Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
245511 4.3 警告 Nancy Wichmann - Drupal 用 RealName モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2298 2012-08-17 15:04 2012-04-25 Show GitHub Exploit DB Packet Storm
245512 5 警告 Lullabot - Drupal 用 Fivestar モジュールにおける投票の平均を操作される脆弱性 CWE-20
不適切な入力確認 		CVE-2012-2096 2012-08-17 15:01 2012-04-11 Show GitHub Exploit DB Packet Storm
245513 7.8 危険 サムスン - Samsung NET-i viewer におけるサービス運用妨害 (無限ループ) の脆弱性 CWE-119
バッファエラー 		CVE-2012-4335 2012-08-17 14:59 2012-08-14 Show GitHub Exploit DB Packet Storm
245514 10 危険 サムスン - Samsung NET-i viewer の ActiveX コントロールにおける任意のコードを実行される脆弱性 CWE-DesignError
CVE-2012-4334 2012-08-17 14:58 2012-08-14 Show GitHub Exploit DB Packet Storm
245515 10 危険 サムスン - Samsung NET-i viewer の ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-4333 2012-08-17 14:57 2012-08-14 Show GitHub Exploit DB Packet Storm
245516 5 警告 Barandi Solutions - WordPress 用 ShareYourCart プラグインにおけるインストールパスを取得される脆弱性 CWE-200
情報漏えい 		CVE-2012-4332 2012-08-17 14:50 2012-08-14 Show GitHub Exploit DB Packet Storm
245517 10 危険 SPIP - SPIP における脆弱性 CWE-noinfo
情報不足 		CVE-2012-4331 2012-08-17 14:48 2012-04-23 Show GitHub Exploit DB Packet Storm
245518 7.8 危険 サムスン - Samsung D6000 TV およびその他の製品におけるサービス運用妨害 (クラッシュ) の脆弱性 CWE-119
バッファエラー 		CVE-2012-4330 2012-08-17 14:47 2012-08-14 Show GitHub Exploit DB Packet Storm
245519 7.8 危険 サムスン - Samsung D6000 TV およびその他の製品におけるサービス運用妨害 (連続的な再起動) の脆弱性 CWE-119
バッファエラー 		CVE-2012-4329 2012-08-17 14:45 2012-08-14 Show GitHub Exploit DB Packet Storm
245520 10 危険 vBulletin Solutions, Inc. - 複数の vBulletin 製品における脆弱性 CWE-noinfo
情報不足 		CVE-2012-4328 2012-08-17 14:38 2012-08-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 28, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
131 4.3 MEDIUM
Network 		- - Unauthenticated Cross Site Request Forgery (CSRF) in Abandoned Cart Lite for WooCommerce <= 6.8.0 versions. New CWE-352
 Origin Validation Error 		CVE-2026-57637 2026-06-27 02:16 2026-06-27 Show GitHub Exploit DB Packet Storm
132 8.8 HIGH
Network 		- - Zed Attack Proxy (ZAP) ViewState add-on before version 4 contains an insecure deserialization vulnerability that allows attackers who control a proxied web server to achieve arbitrary code execution … New CWE-502
 Deserialization of Untrusted Data 		CVE-2026-57527 2026-06-27 02:16 2026-06-27 Show GitHub Exploit DB Packet Storm
133 7.3 HIGH
Local 		vim vim Vim is an open source, command line text editor. From 9.1.1784 until 9.2.0678, when the bundled zip plugin autoload/zip.vim falls back to PowerShell to browse, read, extract, update or delete entries… New CWE-77
Command Injection 		CVE-2026-57453 2026-06-27 02:16 2026-06-26 Show GitHub Exploit DB Packet Storm
134 7.2 HIGH
Network 		- - Dell Wyse Management Suite, versions prior to WMS 5.5 HF1, contain an Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability. A high privileged attacker with rem… New CWE-22
Path Traversal 		CVE-2026-49506 2026-06-27 02:16 2026-06-25 Show GitHub Exploit DB Packet Storm
135 6.0 MEDIUM
Network 		- - GitHub MCP Server is GitHub's official MCP Server. From 0.22.0 until 1.1.2, when running in HTTP mode with --lockdown-mode enabled, the RepoAccessCache is implemented as a process-global singleton in… New CWE-284
Improper Access Control 		CVE-2026-48529 2026-06-27 02:16 2026-06-27 Show GitHub Exploit DB Packet Storm
136 7.5 HIGH
Network 		- - The TIFF decoder does not set a limit on the size of tiles in tiled images, permitting a malicious or corrupt image containing a very large tile to cause unbounded memory consumption. New - CVE-2026-46602 2026-06-27 02:16 2026-06-26 Show GitHub Exploit DB Packet Storm
137 7.5 HIGH
Network 		- - The webp decoder can panic when processing a VP8 chunk with dimensions that do not match the canvas size. New - CVE-2026-46601 2026-06-27 02:16 2026-06-26 Show GitHub Exploit DB Packet Storm
138 7.5 HIGH
Network 		- - An integer overflow in the PSD parser compnent of FastStone Image Viewer v8.3 allows attackers to execute arbitrary code or cause a Denial of Service (DoS) via supplying a crafted PSD file. New CWE-400
 Uncontrolled Resource Consumption 		CVE-2026-30041 2026-06-27 02:16 2026-06-27 Show GitHub Exploit DB Packet Storm
139 6.5 MEDIUM
Network 		- - A heap overflow in the FSViewer.exe process of FastStone Image Viewer v8.3 allows attackers to cause a execute arbitrary code in the context of the current process via supplying a crafted JPEG 2000 (… New CWE-122
Heap-based Buffer Overflow 		CVE-2026-30040 2026-06-27 02:16 2026-06-27 Show GitHub Exploit DB Packet Storm
140 8.3 HIGH
Network 		- - The WSO2 API Manager's message flow component, when processing WS-Addressing headers, does not sufficiently validate or restrict user-controlled input within these headers. This omission allows an at… New CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-2053 2026-06-27 02:16 2026-06-26 Show GitHub Exploit DB Packet Storm