Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 13, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
21	5.3	警告 Network	VMware	Spring Framework	VMwareのSpring Frameworkにおける不正な認証に関する脆弱性 New	CWE-863 不正な認証	CVE-2026-41852	2026-06-12 14:53	2026-06-9	Show	GitHub Exploit DB Packet Storm

22	5.1	警告 Local	ImageMagick	ImageMagick	ImageMagickにおける複数の脆弱性 New	CWE-125 CWE-191	CVE-2026-42326	2026-06-12 14:53	2026-06-10	Show	GitHub Exploit DB Packet Storm

23	7.5	重要 Network	Svelte project	Svelte	Svelte projectのSvelteにおける非効率的な正規表現の複雑さに関する脆弱性 New	CWE-1333 非効率的な正規表現の複雑さ	CVE-2026-42567	2026-06-12 14:53	2026-06-9	Show	GitHub Exploit DB Packet Storm

24	7.5	重要 Network	Svelte project	devalue	Svelte projectのdevalueにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 New	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-42570	2026-06-12 14:53	2026-06-9	Show	GitHub Exploit DB Packet Storm

25	6.1	警告 Network	Svelte project	Svelte	Svelte projectのSvelteにおけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-42573	2026-06-12 14:53	2026-06-9	Show	GitHub Exploit DB Packet Storm

26	6.1	警告 Network	Svelte project	Svelte	Svelte projectのSvelteにおけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-42599	2026-06-12 14:53	2026-06-9	Show	GitHub Exploit DB Packet Storm

27	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows 11 26h1 Microsoft Windows 11 24h2	Windows 管理者保護のセキュリティ機能バイパスの脆弱性 New	CWE-284 不適切なアクセス制御	CVE-2026-42829	2026-06-12 14:53	2026-06-9	Show	GitHub Exploit DB Packet Storm

28	7	重要 Local	マイクロソフト	Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Windows Server 2016 Microsoft Windows Server 2019 Microsoft&n…	Windows Function Discovery Service (fdwsd.dll) の特権昇格の脆弱性 New	CWE-362 CWE-416	CVE-2026-42836	2026-06-12 14:53	2026-06-9	Show	GitHub Exploit DB Packet Storm

29	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Windows Server 2019 Microsoft Windows 11 26h1 Microsoft …	Windows Projected File System の特権の昇格の脆弱性 New	CWE-125 境界外読み取り	CVE-2026-42837	2026-06-12 14:53	2026-06-9	Show	GitHub Exploit DB Packet Storm

30	9.6	緊急 Network	flowiseai	flowise	flowiseaiのflowiseにおける複数の脆弱性 New	CWE-284 CWE-639 CWE-915	CVE-2026-42861	2026-06-12 14:52	2026-06-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
344671	-	cooolsoft	powerftp	Directory traversal vulnerability in Cooolsoft PowerFTP Server 2.03 allows attackers to list or read arbitrary files and directories via a .. (dot dot) in (1) LS or (2) GET.	NVD-CWE-Other	CVE-2001-0931	2017-12-19 11:29	2001-11-28	Show	GitHub Exploit DB Packet Storm

344672	-	cooolsoft	powerftp	Buffer overflow in Cooolsoft PowerFTP Server 2.03 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long command.	NVD-CWE-Other	CVE-2001-0932	2017-12-19 11:29	2001-11-28	Show	GitHub Exploit DB Packet Storm

344673	-	volition	red_faction	THQ Volition Red Faction Game allows remote attackers to cause a denial of service (hang) of a client or server via packets to UDP port 7755.	NVD-CWE-Other	CVE-2001-0952	2017-12-19 11:29	2001-12-7	Show	GitHub Exploit DB Packet Storm

344674	-	nara_vision	kebi_community	Kebi WebMail allows remote attackers to access the administrator menu and gain privileges via the /a/ hidden directory, which is installed under the web document root.	NVD-CWE-Other	CVE-2001-0953	2017-12-19 11:29	2001-12-8	Show	GitHub Exploit DB Packet Storm

344675	-	xfree86_project	x11r6	Buffer overflow in fbglyph.c in XFree86 before 4.2.0, related to glyph clipping for large origins, allows attackers to cause a denial of service and possibly gain privileges via a large number of cha…	NVD-CWE-Other	CVE-2001-0955	2017-12-19 11:29	2001-09-22	Show	GitHub Exploit DB Packet Storm

344676	-	speechio	speechd	speechd 0.54 and earlier, with the Festival or rsynth speech synthesis package, allows attackers to execute arbitrary commands via shell metacharacters.	NVD-CWE-Other	CVE-2001-0956	2017-12-19 11:29	2001-09-11	Show	GitHub Exploit DB Packet Storm

344677	-	trend_micro	interscan_emanager interscan_viruswall	Buffer overflows in eManager plugin for Trend Micro InterScan VirusWall for NT 3.51 and 3.51J allow remote attackers to execute arbitrary code via long arguments to the CGI programs (1) register.dll,…	NVD-CWE-Other	CVE-2001-0958	2017-12-19 11:29	2001-09-12	Show	GitHub Exploit DB Packet Storm

344678	-	valve_software	half-life	Buffer overflow in client for Half-Life 1.1.0.8 and earlier allows malicious remote servers to execute arbitrary code via a long console command.	NVD-CWE-Other	CVE-2001-0964	2017-12-19 11:29	2001-09-20	Show	GitHub Exploit DB Packet Storm

344679	-	oracle	internet_directory	Format string vulnerabilities in Oracle Internet Directory Server (LDAP) 2.1.1.x and 3.0.1 allow remote attackers to execute arbitrary code, as demonstrated by the PROTOS LDAPv3 test suite.	NVD-CWE-Other	CVE-2001-0974	2017-12-19 11:29	2001-07-17	Show	GitHub Exploit DB Packet Storm

344680	-	oracle	internet_directory	Buffer overflow vulnerabilities in Oracle Internet Directory Server (LDAP) 2.1.1.x and 3.0.1 allow remote attackers to execute arbitrary code, as demonstrated by the PROTOS LDAPv3 test suite.	NVD-CWE-Other	CVE-2001-0975	2017-12-19 11:29	2001-07-16	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed