Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 28, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
241851 6.8 警告 netwerk - Netwerk Smart Publisher の admin/op/disp.php における任意の PHP コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2008-0503 2012-09-25 16:59 2008-01-31 Show GitHub Exploit DB Packet Storm
241852 10 危険 mamboxchange - Mambo LaiThai における脆弱性 CWE-noinfo
情報不足 		CVE-2008-0500 2012-09-25 16:59 2008-01-30 Show GitHub Exploit DB Packet Storm
241853 7.5 危険 mamboxchange - Mambo LaiThai における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0499 2012-09-25 16:59 2008-01-30 Show GitHub Exploit DB Packet Storm
241854 4.3 警告 Nucleus - Nucleus CMS の action.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-0497 2012-09-25 16:59 2008-01-30 Show GitHub Exploit DB Packet Storm
241855 9.3 危険 Irfan Skiljan - IrfanView の FlashPix プラグインの fpx.dll における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2008-0493 2012-09-25 16:59 2008-01-30 Show GitHub Exploit DB Packet Storm
241856 6.8 警告 persits - Persits XUpload の XUpload.ocx におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-0492 2012-09-25 16:59 2008-01-30 Show GitHub Exploit DB Packet Storm
241857 7.5 危険 MPlayer project
Xine		 - Xine-lib で使用される MPlayer などにおける任意のコードを実行される脆弱性 CWE-189
数値処理の問題 		CVE-2008-0486 2012-09-25 16:59 2008-02-5 Show GitHub Exploit DB Packet Storm
241858 7.5 危険 Mambo Communities Pty - Mambo 用などの CatalogShop コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0557 2012-09-25 16:59 2008-02-4 Show GitHub Exploit DB Packet Storm
241859 7.5 危険 openca - OpenCA PKI におけるクロスサイトリクエストフォージェリの脆弱性 CWE-264
CWE-352
CVE-2008-0556 2012-09-25 16:59 2008-02-18 Show GitHub Exploit DB Packet Storm
241860 9.3 危険 sejoong namo - Sejoong Namo ActiveSquare における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2008-0551 2012-09-25 16:59 2008-02-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 28, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
131 4.3 MEDIUM
Network 		- - Unauthenticated Cross Site Request Forgery (CSRF) in Abandoned Cart Lite for WooCommerce <= 6.8.0 versions. New CWE-352
 Origin Validation Error 		CVE-2026-57637 2026-06-27 02:16 2026-06-27 Show GitHub Exploit DB Packet Storm
132 8.8 HIGH
Network 		- - Zed Attack Proxy (ZAP) ViewState add-on before version 4 contains an insecure deserialization vulnerability that allows attackers who control a proxied web server to achieve arbitrary code execution … New CWE-502
 Deserialization of Untrusted Data 		CVE-2026-57527 2026-06-27 02:16 2026-06-27 Show GitHub Exploit DB Packet Storm
133 7.3 HIGH
Local 		vim vim Vim is an open source, command line text editor. From 9.1.1784 until 9.2.0678, when the bundled zip plugin autoload/zip.vim falls back to PowerShell to browse, read, extract, update or delete entries… New CWE-77
Command Injection 		CVE-2026-57453 2026-06-27 02:16 2026-06-26 Show GitHub Exploit DB Packet Storm
134 7.2 HIGH
Network 		- - Dell Wyse Management Suite, versions prior to WMS 5.5 HF1, contain an Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability. A high privileged attacker with rem… New CWE-22
Path Traversal 		CVE-2026-49506 2026-06-27 02:16 2026-06-25 Show GitHub Exploit DB Packet Storm
135 6.0 MEDIUM
Network 		- - GitHub MCP Server is GitHub's official MCP Server. From 0.22.0 until 1.1.2, when running in HTTP mode with --lockdown-mode enabled, the RepoAccessCache is implemented as a process-global singleton in… New CWE-284
Improper Access Control 		CVE-2026-48529 2026-06-27 02:16 2026-06-27 Show GitHub Exploit DB Packet Storm
136 7.5 HIGH
Network 		- - The TIFF decoder does not set a limit on the size of tiles in tiled images, permitting a malicious or corrupt image containing a very large tile to cause unbounded memory consumption. New - CVE-2026-46602 2026-06-27 02:16 2026-06-26 Show GitHub Exploit DB Packet Storm
137 7.5 HIGH
Network 		- - The webp decoder can panic when processing a VP8 chunk with dimensions that do not match the canvas size. New - CVE-2026-46601 2026-06-27 02:16 2026-06-26 Show GitHub Exploit DB Packet Storm
138 7.5 HIGH
Network 		- - An integer overflow in the PSD parser compnent of FastStone Image Viewer v8.3 allows attackers to execute arbitrary code or cause a Denial of Service (DoS) via supplying a crafted PSD file. New CWE-400
 Uncontrolled Resource Consumption 		CVE-2026-30041 2026-06-27 02:16 2026-06-27 Show GitHub Exploit DB Packet Storm
139 6.5 MEDIUM
Network 		- - A heap overflow in the FSViewer.exe process of FastStone Image Viewer v8.3 allows attackers to cause a execute arbitrary code in the context of the current process via supplying a crafted JPEG 2000 (… New CWE-122
Heap-based Buffer Overflow 		CVE-2026-30040 2026-06-27 02:16 2026-06-27 Show GitHub Exploit DB Packet Storm
140 8.3 HIGH
Network 		- - The WSO2 API Manager's message flow component, when processing WS-Addressing headers, does not sufficiently validate or restrict user-controlled input within these headers. This omission allows an at… New CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-2053 2026-06-27 02:16 2026-06-26 Show GitHub Exploit DB Packet Storm