Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 16, 2026, 2:07 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
132161 6.7 警告
Local 		Google Android Android のカーネルにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2021-0454 2021-11-17 16:32 2021-03-1 Show GitHub Exploit DB Packet Storm
132162 7.8 重要
Local 		SaltStack
Fedora Project		 Salt
Fedora 		SaltStack Salt における OS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2020-28243 2021-11-17 16:28 2020-11-6 Show GitHub Exploit DB Packet Storm
132163 9.8 緊急
Network 		Scytl Scytl Secure Vote Scytl sVote における OS コードインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2019-25022 2021-11-17 16:28 2021-02-27 Show GitHub Exploit DB Packet Storm
132164 7.5 重要
Adjacent 		w1.fi
Debian
Fedora Project		 Debian GNU/Linux
Fedora
wpa_supplicant 		wpa_supplicant における脆弱性 CWE-noinfo
情報不足 		CVE-2021-27803 2021-11-17 16:28 2021-02-25 Show GitHub Exploit DB Packet Storm
132165 9.8 緊急
Network 		Visualware MyConnection Server Visualware MyConnection Server における危険なタイプのファイルの無制限アップロードに関する脆弱性 CWE-434
危険なタイプのファイルの無制限アップロード 		CVE-2021-27198 2021-11-17 16:28 2021-02-26 Show GitHub Exploit DB Packet Storm
132166 5.3 警告
Network 		Debian
NetApp
Apache Software Foundation
Eclipse Foundation
オラクル		 SnapManager
NetApp SolidFire
NetApp HCI Management Node
Jetty
Apache Solr
REST Data Services
E-Series SANtricity Web Services
el… 		Eclipse Jetty におけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2020-27223 2021-11-17 16:28 2020-10-19 Show GitHub Exploit DB Packet Storm
132167 9.1 緊急
Network 		PrestaShop PrestaShop PrestaShop における認証に関する脆弱性 CWE-287
不適切な認証 		CVE-2021-21308 2021-11-17 16:28 2021-02-22 Show GitHub Exploit DB Packet Storm
132168 6.5 警告
Network 		Matrix Synapse Synapse におけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2021-21274 2021-11-17 16:28 2021-01-13 Show GitHub Exploit DB Packet Storm
132169 6.1 警告
Network 		Matrix Synapse Synapse におけるオープンリダイレクトの脆弱性 CWE-601
オープンリダイレクト 		CVE-2021-21273 2021-11-17 16:28 2021-01-13 Show GitHub Exploit DB Packet Storm
132170 7.5 重要
Network 		ABB PM556
PM566
PM554
PM564
PM573
PM572 		複数の ABB AC500 V2 製品におけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2020-24686 2021-11-17 16:28 2020-08-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
131 - - - The Wertheim SafeController Family 65000, Controller 65000 - AssemblyVersion 6.11.8130.22319, uses weak custom cryptographic algorithms with hard-coded cryptographic keys to protect communication. An… New CWE-321
 Use of Hard-coded Cryptographic Key 		CVE-2026-34022 2026-06-15 23:16 2026-06-15 Show GitHub Exploit DB Packet Storm
132 - - - The Wertheim SafeController 5400, Controller 5400 - AssemblyVersion 6.11.8130.22320, uses RS-485 communication between the server and the microcontroller without cryptographic protection. An attacker… New CWE-294
Authentication Bypass by Capture-replay  		CVE-2026-34021 2026-06-15 23:16 2026-06-15 Show GitHub Exploit DB Packet Storm
133 6.5 MEDIUM
Network 		- - Missing Authorization vulnerability in StylemixThemes MasterStudy LMS Pro allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects MasterStudy LMS Pro: from n/a before 4.7… New CWE-862
 Missing Authorization 		CVE-2025-64215 2026-06-15 23:16 2026-06-15 Show GitHub Exploit DB Packet Storm
134 7.1 HIGH
Network 		- - WordPress Sliced Invoices 3.8.2 contains an authenticated SQL injection vulnerability that allows authenticated attackers to manipulate database queries by injecting SQL code through the 'post' param… New CWE-89
SQL Injection 		CVE-2019-25746 2026-06-15 23:16 2026-06-15 Show GitHub Exploit DB Packet Storm
135 7.5 HIGH
Network 		- - WordPress CherryFramework Themes 3.1.4 contains an information disclosure vulnerability that allows unauthenticated attackers to download sensitive backup files by accessing the download_backup.php e… New CWE-306
Missing Authentication for Critical Function 		CVE-2018-25437 2026-06-15 23:16 2026-06-15 Show GitHub Exploit DB Packet Storm
136 9.8 CRITICAL
Network 		- - WordPress Plugin Baggage Freight Shipping Australia 0.1.0 contains an unrestricted file upload vulnerability that allows unauthenticated attackers to upload arbitrary files by exploiting the upload-p… New CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2018-25436 2026-06-15 23:16 2026-06-15 Show GitHub Exploit DB Packet Storm
137 7.2 HIGH
Network 		- - WordPress appointment-booking-calendar 1.1.24 contains multiple privilege escalation vulnerabilities that allow unauthenticated attackers to modify calendar settings and inject persistent cross-site … New CWE-79
Cross-site Scripting 		CVE-2016-20084 2026-06-15 23:16 2026-06-15 Show GitHub Exploit DB Packet Storm
138 5.3 MEDIUM
Network 		- - WordPress More Fields Plugin 2.1 contains a cross-site request forgery vulnerability that allows attackers to perform unauthorized actions by disabling CSRF token validation. Attackers can craft mali… New CWE-352
 Origin Validation Error 		CVE-2016-20083 2026-06-15 23:16 2026-06-15 Show GitHub Exploit DB Packet Storm
139 6.2 MEDIUM
Local 		- - WordPress Plugin Abtest contains a local file inclusion vulnerability that allows unauthenticated attackers to include arbitrary files by manipulating the action parameter. Attackers can send GET req… New CWE-98
 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') 		CVE-2016-20082 2026-06-15 23:16 2026-06-15 Show GitHub Exploit DB Packet Storm
140 7.5 HIGH
Network 		- - WordPress Plugin HB Audio Gallery Lite 1.0.0 contains a path traversal vulnerability that allows unauthenticated attackers to download arbitrary files by manipulating the file_path parameter. Attacke… New CWE-22
Path Traversal 		CVE-2016-20081 2026-06-15 23:16 2026-06-15 Show GitHub Exploit DB Packet Storm