Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 12, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3621	8.8	重要 Network	ディーリンクジャパン株式会社	dir-816 ファームウェア	D-Link CorporationのDIR-816 ファームウェアにおける複数の脆弱性	CWE-74 CWE-77	CVE-2026-8344	2026-05-14 10:13	2026-05-11	Show	GitHub Exploit DB Packet Storm

3622	8.8	重要 Network	ディーリンクジャパン株式会社	dir-816 ファームウェア	D-Link CorporationのDIR-816 ファームウェアにおける複数の脆弱性	CWE-74 CWE-77	CVE-2026-8345	2026-05-14 10:13	2026-05-11	Show	GitHub Exploit DB Packet Storm

3623	8.8	重要 Network	ディーリンクジャパン株式会社	dir-816 ファームウェア	D-Link CorporationのDIR-816 ファームウェアにおける複数の脆弱性	CWE-74 CWE-77	CVE-2026-8346	2026-05-14 10:13	2026-05-12	Show	GitHub Exploit DB Packet Storm

3624	6.5	警告 Network	Mozilla Foundation	Mozilla Firefox	Mozilla FoundationのMozilla Firefoxにおけるバッファエラーの脆弱性	CWE-119 バッファエラー	CVE-2026-8388	2026-05-14 10:13	2026-05-12	Show	GitHub Exploit DB Packet Storm

3625	8.5	重要 Network	Guardsix	ODBC Logpoint	GuardsixのLogpoint等の複数製品におけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-35548	2026-05-14 10:13	2026-04-22	Show	GitHub Exploit DB Packet Storm

3626	6.5	警告 Network	Raindrop	Raindrop	Raindropにおける複数の脆弱性	CWE-20 CWE-284	CVE-2026-31192	2026-05-14 10:13	2026-04-22	Show	GitHub Exploit DB Packet Storm

3627	7.3	重要 Network	D-Link Systems, Inc.	DCS-932L Firmware	D-Link CorporationのDCS-932L Firmwareにおけるコマンドインジェクションの脆弱性	CWE-77 コマンドインジェクション	CVE-2026-36983	2026-05-14 10:13	2026-05-11	Show	GitHub Exploit DB Packet Storm

3628	7.5	重要 Network	Niko Fohr (fohrloop)	dash-uploader	Niko Fohr (fohrloop)のdash-uploaderにおける複数の脆弱性	CWE-400 CWE-670 CWE-noinfo	CVE-2026-38361	2026-05-14 10:12	2026-05-8	Show	GitHub Exploit DB Packet Storm

3629	9.8	緊急 Network	Mauricio Poppe (mauriciopoppe)	math-codegen	Mauricio Poppe (mauriciopoppe)のmath-codegenにおけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2026-41507	2026-05-14 10:12	2026-05-8	Show	GitHub Exploit DB Packet Storm

3630	9.8	緊急 Network	CROSS-CRYPT.COM	CROSS	CROSS-CRYPT.COMのCROSSにおける複数の脆弱性	CWE-121 CWE-122	CVE-2026-41509	2026-05-14 10:12	2026-05-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
741	8.6	HIGH Network	-	-	The Xstore WordPress theme before 9.7.3 does not properly sanitise and escape a parameter before using it in a SQL statement via an AJAX action available to unauthenticated users, leading to a SQL in… New	CWE-89 SQL Injection	CVE-2026-3326	2026-06-10 20:16	2026-06-10	Show	GitHub Exploit DB Packet Storm

742	4.3	MEDIUM Network	7-zip	7-zip	7-Zip is a file archiver with a high compression ratio. Versions 9.11 through 26.00 contain a heap out-of-bounds read of up to 3 bytes in the UDF disc image handler's File Identifier Descriptor parse… Update	CWE-125 Out-of-bounds Read	CVE-2026-48102	2026-06-10 19:45	2026-06-6	Show	GitHub Exploit DB Packet Storm

743	-		-	-	Debusine is an integrated solution to build, distribute and maintain a Debian-based distribution. Debian source packages (.dsc) and upload artifacts (.changes) are manifest files that name the files … New	-	CVE-2026-11853	2026-06-10 19:16	2026-06-10	Show	GitHub Exploit DB Packet Storm

744	-		-	-	Debusine is an integrated solution to build, distribute and maintain a Debian-based distribution. Files managed by debusine are organized into artifacts. The endpoints that create and delete relation… New	-	CVE-2026-11852	2026-06-10 19:16	2026-06-10	Show	GitHub Exploit DB Packet Storm

745	7.5	HIGH Network	-	-	Issue summary: When CMS password-based decryption (RFC 3211 / PWRI key unwrap) processes attacker-supplied CMS data, an attacker-chosen stream-mode KEK cipher can trigger a heap out-of-bounds read in… New	CWE-125 Out-of-bounds Read	CVE-2026-9076	2026-06-10 17:16	2026-06-10	Show	GitHub Exploit DB Packet Storm

746	8.1	HIGH Network	-	-	Issue summary: A signed integer overflow when sizing the destination buffer for Unicode output in ASN1_mbstring_ncopy() can lead to a heap buffer overflow. Impact summary: A heap buffer overflow may… New	CWE-787 Out-of-bounds Write	CVE-2026-7383	2026-06-10 17:16	2026-06-10	Show	GitHub Exploit DB Packet Storm

747	4.8	MEDIUM Network	-	-	Issue summary: The implementations of AES-SIV (RFC 5297) and AES-GCM-SIV (RFC 8452) mishandle the authentication of AAD (Additional Authenticated Data) with an empty ciphertext allowing a forgery of … New	CWE-325 Missing Required Cryptographic Step	CVE-2026-45446	2026-06-10 17:16	2026-06-10	Show	GitHub Exploit DB Packet Storm

748	7.5	HIGH Network	-	-	Issue summary: When an application drives an AES-OCB context through the public EVP_Cipher() one-shot interface, the application-supplied initialisation vector (IV) is silently discarded. Impact sum… New	CWE-325 Missing Required Cryptographic Step	CVE-2026-45445	2026-06-10 17:16	2026-06-10	Show	GitHub Exploit DB Packet Storm

749	6.2	MEDIUM Local	-	-	Issue summary: When the X509_VERIFY_PARAM_set1_email is called by an application to validate a crafted e-mail address, such as during S/MIME message validation, an out of bounds read can happen. Imp… New	CWE-125 Out-of-bounds Read	CVE-2026-42771	2026-06-10 17:16	2026-06-10	Show	GitHub Exploit DB Packet Storm

750	3.7	LOW Network	-	-	Issue summary: When EVP_PKEY_derive_set_peer() is called with a DHX (X9.42) peer key, the peer key is not properly checked for the subgroup membership. Impact summary: A malicious peer which present… New	CWE-325 Missing Required Cryptographic Step	CVE-2026-42770	2026-06-10 17:16	2026-06-10	Show	GitHub Exploit DB Packet Storm