Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 29, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
242331 10 危険 news - MicroNews における管理権限を取得される脆弱性 CWE-287
不適切な認証 		CVE-2008-0377 2012-09-25 16:59 2008-01-22 Show GitHub Exploit DB Packet Storm
242332 10 危険 oki printing solutions - OKI C5510MFP Printer CU などにおける管理者アクセス権を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-0375 2012-09-25 16:59 2008-01-22 Show GitHub Exploit DB Packet Storm
242333 10 危険 oki printing solutions - OKI C5510MFP Printer CU などにおける管理者のパスワードを取得される脆弱性 CWE-310
暗号の問題 		CVE-2008-0374 2012-09-25 16:59 2008-01-22 Show GitHub Exploit DB Packet Storm
242334 7.5 危険 The PHP Group - PHP F1 Max's File Uploader における PHP ファイルを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-0373 2012-09-25 16:59 2008-01-22 Show GitHub Exploit DB Packet Storm
242335 6.9 警告 IBM - IBM IDS における任意のファイルを作成される脆弱性 CWE-noinfo
情報不足 		CVE-2008-0369 2012-09-25 16:59 2008-01-18 Show GitHub Exploit DB Packet Storm
242336 7.2 危険 IBM - IBM IDS における任意のファイルを作成される脆弱性 CWE-noinfo
情報不足 		CVE-2008-0368 2012-09-25 16:59 2008-01-18 Show GitHub Exploit DB Packet Storm
242337 4.3 警告 instituto politicnico nacional - GradMan の agregar_info.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-0361 2012-09-25 16:59 2008-01-18 Show GitHub Exploit DB Packet Storm
242338 4.3 警告 IBM - IBM Lotus Sametime のチャットクライアントにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-0354 2012-09-25 16:59 2008-01-18 Show GitHub Exploit DB Packet Storm
242339 5 警告 miniweb http server - MiniWeb HTTP Server の http.c におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-0338 2012-09-25 16:59 2008-01-17 Show GitHub Exploit DB Packet Storm
242340 7.5 危険 miniweb http server - MiniWeb HTTP Server の http.c におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-0337 2012-09-25 16:59 2008-01-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 30, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1101 6.5 MEDIUM
Network 		- - Charging station authentication identifiers are publicly accessible via web-based mapping platforms. CWE-522
 Insufficiently Protected Credentials 		CVE-2026-44622 2026-06-26 23:17 2026-06-26 Show GitHub Exploit DB Packet Storm
1102 9.4 CRITICAL
Network 		- - WebSocket endpoints lack proper authentication mechanisms, enabling attackers to impersonate charging stations. As a result, attackers can exploit this weakness to gain unauthorized access to sensiti… CWE-306
Missing Authentication for Critical Function 		CVE-2026-40702 2026-06-26 23:17 2026-06-26 Show GitHub Exploit DB Packet Storm
1103 7.5 HIGH
Network 		- - A reachable unwrap in the __assert_fail function (/assert/mod.rs) of relibc commit 61f42d allows attackers to cause a Denial of Service (DoS) via a crafted string. CWE-400
 Uncontrolled Resource Consumption 		CVE-2026-38640 2026-06-26 23:17 2026-06-26 Show GitHub Exploit DB Packet Storm
1104 4.2 MEDIUM
Network 		- - The Mattermost Google Drive plugin before version 1.1.0 fails to validate channel membership in the file creation endpoint, allowing authenticated users with a connected Google account to share Googl… CWE-862
 Missing Authorization 		CVE-2026-2299 2026-06-26 23:17 2026-06-26 Show GitHub Exploit DB Packet Storm
1105 8.1 HIGH
Network 		- - vtk vtk-dicom vtkDICOMItem::NewDataElement heap-based buffer overflow vulnerability CWE-129
 Improper Validation of Array Index 		CVE-2026-22879 2026-06-26 23:17 2026-06-26 Show GitHub Exploit DB Packet Storm
1106 - - - ACE vulnerability in conditional configuration file processing by QOS.CH logback-core up to and including version 1.5.35 in Java applications, allows an attacker to execute arbitrary code circumvent… CWE-20
 Improper Input Validation  		CVE-2026-13006 2026-06-26 23:16 2026-06-24 Show GitHub Exploit DB Packet Storm
1107 8.2 HIGH
Network 		- - Two data sources (DICOMWebProxy and DICOMJSON) shipped in the default configuration fetch an arbitrary URL parameter without validation. A global authentication service in OHIF automatically injects … CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-12473 2026-06-26 23:16 2026-06-26 Show GitHub Exploit DB Packet Storm
1108 7.8 HIGH
Local 		- - A use-after-free in the gf_sei_load_from_state_internal function (/filters/sei_load.c) of GPAC Project/MP4Box before 26.02.0 allows attackers to cause a Denial of Service (DoS) via supplying a crafte… CWE-416
 Use After Free 		CVE-2025-60464 2026-06-26 23:16 2026-06-26 Show GitHub Exploit DB Packet Storm
1109 7.8 HIGH
Local 		mmaitre314 picklescan picklescan before 0.0.30 fails to detect malicious pickle files using idlelib.pyshell.ModifiedInterpreter.runcommand in reduce methods. Attackers can embed undetected code in pickle files that execut… CWE-502
 Deserialization of Untrusted Data 		CVE-2025-71357 2026-06-26 23:14 2026-06-21 Show GitHub Exploit DB Packet Storm
1110 7.8 HIGH
Local 		mmaitre314 picklescan picklescan before 0.0.30 fails to detect cProfile.runctx function calls in pickle file reduce methods, allowing attackers to execute arbitrary code. Malicious pickle files bypass picklescan detection… CWE-502
 Deserialization of Untrusted Data 		CVE-2025-71378 2026-06-26 23:12 2026-06-21 Show GitHub Exploit DB Packet Storm