Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 16, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
521 8.7 重要
Network 		GitLab.org GitLab GitLab.orgのGitLabにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-8589 2026-06-12 14:44 2026-06-11 Show GitHub Exploit DB Packet Storm
522 6.5 警告
Network 		GitLab.org GitLab GitLab.orgのGitLabにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-9204 2026-06-12 14:44 2026-06-11 Show GitHub Exploit DB Packet Storm
523 4.3 警告
Network 		GitLab.org GitLab GitLab.orgのGitLabにおける置換文字列の無害化に関する脆弱性 CWE-153
置換文字列の不適切な無害化 		CVE-2026-9694 2026-06-12 14:44 2026-06-11 Show GitHub Exploit DB Packet Storm
524 7.8 重要
Local 		The Open Group Unix opengroupのUnixにおける古典的バッファオーバーフローの脆弱性 CWE-120
古典的バッファオーバーフロー 		CVE-2025-71263 2026-06-12 14:35 2026-03-13 Show GitHub Exploit DB Packet Storm
525 7.5 重要
Network 		Dana Powers (dpkp) kafka-python Dana Powers (dpkp)のkafka-pythonにおける過剰なサイズ値のメモリ割り当てに関する脆弱性 CWE-789
過剰なサイズ値のメモリ割り当て 		CVE-2026-10142 2026-06-12 14:35 2026-06-10 Show GitHub Exploit DB Packet Storm
526 7.5 重要
Network 		Dana Powers (dpkp) kafka-python Dana Powers (dpkp)のkafka-pythonにおけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2026-10143 2026-06-12 14:35 2026-06-10 Show GitHub Exploit DB Packet Storm
527 7.8 重要
Local 		マイクロソフト Microsoft Office 2024 Long-Term Servicing Channel Edition
Microsoft Office 2021 Long Term Servicing Channel Edition
Microsoft&nb… 		Microsoft Excel のリモートでコードが実行される脆弱性 CWE-843
型の取り違え 		CVE-2026-44817 2026-06-12 14:35 2026-06-9 Show GitHub Exploit DB Packet Storm
528 7 重要
Local 		マイクロソフト Microsoft Office 2024 Long-Term Servicing Channel Edition
Microsoft Office 2021 Long Term Servicing Channel Edition
Microsoft&nb… 		Microsoft Excel のリモートでコードが実行される脆弱性 CWE-362
競合状態 		CVE-2026-44818 2026-06-12 14:35 2026-06-9 Show GitHub Exploit DB Packet Storm
529 7.8 重要
Local 		マイクロソフト Microsoft Office 2024 Long-Term Servicing Channel Edition
Microsoft Office 2021 Long Term Servicing Channel Edition
Microsoft&nb… 		Microsoft Office のリモート コードが実行される脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-44819 2026-06-12 14:35 2026-06-9 Show GitHub Exploit DB Packet Storm
530 7.8 重要
Local 		マイクロソフト Microsoft Office 2024 Long-Term Servicing Channel Edition
Microsoft Office 2021 Long Term Servicing Channel Edition
Microsoft&nb… 		Microsoft Excel のリモートでコードが実行される脆弱性 CWE-125
境界外読み取り 		CVE-2026-44820 2026-06-12 14:35 2026-06-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 17, 2026, 4:19 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
354261 - mcrypt libmcrypt Multiple buffer overflows in libmcrypt before 2.5.5 allow attackers to cause a denial of service (crash). NVD-CWE-Other
CVE-2003-0031 2016-10-18 11:28 2003-01-17 Show GitHub Exploit DB Packet Storm
354262 - mcrypt libmcrypt Memory leak in libmcrypt before 2.5.5 allows attackers to cause a denial of service (memory exhaustion) via a large number of requests to the application, which causes libmcrypt to dynamically load a… NVD-CWE-Other
CVE-2003-0032 2016-10-18 11:28 2003-01-17 Show GitHub Exploit DB Packet Storm
354263 - snort snort Buffer overflow in the RPC preprocessor for Snort 1.8 and 1.9.x before 1.9.1 allows remote attackers to execute arbitrary code via fragmented RPC packets. NVD-CWE-Other
CVE-2003-0033 2016-10-18 11:28 2003-03-7 Show GitHub Exploit DB Packet Storm
354264 - celestial_software absolutetelnet AbsoluteTelnet SSH2 client does not clear logon credentials from memory, including plaintext passwords, which could allow attackers with access to memory to steal the SSH credentials. NVD-CWE-Other
CVE-2003-0046 2016-10-18 11:28 2003-02-19 Show GitHub Exploit DB Packet Storm
354265 - van_dyke_technologies entunnel
securecrt
securefx 		SSH2 clients for VanDyke (1) SecureCRT 4.0.2 and 3.4.7, (2) SecureFX 2.1.2 and 2.0.4, and (3) Entunnel 1.0.2 and earlier, do not clear logon credentials from memory, including plaintext passwords, wh… NVD-CWE-Other
CVE-2003-0047 2016-10-18 11:28 2003-02-19 Show GitHub Exploit DB Packet Storm
354266 - putty putty PuTTY 0.53b and earlier does not clear logon credentials from memory, including plaintext passwords, which could allow attackers with access to memory to steal the SSH credentials. NVD-CWE-Other
CVE-2003-0048 2016-10-18 11:28 2003-02-19 Show GitHub Exploit DB Packet Storm
354267 - apple darwin_streaming_server
quicktime_streaming_server 		parse_xml.cgi in Apple Darwin Streaming Administration Server 4.1.2 and QuickTime Streaming Server 4.1.1 allows remote attackers to execute arbitrary code via shell metacharacters. NVD-CWE-Other
CVE-2003-0050 2016-10-18 11:28 2003-03-7 Show GitHub Exploit DB Packet Storm
354268 - apple darwin_streaming_server
quicktime_streaming_server 		parse_xml.cgi in Apple Darwin Streaming Administration Server 4.1.2 and QuickTime Streaming Server 4.1.1 allows remote attackers to obtain the physical path of the server's installation path via a NU… NVD-CWE-Other
CVE-2003-0051 2016-10-18 11:28 2003-03-7 Show GitHub Exploit DB Packet Storm
354269 - apple darwin_streaming_server
quicktime_streaming_server 		parse_xml.cgi in Apple Darwin Streaming Administration Server 4.1.2 and QuickTime Streaming Server 4.1.1 allows remote attackers to list arbitrary directories. NVD-CWE-Other
CVE-2003-0052 2016-10-18 11:28 2003-03-7 Show GitHub Exploit DB Packet Storm
354270 - apple darwin_streaming_server
quicktime_streaming_server 		Cross-site scripting (XSS) vulnerability in parse_xml.cgi in Apple Darwin Streaming Administration Server 4.1.2 and QuickTime Streaming Server 4.1.1 allows remote attackers to insert arbitrary script… NVD-CWE-Other
CVE-2003-0053 2016-10-18 11:28 2003-03-7 Show GitHub Exploit DB Packet Storm