Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 18, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
371	3.1	低 Network	GitLab.org	GitLab	GitLab.orgのGitLabにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-3553	2026-06-15 18:37	2026-06-11	Show	GitHub Exploit DB Packet Storm

372	8.1	重要 Network	Netty	Netty	Nettyにおける複数の脆弱性	CWE-284 CWE-697	CVE-2026-44249	2026-06-15 18:37	2026-06-11	Show	GitHub Exploit DB Packet Storm

373	7.5	重要 Network	Netty	Netty	Nettyにおけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-44250	2026-06-15 18:37	2026-06-11	Show	GitHub Exploit DB Packet Storm

374	7.5	重要 Network	Netty	Netty	Nettyにおけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-44890	2026-06-15 18:37	2026-06-11	Show	GitHub Exploit DB Packet Storm

375	7.5	重要 Network	Netty	Netty	Nettyにおける複数の脆弱性	CWE-1188 CWE-400	CVE-2026-44892	2026-06-15 18:37	2026-06-12	Show	GitHub Exploit DB Packet Storm

376	7.5	重要 Network	Netty	Netty	Nettyにおける例外的な状況に対する不適切なチェックまたは処理に関する脆弱性	CWE-703 例外的な状況に対する不適切なチェックまたは処理	CVE-2026-44893	2026-06-15 18:37	2026-06-12	Show	GitHub Exploit DB Packet Storm

377	7.5	重要 Network	Netty	Netty	Nettyにおける通信チャネルの送信元の不適切な検証に関する脆弱性	CWE-940 通信チャネルの送信元の不適切な検証	CVE-2026-44894	2026-06-15 18:37	2026-06-12	Show	GitHub Exploit DB Packet Storm

378	7.5	重要 Network	Netty	Netty	Nettyにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-45416	2026-06-15 18:37	2026-06-12	Show	GitHub Exploit DB Packet Storm

379	4	警告 Local	Netty	Netty	Nettyにおける複数の脆弱性	CWE-200 CWE-772	CVE-2026-45536	2026-06-15 18:37	2026-06-12	Show	GitHub Exploit DB Packet Storm

380	6.8	警告 Network	Netty	Netty	Nettyにおける複数の脆弱性	CWE-330 CWE-340	CVE-2026-45673	2026-06-15 18:37	2026-06-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 18, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
255871	6.1	MEDIUM Network	imdbphp_project	imdbphp	A Cross-Site Scripting (XSS) was discovered in imdbphp 5.1.1. The vulnerability exists due to insufficient filtration of user-supplied data (name) passed to the "imdbphp-master/demo/search.php" URL. …	CWE-79 Cross-site Scripting	CVE-2017-7204	2024-11-21 12:31	2017-03-21	Show	GitHub Exploit DB Packet Storm

255872	6.1	MEDIUM Network	zoneminder	zoneminder	A Cross-Site Scripting (XSS) was discovered in ZoneMinder before 1.30.2. The vulnerability exists due to insufficient filtration of user-supplied data (postLoginQuery) passed to the "ZoneMinder-maste…	CWE-79 Cross-site Scripting	CVE-2017-7203	2024-11-21 12:31	2017-03-21	Show	GitHub Exploit DB Packet Storm

255873	6.1	MEDIUM Network	slims	slims7_cendana	Multiple Cross-Site Scripting (XSS) were discovered in SLiMS 7 Cendana before 2017-03-16. The vulnerabilities exist due to insufficient filtration of user-supplied data (id) passed to the 'slims7_cen…	CWE-79 Cross-site Scripting	CVE-2017-7202	2024-11-21 12:31	2017-03-21	Show	GitHub Exploit DB Packet Storm

255874	5.8	MEDIUM Network	openstack	glance	An SSRF issue was discovered in OpenStack Glance before Newton. The 'copy_from' feature in the Image Service API v1 allowed an attacker to perform masked network port scans. With v1, it is possible t…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2017-7200	2024-11-21 12:31	2017-03-21	Show	GitHub Exploit DB Packet Storm

255875	7.8	HIGH Local	linux	linux_kernel	The sg_ioctl function in drivers/scsi/sg.c in the Linux kernel through 4.10.4 allows local users to cause a denial of service (stack-based buffer overflow) or possibly have unspecified other impact v…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-7187	2024-11-21 12:31	2017-03-20	Show	GitHub Exploit DB Packet Storm

255876	7.5	HIGH Network	pcre	pcre2 pcre	libpcre1 in PCRE 8.40 and libpcre2 in PCRE2 10.23 allow remote attackers to cause a denial of service (segmentation violation for read access, and application crash) by triggering an invalid Unicode …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-7186	2024-11-21 12:31	2017-03-20	Show	GitHub Exploit DB Packet Storm

255877	7.8	HIGH Local	linux	linux_kernel	The xfrm_replay_verify_len function in net/xfrm/xfrm_user.c in the Linux kernel through 4.10.6 does not validate certain size data after an XFRM_MSG_NEWAE update, which allows local users to obtain r…	NVD-CWE-noinfo	CVE-2017-7184	2024-11-21 12:31	2017-03-20	Show	GitHub Exploit DB Packet Storm

255878	8.8	HIGH Network	deluge-torrent debian	deluge debian_linux	CSRF was discovered in the web UI in Deluge before 1.3.14. The exploitation methodology involves (1) hosting a crafted plugin that executes an arbitrary program from its __init__.py file and (2) caus…	CWE-352 Origin Validation Error	CVE-2017-7178	2024-11-21 12:31	2017-03-19	Show	GitHub Exploit DB Packet Storm

255879	7.5	HIGH Network	openinfosecfoundation	suricata	Suricata before 3.2.1 has an IPv4 defragmentation evasion issue caused by lack of a check for the IP protocol during fragment matching.	CWE-358 Improperly Implemented Security Check for Standard	CVE-2017-7177	2024-11-21 12:31	2017-03-19	Show	GitHub Exploit DB Packet Storm

255880	9.8	CRITICAL Network	chef_manage_project	chef_manage	The user-account creation feature in Chef Manage 2.1.0 through 2.4.4 allows remote attackers to execute arbitrary code. This is fixed in 2.4.5.	NVD-CWE-noinfo	CVE-2017-7174	2024-11-21 12:31	2017-03-18	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed