Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 14, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
233501	10	危険	yabb	-	YaBB における CRLF インジェクションの脆弱性	-	CVE-2007-3208	2012-12-20 18:19	2007-06-14	Show	GitHub Exploit DB Packet Storm

233502	7.5	危険	software602	-	602Pro LAN SUITE 2003 の SMTP サービスにおけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2007-3203	2012-12-20 18:19	2007-06-12	Show	GitHub Exploit DB Packet Storm

233503	7.1	危険	winpt	-	WinPT における間違ったユーザ ID 鍵をインストールされる脆弱性	-	CVE-2007-3201	2012-12-20 18:19	2007-06-12	Show	GitHub Exploit DB Packet Storm

233504	10	危険	phpmyinventory	-	phpMyInventory の Includes/global.inc.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-3270	2012-12-20 18:19	2007-06-19	Show	GitHub Exploit DB Packet Storm

233505	5	警告	vincent hor	-	Calendarix における重要な情報を取得される脆弱性	-	CVE-2007-3259	2012-12-20 18:19	2007-06-26	Show	GitHub Exploit DB Packet Storm

233506	5	警告	vincent hor	-	Calendarix の calendar.php における重要な情報を取得される脆弱性	-	CVE-2007-3258	2012-12-20 18:19	2007-06-27	Show	GitHub Exploit DB Packet Storm

233507	4	警告	xythos	-	XEDM などにおけるマルウェアを配布するドキュメントと任意の Content-Type HTTP ヘッダを関連づけられる脆弱性	-	CVE-2007-3256	2012-12-20 18:19	2007-06-27	Show	GitHub Exploit DB Packet Storm

233508	6.5	警告	xythos	-	XEDM におけるクロスサイトリクエストフォージェリの脆弱性	-	CVE-2007-3255	2012-12-20 18:19	2007-06-27	Show	GitHub Exploit DB Packet Storm

233509	3.5	注意	xythos	-	XEDM におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3254	2012-12-20 18:19	2007-06-27	Show	GitHub Exploit DB Packet Storm

233510	7.8	危険	portalapp	-	PortalApp におけるデータベースをダウンロードされる脆弱性	-	CVE-2007-3252	2012-12-20 18:19	2007-06-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
91	6.5	MEDIUM Network	-	-	Nezha Monitoring is a self-hostable, lightweight, servers and websites monitoring and O&M tool. From version 1.4.0 to before version 2.0.9, any authenticated non-admin member can connect to the serve… New	CWE-200 Information Exposure	CVE-2026-47124	2026-06-13 07:16	2026-06-13	Show	GitHub Exploit DB Packet Storm

92	7.1	HIGH Network	-	-	Nezha Monitoring is a self-hostable, lightweight, servers and websites monitoring and O&M tool. From version 1.4.0 to before version 2.0.8, a RoleMember can fire other users' cron tasks via AlertRule… New	CWE-862 CWE-863 Missing Authorization Incorrect Authorization	CVE-2026-47120	2026-06-13 07:16	2026-06-13	Show	GitHub Exploit DB Packet Storm

93	9.9	CRITICAL Network	-	-	Nezha Monitoring is a self-hostable, lightweight, servers and websites monitoring and O&M tool. From version 1.4.0 to before version 2.0.8, a RoleMember user can create a scheduled cron task with Cov… New	CWE-78 CWE-269 CWE-862 OS Command Improper Privilege Management Missing Authorization	CVE-2026-46716	2026-06-13 07:16	2026-06-13	Show	GitHub Exploit DB Packet Storm

94	-		-	-	Software installed and run as a non-privileged user may conduct GPU system calls to write to arbitrary freed physical pages. Physical memory allocated and freed, without the deferred free mechanis… New	CWE-416 Use After Free	CVE-2026-41158	2026-06-13 07:16	2026-06-13	Show	GitHub Exploit DB Packet Storm

95	-		-	-	A web page that contains unusual WebGPU content loaded into the GPU GLES render process and can trigger an out-of-bound write in the GPU user-space driver, leading to memory corruption and possible b… New	CWE-787 Out-of-bounds Write	CVE-2026-41157	2026-06-13 07:16	2026-06-13	Show	GitHub Exploit DB Packet Storm

96	-		-	-	An attacker could cooperatively pass data from one secure GPU process to another secure GPU process through shared secure memory allocations in the kernel module. Additionally, an attacker could disr… New	CWE-653 Improper Isolation or Compartmentalization	CVE-2026-41155	2026-06-13 07:16	2026-06-13	Show	GitHub Exploit DB Packet Storm

97	-		-	-	Software installed and run as a non-privileged user may conduct intentional GPU sparse memory API calls to cause out of bounds write in the kernel. The product incorrectly indexes internal state w… New	CWE-787 Out-of-bounds Write	CVE-2026-34195	2026-06-13 07:16	2026-06-13	Show	GitHub Exploit DB Packet Storm

98	6.3	MEDIUM Network	-	-	A weakness has been identified in CodeAstro Human Resource Management System 1.0. This vulnerability affects the function Invoice of the file \application\controllers\Payroll.php of the component Pay… New	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-12131	2026-06-13 07:16	2026-06-13	Show	GitHub Exploit DB Packet Storm

99	5.5	MEDIUM Local	-	-	Stack overflow vulnerability in Avast Antivirus when scanning a malformed Office Open XML file may allow Denial-of-Service of the antivirus process. This issue affects Avast Antivirus, AVG Antivirus… New	CWE-121 Stack-based Buffer Overflow	CVE-2025-7019	2026-06-13 07:16	2026-06-13	Show	GitHub Exploit DB Packet Storm

100	5.5	MEDIUM Local	-	-	Null pointer dereference vulnerability in Avira Antivirus engine when scanning a malformed Windows PE file may allow Denial-of-Service of the antivirus engine process. This issue affects Avira Antiv… New	CWE-476 NULL Pointer Dereference	CVE-2025-7018	2026-06-13 07:16	2026-06-13	Show	GitHub Exploit DB Packet Storm