Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 11, 2026, 6:13 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
243301 2.1 注意 Gizra - Drupal 用 Organic Groups Vocabulary モジュールにおけるボキャブラリを改ざんされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-1644 2012-08-31 14:53 2012-02-15 Show GitHub Exploit DB Packet Storm
243302 5 警告 Jason Savino - Drupal 用 Faster Permissions モジュールにおけるアクセス権を変更される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-1643 2012-08-31 14:50 2012-02-15 Show GitHub Exploit DB Packet Storm
243303 5 警告 YAML for Drupal - Drupal 用 Link checker モジュールにおける重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-1642 2012-08-31 14:48 2012-02-15 Show GitHub Exploit DB Packet Storm
243304 6 警告 danielb - Drupal 用 Finder モジュールの finder_import 関数における任意の PHP コードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-1641 2012-08-31 14:45 2012-02-8 Show GitHub Exploit DB Packet Storm
243305 6.4 警告 Rik de Boer - Drupal 用 revisioning モジュールにおけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-1635 2012-08-31 14:41 2012-01-18 Show GitHub Exploit DB Packet Storm
243306 5 警告 SilverStripe - SilverStripe における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-5188 2012-08-31 10:36 2012-08-26 Show GitHub Exploit DB Packet Storm
243307 4.3 警告 SilverStripe - SilverStripe における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-5187 2012-08-31 10:34 2012-08-26 Show GitHub Exploit DB Packet Storm
243308 4.3 警告 SilverStripe - SilverStripe におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-5095 2012-08-31 10:26 2012-08-26 Show GitHub Exploit DB Packet Storm
243309 5 警告 SilverStripe - SilverStripe の control/ContentController.php における index.php を削除される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-5094 2012-08-31 10:21 2012-08-26 Show GitHub Exploit DB Packet Storm
243310 5 警告 SilverStripe - SilverStripe の security/Member.php におけるユーザアカウントをハイジャックされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-5093 2012-08-31 10:18 2012-08-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
781 - - - A path traversal vulnerability has been reported to affect License Center. If a local attacker gains an administrator account, they can then exploit the vulnerability to read the contents of unexpect… New CWE-22
Path Traversal 		CVE-2025-62851 2026-06-10 13:17 2026-06-10 Show GitHub Exploit DB Packet Storm
782 - - - A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerabili… New CWE-476
 NULL Pointer Dereference 		CVE-2025-62850 2026-06-10 13:17 2026-06-10 Show GitHub Exploit DB Packet Storm
783 - - - QuTS hero is not affected. We have already fixed the vulnerability in the following version: QTS 5.2.7.3256 build 20250913 and later New - CVE-2025-66276 2026-06-10 12:16 2026-06-10 Show GitHub Exploit DB Packet Storm
784 - - - QTS, QuTS hero, QuTScloud are not affected. We have already fixed the vulnerability in the following version: New CWE-472
 External Control of Assumed-Immutable Web Parameter 		CVE-2025-59382 2026-06-10 12:16 2026-06-10 Show GitHub Exploit DB Packet Storm
785 - - - A cross-site request forgery (CSRF) vulnerability has been reported to affect Notification Center. The remote attackers can then exploit the vulnerability to gain privileges or hijack user identities… New CWE-352
 Origin Validation Error 		CVE-2025-58468 2026-06-10 12:16 2026-06-10 Show GitHub Exploit DB Packet Storm
786 5.4 MEDIUM
Network 		- - WordPress Popup Builder 3.49 contains a persistent cross-site scripting vulnerability that allows authenticated attackers to inject malicious scripts by breaking out of option tags in the post_title … Update CWE-79
Cross-site Scripting 		CVE-2019-25744 2026-06-10 11:16 2026-06-4 Show GitHub Exploit DB Packet Storm
787 5.4 MEDIUM
Network 		- - WordPress Soliloquy Lite 2.5.6 contains a persistent cross-site scripting vulnerability that allows authenticated attackers to inject malicious scripts by inserting script tags in the post title fiel… Update CWE-79
Cross-site Scripting 		CVE-2019-25743 2026-06-10 11:16 2026-06-4 Show GitHub Exploit DB Packet Storm
788 5.4 MEDIUM
Network 		- - WordPress Theme Zoner Real Estate 4.1.1 contains a persistent cross-site scripting vulnerability that allows authenticated agents to inject malicious scripts through the Address input field when crea… Update CWE-79
Cross-site Scripting 		CVE-2019-25742 2026-06-10 11:16 2026-06-4 Show GitHub Exploit DB Packet Storm
789 5.4 MEDIUM
Network 		- - GigToDo 1.3 contains a persistent cross-site scripting vulnerability that allows authenticated attackers to inject malicious JavaScript and HTML code through the proposal description field. Attackers… Update CWE-79
Cross-site Scripting 		CVE-2019-25739 2026-06-10 11:16 2026-06-4 Show GitHub Exploit DB Packet Storm
790 6.1 MEDIUM
Network 		- - Live Chat Unlimited 2.8.3 contains a stored cross-site scripting vulnerability that allows unauthenticated attackers to inject malicious scripts through the chat input field. Attackers can submit pay… Update CWE-79
Cross-site Scripting 		CVE-2019-25737 2026-06-10 11:16 2026-06-4 Show GitHub Exploit DB Packet Storm