Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 23, 2026, 2:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
233971 6.8 警告 slaed - SLAED CMS の function/sources.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-0458 2012-12-20 18:34 2008-01-25 Show GitHub Exploit DB Packet Storm
233972 10 危険 シマンテック - Symantec Backup Exec System Recovery Manager で使用される Symantec LiveState Apache Tomcat サーバで稼動している FileUpload クラスにおける任意の JSP ファイルをアップロードされる脆弱性 CWE-20
不適切な入力確認 		CVE-2008-0457 2012-12-20 18:34 2008-02-4 Show GitHub Exploit DB Packet Storm
233973 5 警告 siteman - Siteman の articles.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-0452 2012-12-20 18:34 2008-01-24 Show GitHub Exploit DB Packet Storm
233974 7.5 危険 rocksalt international - VP-ASP Shopping Cart の paypalresult.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0449 2012-12-20 18:34 2008-01-24 Show GitHub Exploit DB Packet Storm
233975 7.5 危険 small axe solutions - Small Axe Weblog の inc/linkbar.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-0442 2012-12-20 18:34 2008-01-24 Show GitHub Exploit DB Packet Storm
233976 6.8 警告 東芝 - Toshiba Surveillance RecordSend ActiveX コントロールにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-0399 2012-12-20 18:34 2008-01-23 Show GitHub Exploit DB Packet Storm
233977 6.8 警告 WordPress.org - WordPress 用の WP-Forum プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0388 2012-12-20 18:34 2008-01-22 Show GitHub Exploit DB Packet Storm
233978 7.5 危険 urulu - Urulu の server/widgetallocator.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0385 2012-12-20 18:34 2008-02-29 Show GitHub Exploit DB Packet Storm
233979 6.8 警告 softpedia - Small Axe Weblog の inc/linkbar.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-0376 2012-12-20 18:34 2008-01-22 Show GitHub Exploit DB Packet Storm
233980 6.8 警告 Pixelpost.org - Pixelpost の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0358 2012-12-20 18:34 2008-01-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 23, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
591 6.5 MEDIUM
Network 		- - Cap-go Console < 12.28.2 contains a denial-of-service vulnerability in its account deletion flow that allows an attacker to block authentication and onboarding functions by triggering account deletio… CWE-645
 Overly Restrictive Account Lockout Mechanism 		CVE-2026-53982 2026-06-16 05:50 2026-06-13 Show GitHub Exploit DB Packet Storm
592 10.0 CRITICAL
Network 		- - SimpleHelp versions 5.5.15 and prior and 6.0 pre-release versions contain an authentication bypass vulnerability in the OIDC authentication flow. When OIDC authentication is configured, identity toke… CWE-347
 Improper Verification of Cryptographic Signature 		CVE-2026-48558 2026-06-16 05:50 2026-06-13 Show GitHub Exploit DB Packet Storm
593 4.3 MEDIUM
Network 		- - Capgo before 12.128.2 fails to delete previously uploaded profile images from backend storage when users replace or remove them. Attackers can access orphaned image files through previously generated… CWE-459
 Incomplete Cleanup 		CVE-2026-53867 2026-06-16 05:50 2026-06-13 Show GitHub Exploit DB Packet Storm
594 7.5 HIGH
Network 		- - Capgo before 12.128.2 contains a denial of service vulnerability allowing attackers to register accounts using arbitrary email addresses without verification, then initiate deletion to lock emails in… CWE-306
Missing Authentication for Critical Function 		CVE-2026-53868 2026-06-16 05:50 2026-06-13 Show GitHub Exploit DB Packet Storm
595 - - - The Iptanus File Upload WordPress plugin before 5.1.7 does not implement proper file handling when the duplicatepolicy setting is configured to "maintain both." Due to a Time-of-Check to Time-of-Use … - CVE-2025-15546 2026-06-16 05:50 2026-06-14 Show GitHub Exploit DB Packet Storm
596 7.8 HIGH
Local 		- - Heap buffer out-of-bounds read vulnerability in Avira Antivirus engine when scanning a malformed PDF file may allow Local Execution of Code or Denial-of-Service of the antivirus engine process. This… CWE-125
Out-of-bounds Read 		CVE-2025-7002 2026-06-16 05:49 2026-06-13 Show GitHub Exploit DB Packet Storm
597 7.8 HIGH
Local 		- - Heap buffer out-of-bounds read vulnerability in Avira Antivirus engine when scanning a malformed PDF file may allow Local Execution of Code or Denial-of-Service of the antivirus engine process. This… CWE-125
Out-of-bounds Read 		CVE-2025-7003 2026-06-16 05:49 2026-06-13 Show GitHub Exploit DB Packet Storm
598 7.8 HIGH
Local 		- - Heap buffer out-of-bounds read vulnerability in Avira Antivirus engine when scanning a malformed Windows MSI file may allow Local Execution of Code or Denial-of-Service of the antivirus engine proces… CWE-125
Out-of-bounds Read 		CVE-2025-7017 2026-06-16 05:49 2026-06-13 Show GitHub Exploit DB Packet Storm
599 5.5 MEDIUM
Local 		- - Null pointer dereference vulnerability in Avira Antivirus engine when scanning a malformed Windows PE file may allow Denial-of-Service of the antivirus engine process. This issue affects Avira Antiv… CWE-476
 NULL Pointer Dereference 		CVE-2025-7018 2026-06-16 05:49 2026-06-13 Show GitHub Exploit DB Packet Storm
600 7.8 HIGH
Local 		- - Heap buffer out-of-bounds write vulnerability in Avast Antivirus when scanning a malformed Windows PE file may allow Local Execution of Code or Denial-of-Service of the antivirus process. This issue… CWE-787
 Out-of-bounds Write 		CVE-2025-7004 2026-06-16 05:49 2026-06-13 Show GitHub Exploit DB Packet Storm