Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 13, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
21 5.3 警告
Network 		VMware Spring Framework VMwareのSpring Frameworkにおける不正な認証に関する脆弱性 New CWE-863
不正な認証 		CVE-2026-41852 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
22 5.1 警告
Local 		ImageMagick ImageMagick ImageMagickにおける複数の脆弱性 New CWE-125
CWE-191
CVE-2026-42326 2026-06-12 14:53 2026-06-10 Show GitHub Exploit DB Packet Storm
23 7.5 重要
Network 		Svelte project Svelte Svelte projectのSvelteにおける非効率的な正規表現の複雑さに関する脆弱性 New CWE-1333
非効率的な正規表現の複雑さ 		CVE-2026-42567 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
24 7.5 重要
Network 		Svelte project devalue Svelte projectのdevalueにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 New CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-42570 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
25 6.1 警告
Network 		Svelte project Svelte Svelte projectのSvelteにおけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-42573 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
26 6.1 警告
Network 		Svelte project Svelte Svelte projectのSvelteにおけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-42599 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
27 7.8 重要
Local 		マイクロソフト Microsoft Windows 11 25h2
Microsoft Windows 11 26h1
Microsoft Windows 11 24h2 		Windows 管理者保護のセキュリティ機能バイパスの脆弱性 New CWE-284
不適切なアクセス制御 		CVE-2026-42829 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
28 7 重要
Local 		マイクロソフト Microsoft Windows 11 23h2
Microsoft Windows Server 2022
Microsoft Windows Server 2016
Microsoft Windows Server 2019
Microsoft&n… 		Windows Function Discovery Service (fdwsd.dll) の特権昇格の脆弱性 New CWE-362
CWE-416
CVE-2026-42836 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
29 7.8 重要
Local 		マイクロソフト Microsoft Windows 11 23h2
Microsoft Windows Server 2022
Microsoft Windows Server 2019
Microsoft Windows 11 26h1
Microsoft … 		Windows Projected File System の特権の昇格の脆弱性 New CWE-125
境界外読み取り 		CVE-2026-42837 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
30 9.6 緊急
Network 		flowiseai flowise flowiseaiのflowiseにおける複数の脆弱性 New CWE-284
CWE-639
CWE-915
CVE-2026-42861 2026-06-12 14:52 2026-06-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
310591 - moinejf
fedoraproject 		abcm2ps
fedora 		Multiple buffer overflows in abcm2ps before 5.9.12 might allow remote attackers to execute arbitrary code via (1) a crafted input file, related to the PUT0 and PUT1 output macros; (2) a crafted input… CWE-120
Classic Buffer Overflow 		CVE-2010-3441 2024-11-21 10:18 2011-02-19 Show GitHub Exploit DB Packet Storm
310592 - zohocorp manageengine_adselfservice_plus Multiple cross-site scripting (XSS) vulnerabilities in EmployeeSearch.cc in the Employee Search Engine in ZOHO ManageEngine ADSelfService Plus before 4.5 Build 4500 allow remote attackers to inject a… CWE-79
Cross-site Scripting 		CVE-2010-3274 2024-11-21 10:18 2011-02-18 Show GitHub Exploit DB Packet Storm
310593 - zohocorp manageengine_adselfservice_plus ZOHO ManageEngine ADSelfService Plus before 4.5 Build 4500 allows remote attackers to reset user passwords, and consequently obtain access to arbitrary user accounts, by providing a user id to accoun… CWE-20
 Improper Input Validation  		CVE-2010-3273 2024-11-21 10:18 2011-02-18 Show GitHub Exploit DB Packet Storm
310594 - zohocorp manageengine_adselfservice_plus accounts/ValidateAnswers in the security-questions implementation in ZOHO ManageEngine ADSelfService Plus before 4.5 Build 4500 makes it easier for remote attackers to reset user passwords, and conse… CWE-20
 Improper Input Validation  		CVE-2010-3272 2024-11-21 10:18 2011-02-18 Show GitHub Exploit DB Packet Storm
310595 - cisco webex_meeting_center Stack-based buffer overflow in Cisco WebEx Meeting Center T27LB before SP21 EP3 and T27LC before SP22 allows user-assisted remote authenticated users to execute arbitrary code by providing a crafted … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2010-3270 2024-11-21 10:18 2011-02-3 Show GitHub Exploit DB Packet Storm
310596 - cisco webex_recording_format_player
webex_advanced_recording_format_player 		Multiple stack-based buffer overflows in the Cisco WebEx Recording Format (WRF) and Advanced Recording Format (ARF) Players T27LB before SP21 EP3 and T27LC before SP22 allow remote attackers to execu… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2010-3269 2024-11-21 10:18 2011-02-3 Show GitHub Exploit DB Packet Storm
310597 - apache
debian
canonical 		openoffice
debian_linux
ubuntu_linux 		Multiple off-by-one errors in the WW8DopTypography::ReadFromMem function in oowriter in OpenOffice.org (OOo) 2.x and 3.x before 3.3 allow remote attackers to cause a denial of service (application cr… CWE-193
 Off-by-one Error 		CVE-2010-3454 2024-11-21 10:18 2011-01-29 Show GitHub Exploit DB Packet Storm
310598 - apache
debian
canonical 		openoffice
debian_linux
ubuntu_linux 		The WW8ListManager::WW8ListManager function in oowriter in OpenOffice.org (OOo) 2.x and 3.x before 3.3 does not properly handle an unspecified number of list levels in user-defined list styles in WW8… CWE-787
 Out-of-bounds Write 		CVE-2010-3453 2024-11-21 10:18 2011-01-29 Show GitHub Exploit DB Packet Storm
310599 - apache
debian
canonical 		openoffice
debian_linux
ubuntu_linux 		Use-after-free vulnerability in oowriter in OpenOffice.org (OOo) 2.x and 3.x before 3.3 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via… CWE-416
 Use After Free 		CVE-2010-3452 2024-11-21 10:18 2011-01-29 Show GitHub Exploit DB Packet Storm
310600 - apache
debian
canonical 		openoffice
debian_linux
ubuntu_linux 		Use-after-free vulnerability in oowriter in OpenOffice.org (OOo) 2.x and 3.x before 3.3 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via… CWE-416
 Use After Free 		CVE-2010-3451 2024-11-21 10:18 2011-01-29 Show GitHub Exploit DB Packet Storm