Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 22, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
491	3.5	低 Network	Google	Android	GoogleのAndroidにおける古典的バッファオーバーフローの脆弱性 New	CWE-120 古典的バッファオーバーフロー	CVE-2026-0129	2026-06-22 11:31	2026-06-16	Show	GitHub Exploit DB Packet Storm

492	3.5	低 Network	Google	Android	GoogleのAndroidにおける複数の脆弱性 New	CWE-122 CWE-125	CVE-2026-0130	2026-06-22 11:31	2026-06-16	Show	GitHub Exploit DB Packet Storm

493	7.3	重要 Local	Google	Android	GoogleのAndroidにおける複数の脆弱性 New	CWE-125 CWE-190	CVE-2026-0131	2026-06-22 11:31	2026-06-16	Show	GitHub Exploit DB Packet Storm

494	8.8	重要 Network	Google	Android	GoogleのAndroidにおけるヒープベースのバッファオーバーフローの脆弱性 New	CWE-122 ヒープオーバーフロー	CVE-2026-0132	2026-06-22 11:31	2026-06-16	Show	GitHub Exploit DB Packet Storm

495	7.8	重要 Local	Google	Android	GoogleのAndroidにおける認証の欠如に関する脆弱性 New	CWE-862 認証の欠如	CVE-2026-0133	2026-06-22 11:31	2026-06-16	Show	GitHub Exploit DB Packet Storm

496	3.3	低 Local	Google	Android	GoogleのAndroidにおけるリソースの安全ではないデフォルト値への初期化に関する脆弱性 New	CWE-1188 リソースの安全ではないデフォルト値への初期化	CVE-2026-0134	2026-06-22 11:31	2026-06-16	Show	GitHub Exploit DB Packet Storm

497	7.8	重要 Local	Google	Android	GoogleのAndroidにおける境界外読み取りに関する脆弱性 New	CWE-125 境界外読み取り	CVE-2026-0135	2026-06-22 11:31	2026-06-16	Show	GitHub Exploit DB Packet Storm

498	6.5	警告 Network	Google	Android	GoogleのAndroidにおける複数の脆弱性 New	CWE-120 CWE-125	CVE-2026-0136	2026-06-22 11:31	2026-06-16	Show	GitHub Exploit DB Packet Storm

499	7.8	重要 Local	Google	Android	GoogleのAndroidにおける解放済みメモリの使用に関する脆弱性 New	CWE-416 解放済みメモリの使用	CVE-2026-0137	2026-06-22 11:31	2026-06-16	Show	GitHub Exploit DB Packet Storm

500	7.8	重要 Local	Google	Android	GoogleのAndroidにおける複数の脆弱性 New	CWE-120 CWE-787	CVE-2026-0138	2026-06-22 11:31	2026-06-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 22, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
256251	5.5	MEDIUM Local	partclone_project	partclone	partclone.chkimg in partclone 0.2.89 is prone to a heap-based buffer overflow vulnerability due to insufficient validation of the partclone image header. An attacker may be able to launch a 'Denial o…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-6596	2024-11-21 12:30	2017-03-10	Show	GitHub Exploit DB Packet Storm

256252	6.1	MEDIUM Network	mantisbt	mantisbt	A cross-site scripting (XSS) vulnerability in bug_change_status_page.php in MantisBT before 1.3.7 and 2.x before 2.2.1 allows remote attackers to inject arbitrary JavaScript via the 'action_type' par…	CWE-79 Cross-site Scripting	CVE-2017-6797	2024-11-21 12:30	2017-03-10	Show	GitHub Exploit DB Packet Storm

256253	6.1	MEDIUM Network	django-epiceditor_project	django-epiceditor	There is a cross-site scripting vulnerability in django-epiceditor 0.2.3 via crafted content in a form field.	CWE-79 Cross-site Scripting	CVE-2017-6591	2024-11-21 12:30	2017-03-10	Show	GitHub Exploit DB Packet Storm

256254	6.3	MEDIUM Physics	canonical	ubuntu_linux	An issue was discovered in network-manager-applet (aka network-manager-gnome) in Ubuntu 12.04 LTS, 14.04 LTS, 16.04 LTS, and 16.10. A local attacker could use this issue at the default Ubuntu login s…	CWE-863 Incorrect Authorization	CVE-2017-6590	2024-11-21 12:30	2017-03-10	Show	GitHub Exploit DB Packet Storm

256255	6.1	MEDIUM Network	epiceditor_project	epiceditor	EpicEditor through 0.2.3 has Cross-Site Scripting because of an insecure default marked.js configuration. An example attack vector is a crafted IMG element in an HTML document.	CWE-79 Cross-site Scripting	CVE-2017-6589	2024-11-21 12:30	2017-03-10	Show	GitHub Exploit DB Packet Storm

256256	7.2	HIGH Network	mail-masta_project	mail-masta	A SQL injection issue is exploitable, with WordPress admin access, in the Mail Masta (aka mail-masta) plugin 1.0 for WordPress. This affects ./inc/subscriber_list.php with the POST Parameter: subscri…	CWE-89 SQL Injection	CVE-2017-6578	2024-11-21 12:30	2017-03-9	Show	GitHub Exploit DB Packet Storm

256257	7.2	HIGH Network	mail-masta_project	mail-masta	A SQL injection issue is exploitable, with WordPress admin access, in the Mail Masta (aka mail-masta) plugin 1.0 for WordPress. This affects ./inc/subscriber_list.php with the POST Parameter: list_id.	CWE-89 SQL Injection	CVE-2017-6577	2024-11-21 12:30	2017-03-9	Show	GitHub Exploit DB Packet Storm

256258	7.2	HIGH Network	mail-masta_project	mail-masta	A SQL injection issue is exploitable, with WordPress admin access, in the Mail Masta (aka mail-masta) plugin 1.0 for WordPress. This affects ./inc/campaign/campaign-delete.php with the GET Parameter:…	CWE-89 SQL Injection	CVE-2017-6576	2024-11-21 12:30	2017-03-9	Show	GitHub Exploit DB Packet Storm

256259	7.2	HIGH Network	mail-masta_project	mail-masta	A SQL injection issue is exploitable, with WordPress admin access, in the Mail Masta (aka mail-masta) plugin 1.0 for WordPress. This affects ./inc/lists/edit_member.php with the GET Parameter: member…	CWE-89 SQL Injection	CVE-2017-6575	2024-11-21 12:30	2017-03-9	Show	GitHub Exploit DB Packet Storm

256260	7.2	HIGH Network	mail-masta_project	mail-masta	A SQL injection issue is exploitable, with WordPress admin access, in the Mail Masta (aka mail-masta) plugin 1.0 for WordPress. This affects ./inc/lists/edit_member.php with the GET Parameter: filter…	CWE-89 SQL Injection	CVE-2017-6574	2024-11-21 12:30	2017-03-9	Show	GitHub Exploit DB Packet Storm