Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 29, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
131201 5.4 警告
Network 		Blocksera Image Hover Effects WordPress 用 Image Hover Effects - Elementor Addon プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2021-24264 2022-01-11 14:54 2021-04-13 Show GitHub Exploit DB Packet Storm
131202 5.4 警告
Network 		IdeaBox Creations PowerPack Addons for Elementor WordPress 用 Elementor Addons - PowerPack Addons for Elementor プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2021-24263 2022-01-11 14:54 2021-04-13 Show GitHub Exploit DB Packet Storm
131203 5.4 警告
Network 		HasThemes WooLentor - WooCommerce Elementor Addons + Builder WordPress 用 WooLentor - WooCommerce Elementor Addons + Builder プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2021-24262 2022-01-11 14:54 2021-04-13 Show GitHub Exploit DB Packet Storm
131204 5.4 警告
Network 		HasThemes HT Mega - Absolute Addons for Elementor Page Builder WordPress 用 HT Mega - Absolute Addons for Elementor Page Builder プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2021-24261 2022-01-11 14:54 2021-04-13 Show GitHub Exploit DB Packet Storm
131205 5.4 警告
Network 		Livemesh Livemesh Addons for Elementor WordPress 用 Livemesh Addons for Elementor プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2021-24260 2022-01-11 14:54 2021-04-13 Show GitHub Exploit DB Packet Storm
131206 5.4 警告
Network 		WebTechStreet Elementor Addon Elements WordPress 用 Elementor Addon Elements プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2021-24259 2022-01-11 14:54 2021-04-13 Show GitHub Exploit DB Packet Storm
131207 5.4 警告
Network 		Wpmet ElementsKit Elementor addons WordPress 用 Elements Kit Lite および Elements Kit Pro プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2021-24258 2022-01-11 14:54 2021-04-13 Show GitHub Exploit DB Packet Storm
131208 5.4 警告
Network 		Leap13 Premium Addons for Elementor WordPress 用 Premium Addons for Elementor プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2021-24257 2022-01-11 14:54 2021-04-13 Show GitHub Exploit DB Packet Storm
131209 5.4 警告
Network 		Brainstorm Force Elementor Header & Footer Builder WordPress 用 Elementor - Header, Footer & Blocks Template プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2021-24256 2022-01-11 14:54 2021-04-13 Show GitHub Exploit DB Packet Storm
131210 2.6
Network 		フィリップス Engage Software Philips 製 Engage Software に不適切なアクセス制御の脆弱性 - CVE-2021-23173 2022-01-11 14:41 2022-01-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 30, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1 6.1 MEDIUM
Network 		cacti cacti Cacti is an open source performance and fault management framework. Versions 1.2.30 and prior are vulnerable to Open Redirect through a substring check rather than a host check at str_contains($refer… Update CWE-601
Open Redirect 		CVE-2026-40080 2026-06-30 03:52 2026-06-26 Show GitHub Exploit DB Packet Storm
2 3.7 LOW
Network 		- - Lack of validation for firmware update in Hitachi Hitachi Virtual Storage Platform One Block 23, 24, 26, 28. This issue affects Hitachi Virtual Storage Platform One Block 23, 24, 26, 28: before DKCM… New CWE-347
 Improper Verification of Cryptographic Signature 		CVE-2025-0824 2026-06-30 03:52 2026-06-29 Show GitHub Exploit DB Packet Storm
3 8.3 HIGH
Network 		- - Improper Authorization Vulnerability of Maintenance Utility in Hitachi Virtual Storage Platform. This issue affects Hitachi Virtual Storage Platform E390, E590, E790, E990, E1090, E390H, E590H, E790… New CWE-862
 Missing Authorization 		CVE-2025-2902 2026-06-30 03:52 2026-06-29 Show GitHub Exploit DB Packet Storm
4 6.8 MEDIUM
Network 		- - Information exposure vulnerability in Hitachi Storage Navigator. This issue affects Hitachi Virtual Storage Platform 5100, 5200, 5500, 5600, 5100H, 5200H, 5500H, 5600H, VX8: before DKCMAIN Ver. 90-0… New CWE-522
 Insufficiently Protected Credentials 		CVE-2025-7386 2026-06-30 03:52 2026-06-29 Show GitHub Exploit DB Packet Storm
5 - - - Honeywell IQ MultiAccess, all versions prior to and including version 28, contain an improper digital signature verification vulnerability. An attacker could potentially exploit this vulnerability, l… New CWE-367
 Time-of-check Time-of-use (TOCTOU) Race Condition 		CVE-2026-13742 2026-06-30 03:52 2026-06-30 Show GitHub Exploit DB Packet Storm
6 6.7 MEDIUM
Local 		- - The HCL Traveler for Microsoft Outlook libraries are being flagged as potentially malicious software or an unrecognized application. New CWE-347
 Improper Verification of Cryptographic Signature 		CVE-2024-23581 2026-06-30 03:51 2026-06-27 Show GitHub Exploit DB Packet Storm
7 - - - Notepad++ is a free and open-source source code editor. From 8.9.4 until 8.9.6, Notepad++ contains a local privilege escalation vulnerability in the installer. During installation, the installer invo… New CWE-426
 Untrusted Search Path 		CVE-2026-46710 2026-06-30 03:51 2026-06-27 Show GitHub Exploit DB Packet Storm
8 5.0 MEDIUM
Local 		- - Notepad++ is a free and open-source source code editor. Prior to 8.9.6.1, a local process in the same interactive Windows session can send a malformed WM_COPYDATA message to Notepad++ using the COPYD… New CWE-125
Out-of-bounds Read 		CVE-2026-48770 2026-06-30 03:51 2026-06-27 Show GitHub Exploit DB Packet Storm
9 7.8 HIGH
Local 		- - Notepad++ is a free and open-source source code editor. Prior to 8.9.6.1, the <GUIConfig name="commandLineInterpreter"> tag in config.xml is read by NppXml::value() (Parameters.cpp:6430) and stored i… New CWE-78
OS Command  		CVE-2026-48778 2026-06-30 03:51 2026-06-27 Show GitHub Exploit DB Packet Storm
10 7.8 HIGH
Local 		- - Notepad++ is a free and open-source source code editor. Prior to 8.9.6.1, the <Command> tag text content inside <UserDefinedCommands> in shortcuts.xml is read by NppXml::value(aNode) (Parameters.cpp:… New CWE-78
OS Command  		CVE-2026-48800 2026-06-30 03:51 2026-06-27 Show GitHub Exploit DB Packet Storm