Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 15, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
91 5.4 警告
Network 		マイクロソフト Microsoft SharePoint Server Microsoft SharePoint Server のなりすましの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-45467 2026-06-15 11:17 2026-06-9 Show GitHub Exploit DB Packet Storm
92 5.4 警告
Network 		マイクロソフト Microsoft SharePoint Server Microsoft SharePoint Server のなりすましの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-45481 2026-06-15 11:17 2026-06-9 Show GitHub Exploit DB Packet Storm
93 8.8 重要
Network 		マイクロソフト Microsoft SharePoint Server Microsoft SharePoint の特権の昇格の脆弱性 New CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2026-45484 2026-06-15 11:17 2026-06-9 Show GitHub Exploit DB Packet Storm
94 8.8 重要
Network 		マイクロソフト Microsoft Exchange Server Microsoft Exchange Server の特権の昇格の脆弱性 New CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-45504 2026-06-15 11:17 2026-06-9 Show GitHub Exploit DB Packet Storm
95 9.1 緊急
Network 		マイクロソフト Microsoft Windows Server 2016
Microsoft Windows Server 2019
Microsoft Windows 11 26h1
Microsoft Windows 10 21h2
Microsoft … 		Windows 動的ホスト構成プロトコル (DHCP) の改ざんの脆弱性 New CWE-229
値の不適切な処理 		CVE-2026-45602 2026-06-15 11:17 2026-06-9 Show GitHub Exploit DB Packet Storm
96 6.8 警告
Local 		マイクロソフト Microsoft Windows Server 2016
Microsoft Windows Server 2019
Microsoft Windows 11 26h1
Microsoft Windows 10 21h2
Microsoft … 		Windows DHCP クライアントの情報漏えいの脆弱性 New CWE-125
境界外読み取り 		CVE-2026-45608 2026-06-15 11:17 2026-06-9 Show GitHub Exploit DB Packet Storm
97 5.5 警告
Local 		マイクロソフト Microsoft Windows Server 2016
Microsoft Windows Server 2019
Microsoft Windows 11 26h1
Microsoft Windows 10 21h2
Microsoft … 		Windows DHCP クライアントの情報漏えいの脆弱性 New CWE-125
境界外読み取り 		CVE-2026-45634 2026-06-15 11:17 2026-06-9 Show GitHub Exploit DB Packet Storm
98 7.5 重要
Network 		sqlfluff sqlfluff sqlfluffにおける再帰制御に関する脆弱性 New CWE-674
不適切な再帰制御 		CVE-2026-46373 2026-06-15 11:17 2026-06-9 Show GitHub Exploit DB Packet Storm
99 7.5 重要
Network 		sqlfluff sqlfluff sqlfluffにおけるリソースの枯渇に関する脆弱性 New CWE-400
リソースの枯渇 		CVE-2026-46374 2026-06-15 11:17 2026-06-9 Show GitHub Exploit DB Packet Storm
100 8.8 重要
Network 		flowiseai flowise flowiseaiのflowiseにおける動的に決定されたオブジェクト属性の不適切に制御された変更に関する脆弱性 New CWE-915
動的に決定されたオブジェクト属性の不適切に制御された変更 		CVE-2026-46475 2026-06-15 11:17 2026-06-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
319851 9.8 CRITICAL
Network 		angeljudesuarez tailoring_management_system A vulnerability classified as critical was found in itsourcecode Tailoring Management System 1.0. Affected by this vulnerability is an unknown functionality of the file ssms.php. The manipulation of … CWE-89
SQL Injection 		CVE-2024-8611 2024-09-19 02:24 2024-09-10 Show GitHub Exploit DB Packet Storm
319852 7.8 HIGH
Local 		ivanti workspace_control DLL hijacking in the management console of Ivanti Workspace Control version 10.18.0.0 and below allows a local authenticated attacker to escalate their privileges. CWE-426
 Untrusted Search Path 		CVE-2024-44103 2024-09-19 02:18 2024-09-11 Show GitHub Exploit DB Packet Storm
319853 6.1 MEDIUM
Network 		teleogistic invite_anyone Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Boone Gorges Invite Anyone allows Reflected XSS.This issue affects Invite Anyone: from n/a… CWE-79
Cross-site Scripting 		CVE-2024-43327 2024-09-19 02:07 2024-08-18 Show GitHub Exploit DB Packet Storm
319854 4.8 MEDIUM
Network 		starkdigital wp_testimonial_widget Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Stark Digital WP Testimonial Widget allows Stored XSS.This issue affects WP Testimonial Wi… CWE-79
Cross-site Scripting 		CVE-2024-43967 2024-09-19 02:00 2024-08-27 Show GitHub Exploit DB Packet Storm
319855 8.8 HIGH
Network 		thimpress learnpress Cross-Site Request Forgery (CSRF) vulnerability in ThimPress LearnPress.This issue affects LearnPress: from n/a through 4.2.6.8.2. CWE-352
 Origin Validation Error 		CVE-2024-39641 2024-09-19 01:57 2024-08-27 Show GitHub Exploit DB Packet Storm
319856 8.8 HIGH
Network 		themeum tutor_lms Cross-Site Request Forgery (CSRF) vulnerability in Themeum Tutor LMS.This issue affects Tutor LMS: from n/a through 2.7.2. CWE-352
 Origin Validation Error 		CVE-2024-39645 2024-09-19 01:46 2024-08-27 Show GitHub Exploit DB Packet Storm
319857 8.8 HIGH
Network 		sender sender Cross-Site Request Forgery (CSRF) vulnerability in Sender Sender – Newsletter, SMS and Email Marketing Automation for WooCommerce.This issue affects Sender – Newsletter, SMS and Email Marketing Autom… CWE-352
 Origin Validation Error 		CVE-2024-39657 2024-09-19 01:25 2024-08-27 Show GitHub Exploit DB Packet Storm
319858 8.8 HIGH
Network 		10up simple_local_avatars Cross-Site Request Forgery (CSRF) vulnerability in 10up Simple Local Avatars.This issue affects Simple Local Avatars: from n/a through 2.7.10. CWE-352
 Origin Validation Error 		CVE-2024-43116 2024-09-19 01:22 2024-08-27 Show GitHub Exploit DB Packet Storm
319859 8.8 HIGH
Network 		loftware spectrum Loftware Spectrum before 4.6 HF14 allows authenticated XXE attacks. CWE-611
XXE 		CVE-2023-37233 2024-09-19 01:10 2024-09-11 Show GitHub Exploit DB Packet Storm
319860 9.8 CRITICAL
Network 		loftware spectrum Loftware Spectrum through 4.6 has unprotected JMX Registry. NVD-CWE-noinfo
CVE-2023-37234 2024-09-19 01:05 2024-09-11 Show GitHub Exploit DB Packet Storm