Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 23, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
131631	9.6	緊急 Network	Eaton	Intelligent Power Manager Virtual Appliance Intelligent Power Protector Intelligent Power Manager	Eaton Intelligent Power Manager における脆弱性	CWE-noinfo 情報不足	CVE-2021-23278	2021-12-15 15:49	2021-04-12	Show	GitHub Exploit DB Packet Storm

131632	10	緊急 Network	Eaton	Intelligent Power Manager Virtual Appliance Intelligent Power Protector Intelligent Power Manager	Eaton Intelligent Power Manager における入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2021-23279	2021-12-15 15:33	2021-04-12	Show	GitHub Exploit DB Packet Storm

131633	9.9	緊急 Network	Eaton	Intelligent Power Manager Virtual Appliance Intelligent Power Protector Intelligent Power Manager	Eaton Intelligent Power Manager における危険なタイプのファイルの無制限アップロードに関する脆弱性	CWE-434 危険なタイプのファイルの無制限アップロード	CVE-2021-23280	2021-12-15 15:03	2021-04-12	Show	GitHub Exploit DB Packet Storm

131634	9.9	緊急 Network	SAP	SAP Commerce	SAP Commerce におけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2021-27602	2021-12-15 14:32	2021-04-13	Show	GitHub Exploit DB Packet Storm

131635	7.5	重要 Network	ClamAV	ClamAV	Clam AntiVirus ソフトウェアにおける入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2021-1252	2021-12-15 14:31	2021-04-7	Show	GitHub Exploit DB Packet Storm

131636	7.2	重要 Network	Vesta Control Panel	Vesta Control Panel	VestaCP における権限管理に関する脆弱性	CWE-269 不適切な権限管理	CVE-2021-30462	2021-12-15 14:31	2021-03-20	Show	GitHub Exploit DB Packet Storm

131637	7.8	重要 Local	Vesta Control Panel	Vesta Control Panel	VestaCP におけるリンク解釈に関する脆弱性	CWE-59 リンク解釈の問題	CVE-2021-30463	2021-12-15 14:30	2021-03-20	Show	GitHub Exploit DB Packet Storm

131638	9.8	緊急 Network	zzcms	zzcms	zzcms における権限管理に関する脆弱性	CWE-269 不適切な権限管理	CVE-2020-23426	2021-12-15 14:29	2020-05-27	Show	GitHub Exploit DB Packet Storm

131639	8.8	重要 Network	Learnsite project	Learnsite	Learnsite における権限管理に関する脆弱性	CWE-269 不適切な権限管理	CVE-2021-27522	2021-12-15 14:28	2021-02-17	Show	GitHub Exploit DB Packet Storm

131640	7.5	重要 Network	Realtek Semiconductor Corp	RTL8723DE ファームウェア	Realtek rtl8723de BLE Stack における NULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2020-23539	2021-12-15 14:28	2020-06-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 23, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
431	5.3	MEDIUM Network	-	-	Unauthenticated Other Vulnerability Type in Contest Gallery <= 28.1.7 versions.	CWE-1284 Improper Validation of Specified Quantity in Input	CVE-2026-42657	2026-06-16 06:24	2026-06-16	Show	GitHub Exploit DB Packet Storm

432	7.1	HIGH Network	-	-	Unauthenticated Cross Site Scripting (XSS) in Classified Listing <= 5.3.8 versions.	CWE-79 Cross-site Scripting	CVE-2026-42658	2026-06-16 06:24	2026-06-16	Show	GitHub Exploit DB Packet Storm

433	6.5	MEDIUM Network	-	-	Subscriber Broken Access Control in Advanced Form Integration <= 1.126.12 versions.	CWE-862 Missing Authorization	CVE-2026-42659	2026-06-16 06:24	2026-06-16	Show	GitHub Exploit DB Packet Storm

434	6.5	MEDIUM Network	-	-	Subscriber Sensitive Data Exposure in Contest Gallery <= 28.1.7 versions.	CWE-497 Exposure of Sensitive System Information to an Unauthorized Control Sphere	CVE-2026-42660	2026-06-16 06:24	2026-06-16	Show	GitHub Exploit DB Packet Storm

435	8.8	HIGH Network	-	-	Custom role Path Traversal in WP Customer Area <= 8.3.4 versions.	CWE-35 Path Traversal: '.../...//'	CVE-2026-42661	2026-06-16 06:24	2026-06-16	Show	GitHub Exploit DB Packet Storm

436	6.5	MEDIUM Network	-	-	Unauthenticated Bypass Vulnerability in Event Tickets <= 5.27.5 versions.	CWE-290 Authentication Bypass by Spoofing	CVE-2026-42662	2026-06-16 06:24	2026-06-16	Show	GitHub Exploit DB Packet Storm

437	6.5	MEDIUM Network	-	-	Unauthenticated Cross Site Scripting (XSS) in Simple Membership <= 4.7.2 versions.	CWE-79 Cross-site Scripting	CVE-2026-42663	2026-06-16 06:24	2026-06-16	Show	GitHub Exploit DB Packet Storm

438	8.2	HIGH Network	-	-	Unauthenticated Broken Access Control in AI Product Search for WooCommerce – Motive Commerce Search <= 1.38.2 versions.	CWE-862 Missing Authorization	CVE-2026-42664	2026-06-16 06:24	2026-06-16	Show	GitHub Exploit DB Packet Storm

439	9.3	CRITICAL Network	-	-	Unauthenticated SQL Injection in WP Data Access <= 5.5.70 versions.	CWE-89 SQL Injection	CVE-2026-42665	2026-06-16 06:24	2026-06-16	Show	GitHub Exploit DB Packet Storm

440	7.5	HIGH Network	-	-	Unauthenticated Broken Access Control in Salon booking system <= 10.30.25 versions.	CWE-862 Missing Authorization	CVE-2026-42666	2026-06-16 06:24	2026-06-16	Show	GitHub Exploit DB Packet Storm