Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 13, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
611	6.1	警告 Network	Apache Software Foundation	Apache HTTP Server	Apache Software FoundationのApache HTTP Serverにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-29170	2026-06-10 14:28	2026-06-8	Show	GitHub Exploit DB Packet Storm

612	7.5	重要 Network	Apache Software Foundation	Apache HTTP Server	Apache Software FoundationのApache HTTP Serverにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-34355	2026-06-10 14:28	2026-06-8	Show	GitHub Exploit DB Packet Storm

613	7.5	重要 Network	Apache Software Foundation	Apache HTTP Server	Apache Software FoundationのApache HTTP Serverにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-34356	2026-06-10 14:28	2026-06-8	Show	GitHub Exploit DB Packet Storm

614	5.9	警告 Network	VMware	Spring Framework	VMwareのSpring Frameworkにおけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-41840	2026-06-10 14:28	2026-06-9	Show	GitHub Exploit DB Packet Storm

615	5.9	警告 Network	VMware	Spring Framework	VMwareのSpring Frameworkにおける重要な情報を含むキャッシュの使用に関する脆弱性	CWE-524 重要な情報を含むキャッシュの使用	CVE-2026-41841	2026-06-10 14:28	2026-06-9	Show	GitHub Exploit DB Packet Storm

616	7.5	重要 Network	VMware	Spring Framework	VMwareのSpring Frameworkにおけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-41842	2026-06-10 14:28	2026-06-9	Show	GitHub Exploit DB Packet Storm

617	5.9	警告 Network	VMware	Spring Framework	VMwareのSpring Frameworkにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-41843	2026-06-10 14:28	2026-06-9	Show	GitHub Exploit DB Packet Storm

618	7.5	重要 Network	VMware	Spring Framework	VMwareのSpring Frameworkにおける整数オーバーフローの脆弱性	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2026-41849	2026-06-10 14:28	2026-06-9	Show	GitHub Exploit DB Packet Storm

619	7.5	重要 Network	VMware	Spring Framework	VMwareのSpring Frameworkにおけるアルゴリズムの複雑さに関する脆弱性	CWE-407 アルゴリズムの複雑性	CVE-2026-41850	2026-06-10 14:28	2026-06-9	Show	GitHub Exploit DB Packet Storm

620	7.5	重要 Network	VMware	Spring Framework	VMwareのSpring Frameworkにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-41851	2026-06-10 14:27	2026-06-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
355731	-	cybozu	cybozu_office	Unspecified vulnerability in Cybozu Office 6.5 Build 1.2 for Windows allows remote attackers to obtain sensitive information, including users and groups, via unspecified vectors.	NVD-CWE-Other	CVE-2006-4492	2008-11-11 15:28	2006-09-1	Show	GitHub Exploit DB Packet Storm

355732	-	hyper_estraier	hyper_estraier	estcmd in Hyper Estraier 1.0.1 on Windows systems allows remote attackers to read unauthorized files via a crafted search request for a filename that contains Unicode characters.	NVD-CWE-Other	CVE-2005-3421	2008-11-11 14:55	2005-11-2	Show	GitHub Exploit DB Packet Storm

355733	-	hiki	hiki	Cross-site scripting (XSS) vulnerability in Hiki 0.8.1 to 0.8.2 allows remote attackers to inject arbitrary web script or HTML via a page name in a Login link, a different vulnerability than CVE-2005…	NVD-CWE-Other	CVE-2005-2803	2008-11-11 14:53	2005-09-7	Show	GitHub Exploit DB Packet Storm

355734	-	hiki	hiki	Cross-site scripting (XSS) vulnerability in Hiki 0.8.0 to 0.8.2 allows remote attackers to inject arbitrary web script or HTML via "missing pages" in which the page name is not properly escaped, a di…	NVD-CWE-Other	CVE-2005-2336	2008-11-11 14:51	2005-09-7	Show	GitHub Exploit DB Packet Storm

355735	-	sendmail debian	sendmail debian_linux	The Sendmail 8.12.3 package in Debian GNU/Linux 3.0 does not securely create temporary files, which could allow local users to gain additional privileges via (1) expn, (2) checksendmail, or (3) doubl…	NVD-CWE-Other	CVE-2003-0308	2008-11-11 14:29	2003-05-15	Show	GitHub Exploit DB Packet Storm

355736	-	eva-web	eva-web	An unspecified script in EVA-Web 2.1.2 and earlier, probably index.php, allows remote attackers to obtain the full path of the web server via invalid (1) perso or (2) aide parameters.	NVD-CWE-Other	CVE-2006-2690	2008-11-9 15:26	2006-05-31	Show	GitHub Exploit DB Packet Storm

355737	-	allaire	forums	Allaire Forums 2.0.4 and 2.0.5 and Forums! 3.0 and 3.1 allows remote authenticated users to spoof messages as other users by modifying the hidden form fields for the name and e-mail address.	NVD-CWE-Other	CVE-2002-0108	2008-11-4 14:23	2002-03-25	Show	GitHub Exploit DB Packet Storm

355738	-	infopop	ultimate_bulletin_board	Cross-site scripting vulnerability in Infopop Ultimate Bulletin Board (UBB) 6.2.0 Beta Release 1.0 allows remote attackers to execute arbitrary script and steal cookies via a message containing encod…	NVD-CWE-Other	CVE-2002-0118	2008-11-4 14:23	2002-03-25	Show	GitHub Exploit DB Packet Storm

355739	-	netgear	rp114	Netgear RP114 Cable/DSL Web Safe Router Firmware 3.26, when configured to block traffic below port 1024, allows remote attackers to cause a denial of service (hang) via a port scan of the WAN port.	NVD-CWE-Other	CVE-2002-0127	2008-11-4 14:23	2002-03-25	Show	GitHub Exploit DB Packet Storm

355740	-	maelstrom	maelstrom_gpl	Maelstrom GPL 3.0.1 allows local users to overwrite arbitrary files of other Maelstrom users via a symlink attack on the /tmp/f file.	NVD-CWE-Other	CVE-2002-0141	2008-11-4 14:23	2002-03-25	Show	GitHub Exploit DB Packet Storm