Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 12, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
21	5.5	警告 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows 11 24h2 Microsoft Windows 10 21h2 Microsoft Windows Server 2016 Microsoft Wind…	Windows プッシュ通知の情報漏えいの脆弱性 New	CWE-200 情報漏えい	CVE-2026-42973	2026-06-11 16:24	2026-06-9	Show	GitHub Exploit DB Packet Storm

22	8.1	重要 Network	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows 11 24h2 Microsoft Windows Server 2022 Microsoft Windows 11 23h2 Microsoft Wind…	Windows パフォーマンスモニターのリモートコード実行に対する脆弱性 New	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2026-42974	2026-06-11 16:24	2026-06-9	Show	GitHub Exploit DB Packet Storm

23	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows 11 24h2 Microsoft Windows 10 21h2 Microsoft Windows 10 1809 Microsoft Windows&…	Windows プッシュ通知の特権昇格の脆弱性 New	CWE-362 競合状態	CVE-2026-42977	2026-06-11 16:24	2026-06-9	Show	GitHub Exploit DB Packet Storm

24	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows 11 24h2 Microsoft Windows 10 21h2 Microsoft Windows 10 1809 Microsoft Windows&…	Windows プッシュ通知の特権昇格の脆弱性 New	CWE-362 CWE-416	CVE-2026-42978	2026-06-11 16:24	2026-06-9	Show	GitHub Exploit DB Packet Storm

25	7	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows 11 24h2 Microsoft Windows 10 21h2 Microsoft Windows 10 1809 Microsoft Windows&…	Windows カーネルの特権の昇格の脆弱性 New	CWE-416 解放済みメモリの使用	CVE-2026-42984	2026-06-11 16:24	2026-06-9	Show	GitHub Exploit DB Packet Storm

26	5.4	警告 Network	マイクロソフト	Microsoft SharePoint Server	Microsoft SharePoint Server のなりすましの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-45453	2026-06-11 16:23	2026-06-9	Show	GitHub Exploit DB Packet Storm

27	8.8	重要 Network	マイクロソフト	Microsoft SharePoint Server	Microsoft SharePoint のリモートコードが実行される脆弱性 New	CWE-22 パス・トラバーサル	CVE-2026-45454	2026-06-11 16:23	2026-06-9	Show	GitHub Exploit DB Packet Storm

28	5.4	警告 Network	マイクロソフト	Microsoft SharePoint Server	Microsoft SharePoint Server のなりすましの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-45462	2026-06-11 16:23	2026-06-9	Show	GitHub Exploit DB Packet Storm

29	5.4	警告 Network	マイクロソフト	Microsoft SharePoint Server	Microsoft SharePoint Server のなりすましの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-45464	2026-06-11 16:23	2026-06-9	Show	GitHub Exploit DB Packet Storm

30	5.4	警告 Network	マイクロソフト	Microsoft SharePoint Server	Microsoft SharePoint Server のなりすましの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-45465	2026-06-11 16:23	2026-06-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
344781	-	phpbb_group	vitrax_premodded_phpbb	PHP remote file inclusion vulnerability in includes/functions_portal.php in Vitrax Premodded phpBB 1.0.6-R3 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the phpbb_ro…	NVD-CWE-Other	CVE-2006-4779	2017-10-19 10:29	2006-09-14	Show	GitHub Exploit DB Packet Storm

344782	-	futuresoft	tftp_server_multithreaded	Heap-based buffer overflow in FutureSoft TFTP Server Multithreaded (MT) 1.1 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code by sending a crafted packet…	NVD-CWE-Other	CVE-2006-4781	2017-10-19 10:29	2006-09-14	Show	GitHub Exploit DB Packet Storm

344783	-	webspell	webspell	src/index.php in WebSPELL 4.01.01 and earlier, when register_globals is enabled, allows remote attackers to bypass authentication and gain sensitive information stored in the database via a modified …	NVD-CWE-Other	CVE-2006-4782	2017-10-19 10:29	2006-09-14	Show	GitHub Exploit DB Packet Storm

344784	-	webspell	webspell	Successful exploitation requires that "register_globals" is enabled.	NVD-CWE-Other	CVE-2006-4782	2017-10-19 10:29	2006-09-14	Show	GitHub Exploit DB Packet Storm

344785	-	open_movie_editor	open_movie_editor	Buffer overflow in Open Movie Editor 0.0.20060901 allows local users to cause a denial of service (system crash) or execute arbitrary code via a long project name in an open_movie_editor_project XML …	NVD-CWE-Other	CVE-2006-4789	2017-10-19 10:29	2006-09-14	Show	GitHub Exploit DB Packet Storm

344786	-	quicksilver_forums	quicksilver_forums	PHP remote file inclusion vulnerability in lib/activeutil.php in Quicksilver Forums (QSF) 1.2.1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the set[include_path] pa…	NVD-CWE-Other	CVE-2006-4824	2017-10-19 10:29	2006-09-16	Show	GitHub Exploit DB Packet Storm

344787	-	shadowed_portal	shadowed_portal	PHP remote file inclusion vulnerability in bottom.php in Shadowed Portal 5.599 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the root parameter.	NVD-CWE-Other	CVE-2006-4826	2017-10-19 10:29	2006-09-16	Show	GitHub Exploit DB Packet Storm

344788	-	vmist	downstat	Multiple PHP remote file inclusion vulnerabilities in Vmist Downstat 1.8 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the art parameter to (1) admin.php, (2) chart.ph…	NVD-CWE-Other	CVE-2006-4827	2017-10-19 10:29	2006-09-16	Show	GitHub Exploit DB Packet Storm

344789	-	vmist	downstat	Successful exploitation requires that "register_globals" is enabled.	NVD-CWE-Other	CVE-2006-4827	2017-10-19 10:29	2006-09-16	Show	GitHub Exploit DB Packet Storm

344790	-	george_lewe	teamcal_pro	PHP remote file inclusion vulnerability in includes/footer.html.inc.php in TeamCal Pro 2.8.001 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the tc_config[app_root] p…	NVD-CWE-Other	CVE-2006-4845	2017-10-19 10:29	2006-09-19	Show	GitHub Exploit DB Packet Storm