Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 12, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
31	5.4	警告 Network	マイクロソフト	Microsoft SharePoint Server	Microsoft SharePoint Server のなりすましの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-45479	2026-06-11 16:23	2026-06-9	Show	GitHub Exploit DB Packet Storm

32	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 24h2 Microsoft Windows 11 26h1 Microsoft Windows Server 2025 Microsoft Windows 11 25h2	Windows カーネルモードドライバーの特権の昇格の脆弱性 New	CWE-843 型の取り違え	CVE-2026-45600	2026-06-11 16:23	2026-06-9	Show	GitHub Exploit DB Packet Storm

33	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2012 Microsoft Windows 11 24h2 Microsoft Windows 10 21h2 Microsoft Wind…	UEFI セキュアブートのセキュリティ機能バイパスの脆弱性 New	CWE-693 保護メカニズムの不具合	CVE-2026-45656	2026-06-11 16:23	2026-06-9	Show	GitHub Exploit DB Packet Storm

34	9.8	緊急 Network	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows 11 24h2 Microsoft Windows Server 2022 Microsoft Windows 11 23h2 Microsoft Wind…	Windows カーネルのリモートでコードが実行される脆弱性 New	CWE-122 CWE-416	CVE-2026-45657	2026-06-11 16:23	2026-06-9	Show	GitHub Exploit DB Packet Storm

35	6.8	警告 Physics	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2012 Microsoft Windows 11 24h2 Microsoft Windows 10 21h2 Microsoft Wind…	Windows BitLocker セキュリティ機能バイパスの脆弱性 New	CWE-284 CWE-noinfo	CVE-2026-45658	2026-06-11 16:23	2026-06-9	Show	GitHub Exploit DB Packet Storm

36	7.5	重要 Network	FreeSWITCH	FreeSWITCH	FreeSWITCHにおけるDTD の再帰的なエンティティ参照の不適切な制限に関する脆弱性 New	CWE-776 DTD の再帰的なエンティティ参照の不適切な制限	CVE-2026-45771	2026-06-11 16:23	2026-06-9	Show	GitHub Exploit DB Packet Storm

37	4.3	警告 Network	University at Buffalo	Open XDMoD	University at BuffaloのOpen XDMoDにおけるアクセス制御に関する脆弱性 New	CWE-284 CWE-noinfo	CVE-2026-45776	2026-06-11 16:23	2026-06-5	Show	GitHub Exploit DB Packet Storm

38	9.8	緊急 Network	University at Buffalo	Open XDMoD	University at BuffaloのOpen XDMoDにおけるOS コマンドインジェクションの脆弱性 New	CWE-78 OSコマンド・インジェクション	CVE-2026-45777	2026-06-11 16:23	2026-06-5	Show	GitHub Exploit DB Packet Storm

39	5.4	警告 Network	University at Buffalo	Open XDMoD	University at BuffaloのOpen XDMoDにおけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-45778	2026-06-11 16:23	2026-06-5	Show	GitHub Exploit DB Packet Storm

40	9.8	緊急 Network	University at Buffalo	Open XDMoD	University at BuffaloのOpen XDMoDにおけるSQL インジェクションの脆弱性 New	CWE-89 SQLインジェクション	CVE-2026-45779	2026-06-11 16:23	2026-06-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
319501	9.8	CRITICAL Network	project_team	tmall_demo	A vulnerability, which was classified as critical, was found in Mini-Tmall up to 20240901. Affected is the function rewardMapper.select of the file tmall/admin/order/1/1. The manipulation of the argu…	CWE-89 SQL Injection	CVE-2024-8568	2024-09-16 22:22	2024-09-8	Show	GitHub Exploit DB Packet Storm

319502	4.8	MEDIUM Network	anujk305	bus_pass_management_system	phpgurukul Bus Pass Management System 1.0 is vulnerable to Cross-site scripting (XSS) in /admin/pass-bwdates-reports-details.php via fromdate and todate parameters.	CWE-79 Cross-site Scripting	CVE-2024-44798	2024-09-16 22:19	2024-09-14	Show	GitHub Exploit DB Packet Storm

319503	7.8	HIGH Local	adobe	illustrator	Illustrator versions 28.6, 27.9.5 and earlier are affected by an Integer Underflow (Wrap or Wraparound) vulnerability that could result in arbitrary code execution in the context of the current user.…	CWE-191 Integer Underflow (Wrap or Wraparound)	CVE-2024-41857	2024-09-16 22:18	2024-09-13	Show	GitHub Exploit DB Packet Storm

319504	5.5	MEDIUM Local	adobe	premiere_pro	Premiere Pro versions 24.5, 23.6.8 and earlier are affected by a Use After Free vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypas…	CWE-416 Use After Free	CVE-2024-39385	2024-09-16 22:12	2024-09-13	Show	GitHub Exploit DB Packet Storm

319505	7.8	HIGH Local	adobe	premiere_pro	Premiere Pro versions 24.5, 23.6.8 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of t…	CWE-787 Out-of-bounds Write	CVE-2024-39384	2024-09-16 22:01	2024-09-13	Show	GitHub Exploit DB Packet Storm

319506	7.8	HIGH Local	qnap	qts quts_hero	An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow local network users to execute commands via unspe…	CWE-78 CWE-77 OS Command Command Injection	CVE-2024-38641	2024-09-16 21:35	2024-09-7	Show	GitHub Exploit DB Packet Storm

319507	7.8	HIGH Local	qnap	qumagie	An improper certificate validation vulnerability has been reported to affect QuMagie. If exploited, the vulnerability could allow local network users to compromise the security of the system via unsp…	CWE-295 Improper Certificate Validation	CVE-2024-38642	2024-09-16 21:33	2024-09-7	Show	GitHub Exploit DB Packet Storm

319508	5.4	MEDIUM Network	qnap	download_station	A cross-site scripting (XSS) vulnerability has been reported to affect Download Station. If exploited, the vulnerability could allow authenticated users to inject malicious code via a network. We ha…	CWE-79 Cross-site Scripting	CVE-2024-38640	2024-09-16 21:27	2024-09-7	Show	GitHub Exploit DB Packet Storm

319509	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: vsock: fix recursive ->recvmsg calls After a vsock socket has been added to a BPF sockmap, its prot->recvmsg has been replaced wi…	CWE-674 Uncontrolled Recursion	CVE-2024-44996	2024-09-16 21:21	2024-09-5	Show	GitHub Exploit DB Packet Storm

319510	5.5	MEDIUM Local	adobe	illustrator	Illustrator versions 28.5, 27.9.4 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to b…	CWE-125 Out-of-bounds Read	CVE-2024-34134	2024-09-16 21:15	2024-08-15	Show	GitHub Exploit DB Packet Storm