Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 28, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
247261	7.5	危険	censura	-	Censura の censura.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-2593	2012-06-26 16:10	2009-07-24	Show	GitHub Exploit DB Packet Storm

247262	4.3	警告	dragdropcart	-	DragDropCart におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-2587	2012-06-26 16:10	2009-07-24	Show	GitHub Exploit DB Packet Storm

247263	4.3	警告	edgephp	-	EDGEPHP EZArticles の articles.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-2586	2012-06-26 16:10	2009-07-24	Show	GitHub Exploit DB Packet Storm

247264	9.3	危険	アカマイテクノロジーズ	-	Akamai Download Manager の manager.exe におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-2582	2012-06-26 16:10	2009-07-23	Show	GitHub Exploit DB Packet Storm

247265	4.3	警告	editeurscripts	-	EditeurScripts EsNews の modifier.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-2581	2012-06-26 16:10	2009-07-23	Show	GitHub Exploit DB Packet Storm

247266	6.5	警告	CS-Cart	-	CS-Cart の reward_points.post.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-2579	2012-06-26 16:10	2009-08-5	Show	GitHub Exploit DB Packet Storm

247267	6.5	警告	bioscripts	-	MiniTwitter の index.php における任意のアカウントの特定のオプションを変更される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-2574	2012-06-26 16:10	2009-07-22	Show	GitHub Exploit DB Packet Storm

247268	6	警告	bioscripts	-	MiniTwitter における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-2573	2012-06-26 16:10	2009-07-22	Show	GitHub Exploit DB Packet Storm

247269	7.5	危険	almondsoft Joomla!	-	Joomla! の aclassf コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-2567	2012-06-26 16:10	2009-07-22	Show	GitHub Exploit DB Packet Storm

247270	7.5	危険	adminnewstools	-	Admin News Tools の system/message.php におけるニュースを投稿される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-2558	2012-06-26 16:10	2009-07-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 28, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2961	5.3	MEDIUM Local	-	-	A flaw has been found in IObit Malware Fighter up to 13.2.0. Affected by this vulnerability is an unknown functionality of the component DLL Handler. This manipulation causes permission issues. The a…	CWE-266 CWE-275 Incorrect Privilege Assignment Permission Issues	CVE-2026-12201	2026-06-15 10:16	2026-06-15	Show	GitHub Exploit DB Packet Storm

2962	7.3	HIGH Network	-	-	A security vulnerability has been detected in Ritlabs TinyWeb Server up to 1.94 on Win32. This impacts an unknown function in the library libeay32.dll.html of the component Header Handler. The manipu…	CWE-119 CWE-121 Incorrect Access of Indexable Resource ('Range Error') Stack-based Buffer Overflow	CVE-2026-12200	2026-06-15 10:16	2026-06-15	Show	GitHub Exploit DB Packet Storm

2963	7.3	HIGH Network	-	-	A weakness has been identified in Microweber up to 2.0.20. This affects the function userfiles_path of the file /api_nosession/thumbnail_img of the component API Endpoint. Executing a manipulation of…	CWE-22 Path Traversal	CVE-2026-12198	2026-06-15 09:16	2026-06-15	Show	GitHub Exploit DB Packet Storm

2964	7.2	HIGH Network	-	-	A security flaw has been discovered in Ruijie EG105G-P 2.340. The impacted element is the function nslookup of the file /cgi-bin/luci/api/diagnose of the component JSON-RPC Diagnose Endpoint. Perform…	CWE-74 CWE-77 Injection Command Injection	CVE-2026-12197	2026-06-15 09:16	2026-06-15	Show	GitHub Exploit DB Packet Storm

2965	7.8	HIGH Local	-	-	A vulnerability was identified in VS Revo RevoUninstaller 2.5.x/2.6.x. The affected element is the function IOCtl_Handler in the library RevoDetector.sys of the component IOCTL Handler. Such manipula…	CWE-119 CWE-122 Incorrect Access of Indexable Resource ('Range Error') Heap-based Buffer Overflow	CVE-2026-12193	2026-06-15 09:16	2026-06-15	Show	GitHub Exploit DB Packet Storm

2966	8.8	HIGH Adjacent	-	-	A vulnerability was determined in GALAYOU Y4 1.0.0. Impacted is an unknown function of the component Web Server. This manipulation causes buffer overflow. The attack is only possible within the local…	CWE-119 CWE-120 Incorrect Access of Indexable Resource ('Range Error') Classic Buffer Overflow	CVE-2026-12192	2026-06-15 09:16	2026-06-15	Show	GitHub Exploit DB Packet Storm

2967	5.3	MEDIUM Network	-	-	Crypt::PBKDF2 versions before 0.261630 for Perl have a weak default algorithm and number of iterations. The default algorithm is HMAC-SHA1, which should only be used for legacy systems. These versi…	CWE-916 Use of Password Hash With Insufficient Computational Effort	CVE-2026-9641	2026-06-15 00:16	2026-06-13	Show	GitHub Exploit DB Packet Storm

2968	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: media: rockchip: rkcif: fix off by one bugs Change these comparisons from > vs >= to avoid accessing one element beyond the end o…	-	CVE-2026-52907	2026-06-14 15:16	2026-06-9	Show	GitHub Exploit DB Packet Storm

2969	7.7	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: 9p: fix access mode flags being ORed instead of replaced Since commit 1f3e4142c0eb ("9p: convert to the new mount API"), v9fs_app…	-	CVE-2026-52906	2026-06-14 15:16	2026-06-9	Show	GitHub Exploit DB Packet Storm

2970	8.0	HIGH Adjacent	-	-	In the Linux kernel, the following vulnerability has been resolved: greybus: gb-beagleplay: bound bootloader receive buffering cc1352_bootloader_rx() appends each serdev chunk into the fixed rx_buf…	-	CVE-2026-46332	2026-06-14 15:16	2026-06-9	Show	GitHub Exploit DB Packet Storm