Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 23, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
131551	4.8	警告 Network	X2Engine	X2CRM	X2engine X2CRM におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2020-21088	2021-12-16 11:30	2020-08-13	Show	GitHub Exploit DB Packet Storm

131552	9.8	緊急 Network	ShopXO	ShopXO	Shopxo における権限管理に関する脆弱性	CWE-269 不適切な権限管理	CVE-2020-19778	2021-12-16 11:30	2020-08-13	Show	GitHub Exploit DB Packet Storm

131553	8.8	重要 Network	Fedora Project Nextcloud	Fedora Nextcloud Desktop Client	Nextcloud Desktop Client におけるインジェクションに関する脆弱性	CWE-74 インジェクション	CVE-2021-22879	2021-12-16 11:30	2021-02-9	Show	GitHub Exploit DB Packet Storm

131554	3.3	低 Local	SUSE	s390-tools	SUSE Linux Enterprise Server 用 s390-tools における安全でない一時ファイルに関する脆弱性	CWE-377 安全でない一時ファイル	CVE-2021-25316	2021-12-16 11:30	2021-02-25	Show	GitHub Exploit DB Packet Storm

131555	9.8	緊急 Network	QNAP Systems	Surveillance Station	QNAP NAS デバイスにおける境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2021-28797	2021-12-16 11:30	2021-02-17	Show	GitHub Exploit DB Packet Storm

131556	9.8	緊急 Network	Facebook	Thrift	Facebook Thrift における無効なポインタや参照の解放に関する脆弱性	CWE-763 無効なポインタや参照の解放	CVE-2021-24028	2021-12-16 11:30	2021-02-19	Show	GitHub Exploit DB Packet Storm

131557	9.8	緊急 Network	Motorola Solutions, Inc	MH702x ファームウェア	Motorola MH702x デバイスにおける証明書検証に関する脆弱性	CWE-295 不正な証明書検証	CVE-2021-3460	2021-12-16 11:30	2021-04-13	Show	GitHub Exploit DB Packet Storm

131558	4.9	警告 Network	Perforce Software	Helix ALM	Perforce Helix ALM における DTD の再帰的なエンティティ参照の不適切な制限に関する脆弱性	CWE-776 DTD の再帰的なエンティティ参照の不適切な制限	CVE-2021-28973	2021-12-16 11:23	2021-04-1	Show	GitHub Exploit DB Packet Storm

131559	9.8	緊急 Network	OpenClinic GA	OpenClinic GA	OpenClinic GA におけるコマンドインジェクションの脆弱性	CWE-77 コマンドインジェクション	CVE-2020-27227	2021-12-16 11:10	2020-10-19	Show	GitHub Exploit DB Packet Storm

131560	7.5	重要 Network	ASUSTeK Computer Inc. Asuswrt-Merlin firmware project	RT-AX68U ファームウェア RT-AX86U ファームウェア RT-AX58U ファームウェア RT-AX82U ファームウェア RT-AX55 ファームウェア ZenWiFi AX (XT8) ファームウェア RT-AX56U ファームウェア RT-AX88…	複数の ASUS ルータ製品のファームウェアにおける過度なイテレーションの脆弱性	CWE-834 過度なイテレーション	CVE-2021-3128	2021-12-16 11:10	2021-04-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 23, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
191	7.5	HIGH Network	-	-	An issue in the attachment handling component of Feuerhamster MailForm v1.1.0 allows attackers to cause a Denial of Service (DoS) via a crafted request.	CWE-400 Uncontrolled Resource Consumption	CVE-2026-50878	2026-06-17 00:35	2026-06-16	Show	GitHub Exploit DB Packet Storm

192	7.5	HIGH Network	-	-	An issue in the uploadPostHandler component of Andrei Marcu linx-server v2.3.8 allows attackers to cause a Denial of Service (DoS) via a crafted POST request.	CWE-400 Uncontrolled Resource Consumption	CVE-2026-50879	2026-06-17 00:35	2026-06-16	Show	GitHub Exploit DB Packet Storm

193	-		-	-	Authorization Bypass Through User-Controlled Key vulnerability in elixir-grpc grpc allows authenticated attackers to access or modify resources belonging to other users by smuggling a conflicting val…	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2026-48599	2026-06-17 00:35	2026-06-16	Show	GitHub Exploit DB Packet Storm

194	-		-	-	Deserialization of Untrusted Data and Allocation of Resources Without Limits or Throttling vulnerabilities in elixir-grpc grpc allow unauthenticated attackers to crash the BEAM node via atom table ex…	CWE-502 CWE-770 Deserialization of Untrusted Data Allocation of Resources Without Limits or Throttling	CVE-2026-48853	2026-06-17 00:35	2026-06-16	Show	GitHub Exploit DB Packet Storm

195	-		-	-	Allocation of Resources Without Limits or Throttling vulnerability in elixir-grpc grpc allows unauthenticated attackers to exhaust the BEAM's memory and crash the server by streaming a large or slow-…	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2026-48854	2026-06-17 00:35	2026-06-16	Show	GitHub Exploit DB Packet Storm

196	-		-	-	Improper Handling of Highly Compressed Data (Data Amplification) vulnerability in elixir-grpc grpc (GRPC.Compressor.Gzip, GRPC.Message modules) allows a denial of service via a gzip decompression bom…	CWE-409 Improper Handling of Highly Compressed Data (Data Amplification)	CVE-2026-53430	2026-06-17 00:35	2026-06-16	Show	GitHub Exploit DB Packet Storm

197	8.8	HIGH Network	dlink	dcs-935l_firmware	A security vulnerability has been detected in D-Link DCS-935L 1.10.01. This issue affects the function snprintf of the file /web/cgi-bin/greece/rhea of the component HTTP Handler. Such manipulation o…	CWE-119 CWE-134 Incorrect Access of Indexable Resource ('Range Error') Use of Externally-Controlled Format String	CVE-2026-12174	2026-06-17 00:27	2026-06-14	Show	GitHub Exploit DB Packet Storm

198	6.6	MEDIUM Local	-	-	A flaw was found in GnuTLS. The `gnutls_pkcs11_token_set_pin` function, used for changing the Security Officer PIN, can lead to a use-after-free vulnerability. This occurs when an attacker attempts t…	CWE-825 Expired Pointer Dereference	CVE-2026-42014	2026-06-17 00:26	2026-06-16	Show	GitHub Exploit DB Packet Storm

199	6.3	MEDIUM Local	-	-	Nokia SR Linux is vulnerable to local privilege escalation vulnerability due to unsanitized format validation. Successful exploitation of this vulnerability may allow an authenticated user to execute…	CWE-134 Use of Externally-Controlled Format String	CVE-2025-10262	2026-06-17 00:26	2026-06-16	Show	GitHub Exploit DB Packet Storm

200	6.3	MEDIUM Local	-	-	Nokia SR Linux is vulnerable to a local privilege escalation vulnerability. Successful exploitation of this vulnerability may allow an authenticated user to execute arbitrary commands with superuser …	CWE-269 Improper Privilege Management	CVE-2025-9912	2026-06-17 00:26	2026-06-16	Show	GitHub Exploit DB Packet Storm