Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 20, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
132121 8.8 重要
Network 		Quadbase Systems Inc. EspressReports ES Quadbase EspressReports ES におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2020-24984 2021-11-22 17:59 2020-08-28 Show GitHub Exploit DB Packet Storm
132122 7.8 重要
Local 		- Interactive Graphical SCADA System におけるバッファエラーの脆弱性 CWE-119
バッファエラー 		CVE-2021-22710 2021-11-22 17:59 2021-03-9 Show GitHub Exploit DB Packet Storm
132123 6.5 警告
Network 		Bloomreach Bloomreach Experience Manager Bloomreach Experience Manager におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2020-14989 2021-11-22 17:59 2020-06-22 Show GitHub Exploit DB Packet Storm
132124 6.8 警告
Physics 		Xilinx Inc. Zynq-7000S ファームウェア
Zynq-7000 ファームウェア 		Zync-7000 SOC デバイスにおける古典的バッファオーバーフローの脆弱性 CWE-120
古典的バッファオーバーフロー 		CVE-2021-27208 2021-11-22 17:58 2021-03-15 Show GitHub Exploit DB Packet Storm
132125 8.1 重要
Network 		レッドハット
Fedora Project
Dogtag PKI		 Red Hat Certificate System
Fedora
Dogtag PKI 		pki-core における不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2021-20179 2021-11-22 17:58 2021-03-15 Show GitHub Exploit DB Packet Storm
132126 9.8 緊急
Network 		DomainMOD DomainMOD DomainMOD におけるセッション期限に関する脆弱性 CWE-613
不適切なセッション期限 		CVE-2020-35358 2021-11-22 17:58 2020-12-14 Show GitHub Exploit DB Packet Storm
132127 5.4 警告
Network 		gitea project gitea Gitea におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2021-28378 2021-11-22 17:57 2021-03-6 Show GitHub Exploit DB Packet Storm
132128 7.8 重要
Local 		Linux
Fedora Project		 Linux Kernel
Fedora 		Linux Kernel における権限管理に関する脆弱性 CWE-269
不適切な権限管理 		CVE-2021-28375 2021-11-22 17:57 2021-03-10 Show GitHub Exploit DB Packet Storm
132129 7.5 重要
Network 		Tiny Tiny RSS Tiny Tiny RSS Tiny Tiny RSS における不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2021-28373 2021-11-22 17:57 2021-03-11 Show GitHub Exploit DB Packet Storm
132130 7.5 重要
Network 		Debian courier-authlib
Debian GNU/Linux 		Debian courier-authlib パッケージにおける重要な情報の平文保存に関する脆弱性 CWE-312
重要な情報の平文保存 		CVE-2021-28374 2021-11-22 17:57 2021-03-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 20, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
591 6.5 MEDIUM
Network 		- - Cap-go Console < 12.28.2 contains a denial-of-service vulnerability in its account deletion flow that allows an attacker to block authentication and onboarding functions by triggering account deletio… CWE-645
 Overly Restrictive Account Lockout Mechanism 		CVE-2026-53982 2026-06-16 05:50 2026-06-13 Show GitHub Exploit DB Packet Storm
592 10.0 CRITICAL
Network 		- - SimpleHelp versions 5.5.15 and prior and 6.0 pre-release versions contain an authentication bypass vulnerability in the OIDC authentication flow. When OIDC authentication is configured, identity toke… CWE-347
 Improper Verification of Cryptographic Signature 		CVE-2026-48558 2026-06-16 05:50 2026-06-13 Show GitHub Exploit DB Packet Storm
593 4.3 MEDIUM
Network 		- - Capgo before 12.128.2 fails to delete previously uploaded profile images from backend storage when users replace or remove them. Attackers can access orphaned image files through previously generated… CWE-459
 Incomplete Cleanup 		CVE-2026-53867 2026-06-16 05:50 2026-06-13 Show GitHub Exploit DB Packet Storm
594 7.5 HIGH
Network 		- - Capgo before 12.128.2 contains a denial of service vulnerability allowing attackers to register accounts using arbitrary email addresses without verification, then initiate deletion to lock emails in… CWE-306
Missing Authentication for Critical Function 		CVE-2026-53868 2026-06-16 05:50 2026-06-13 Show GitHub Exploit DB Packet Storm
595 - - - The Iptanus File Upload WordPress plugin before 5.1.7 does not implement proper file handling when the duplicatepolicy setting is configured to "maintain both." Due to a Time-of-Check to Time-of-Use … - CVE-2025-15546 2026-06-16 05:50 2026-06-14 Show GitHub Exploit DB Packet Storm
596 7.8 HIGH
Local 		- - Heap buffer out-of-bounds read vulnerability in Avira Antivirus engine when scanning a malformed PDF file may allow Local Execution of Code or Denial-of-Service of the antivirus engine process. This… CWE-125
Out-of-bounds Read 		CVE-2025-7002 2026-06-16 05:49 2026-06-13 Show GitHub Exploit DB Packet Storm
597 7.8 HIGH
Local 		- - Heap buffer out-of-bounds read vulnerability in Avira Antivirus engine when scanning a malformed PDF file may allow Local Execution of Code or Denial-of-Service of the antivirus engine process. This… CWE-125
Out-of-bounds Read 		CVE-2025-7003 2026-06-16 05:49 2026-06-13 Show GitHub Exploit DB Packet Storm
598 7.8 HIGH
Local 		- - Heap buffer out-of-bounds read vulnerability in Avira Antivirus engine when scanning a malformed Windows MSI file may allow Local Execution of Code or Denial-of-Service of the antivirus engine proces… CWE-125
Out-of-bounds Read 		CVE-2025-7017 2026-06-16 05:49 2026-06-13 Show GitHub Exploit DB Packet Storm
599 5.5 MEDIUM
Local 		- - Null pointer dereference vulnerability in Avira Antivirus engine when scanning a malformed Windows PE file may allow Denial-of-Service of the antivirus engine process. This issue affects Avira Antiv… CWE-476
 NULL Pointer Dereference 		CVE-2025-7018 2026-06-16 05:49 2026-06-13 Show GitHub Exploit DB Packet Storm
600 7.8 HIGH
Local 		- - Heap buffer out-of-bounds write vulnerability in Avast Antivirus when scanning a malformed Windows PE file may allow Local Execution of Code or Denial-of-Service of the antivirus process. This issue… CWE-787
 Out-of-bounds Write 		CVE-2025-7004 2026-06-16 05:49 2026-06-13 Show GitHub Exploit DB Packet Storm