dc acrobat	Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this v… Update	CWE-125 Out-of-bounds Read	CVE-2026-47926	2026-06-13 04:23	2026-06-10	Show	GitHub Exploit DB Packet Storm

180	5.5	MEDIUM Local	adobe	acrobat_dc acrobat_reader_dc acrobat	Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could result in an application denial-of-service. An attacker could… Update	CWE-190 Integer Overflow or Wraparound	CVE-2026-47925	2026-06-13 04:23	2026-06-10	Show	GitHub Exploit DB Packet Storm