Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 23, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1261 6.3 警告
Network 		レッドハット 389 Directory Server
Red Hat Directory Server
Red Hat Enterprise Linux 		レッドハットの389 Directory Server等の複数製品におけるバッファオーバーリードの脆弱性 CWE-126
バッファオーバーリード 		CVE-2026-11787 2026-06-15 11:20 2026-06-9 Show GitHub Exploit DB Packet Storm
1262 7.5 重要
Network 		レッドハット 389 Directory Server
Red Hat Directory Server
Red Hat Enterprise Linux 		レッドハットの389 Directory Server等の複数製品におけるNULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2026-11788 2026-06-15 11:20 2026-06-9 Show GitHub Exploit DB Packet Storm
1263 6.5 警告
Network 		レッドハット 389 Directory Server
Red Hat Directory Server
Red Hat Enterprise Linux 		レッドハットの389 Directory Server等の複数製品における整数アンダーフローの脆弱性 CWE-191
整数アンダーフロー 		CVE-2026-11789 2026-06-15 11:20 2026-06-9 Show GitHub Exploit DB Packet Storm
1264 4.9 警告
Network 		レッドハット 389 Directory Server
Red Hat Directory Server
Red Hat Enterprise Linux 		レッドハットの389 Directory Server等の複数製品におけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2026-11790 2026-06-15 11:20 2026-06-9 Show GitHub Exploit DB Packet Storm
1265 8.8 重要
Network 		Google Google Chrome GoogleのGoogle Chromeにおける解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-12007 2026-06-15 11:20 2026-06-11 Show GitHub Exploit DB Packet Storm
1266 8.3 重要
Network 		Google Google Chrome GoogleのGoogle Chromeにおける入力確認に関する脆弱性 CWE-20
CWE-noinfo
CVE-2026-12009 2026-06-15 11:20 2026-06-11 Show GitHub Exploit DB Packet Storm
1267 8.3 重要
Network 		Google Google Chrome GoogleのGoogle Chromeにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-12010 2026-06-15 11:20 2026-06-11 Show GitHub Exploit DB Packet Storm
1268 8.3 重要
Network 		Google Google Chrome GoogleのGoogle Chromeにおける解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-12011 2026-06-15 11:20 2026-06-11 Show GitHub Exploit DB Packet Storm
1269 8.8 重要
Network 		Google Google Chrome GoogleのGoogle Chromeにおける解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-12013 2026-06-15 11:20 2026-06-11 Show GitHub Exploit DB Packet Storm
1270 8.3 重要
Network 		Google Google Chrome GoogleのGoogle Chromeにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2026-12019 2026-06-15 11:20 2026-06-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 23, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
320501 6.2 MEDIUM
Local 		huawei emui
harmonyos 		Vulnerability of uncaught exceptions in the Graphics module Impact: Successful exploitation of this vulnerability may affect service confidentiality. NVD-CWE-noinfo
CVE-2024-42037 2024-09-14 06:13 2024-08-8 Show GitHub Exploit DB Packet Storm
320502 6.1 MEDIUM
Network 		qnap qulog_center A cross-site scripting (XSS) vulnerability has been reported to affect QuLog Center. If exploited, the vulnerability could allow users to inject malicious code via a network. We have already fixed t… CWE-79
Cross-site Scripting 		CVE-2024-32762 2024-09-14 06:10 2024-09-7 Show GitHub Exploit DB Packet Storm
320503 7.5 HIGH
Network 		huawei harmonyos
emui 		Access permission verification vulnerability in the Notepad module Impact: Successful exploitation of this vulnerability may affect service confidentiality. NVD-CWE-noinfo
CVE-2024-42036 2024-09-14 06:09 2024-08-8 Show GitHub Exploit DB Packet Storm
320504 9.8 CRITICAL
Network 		wpwebelite docket Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in WPWeb Elite Docket (WooCommerce Collections / Wishlist / Watchlist) allows SQL Injection.This iss… CWE-89
SQL Injection 		CVE-2024-43132 2024-09-14 06:07 2024-08-30 Show GitHub Exploit DB Packet Storm
320505 4.8 MEDIUM
Network 		qnap helpdesk A cross-site scripting (XSS) vulnerability has been reported to affect Helpdesk. If exploited, the vulnerability could allow authenticated administrators to inject malicious code via a network. We h… CWE-79
Cross-site Scripting 		CVE-2024-27125 2024-09-14 06:06 2024-09-7 Show GitHub Exploit DB Packet Storm
320506 7.2 HIGH
Network 		salonbookingsystem salon_booking_system Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Salon Booking System Salon booking system allows SQL Injection.This issue affects Salon booking s… CWE-89
SQL Injection 		CVE-2024-39658 2024-09-14 06:04 2024-08-30 Show GitHub Exploit DB Packet Storm
320507 9.8 CRITICAL
Network 		e4jconnect vikrentcar Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in E4J s.R.L. VikRentCar allows SQL Injection.This issue affects VikRentCar: from n/a through 1.4.0. CWE-89
SQL Injection 		CVE-2024-39653 2024-09-14 06:03 2024-08-30 Show GitHub Exploit DB Packet Storm
320508 8.8 HIGH
Network 		roundupwp registrations_for_the_events_calendar Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Roundup WP Registrations for the Events Calendar allows SQL Injection.This issue affects Registra… CWE-89
SQL Injection 		CVE-2024-39638 2024-09-14 06:00 2024-08-30 Show GitHub Exploit DB Packet Storm
320509 8.8 HIGH
Network 		pricelisto great_restaurant_menu_wp Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in PriceListo Best Restaurant Menu by PriceListo allows SQL Injection.This issue affects Best Restau… CWE-89
SQL Injection 		CVE-2024-38793 2024-09-14 05:57 2024-08-30 Show GitHub Exploit DB Packet Storm
320510 6.1 MEDIUM
Network 		wpengine advanced_custom_fields Cross-site scripting vulnerability exists in Advanced Custom Fields versions 6.3.5 and earlier and Advanced Custom Fields Pro versions 6.3.5 and earlier. If an attacker with the 'capability' setting … CWE-79
Cross-site Scripting 		CVE-2024-45429 2024-09-14 05:48 2024-09-5 Show GitHub Exploit DB Packet Storm