Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 13, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
132461	7.8	重要 Local	Fedora Project Linux Debian	Fedora Debian GNU/Linux Linux Kernel	Linux kernel における脆弱性	CWE-noinfo 情報不足	CVE-2021-26930	2021-11-5 10:20	2021-02-16	Show	GitHub Exploit DB Packet Storm

132462	5.5	警告 Local	Fedora Project Linux Debian	Fedora Debian GNU/Linux Linux Kernel	Linux kernel における制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2021-26931	2021-11-5 10:08	2021-02-16	Show	GitHub Exploit DB Packet Storm

132463	4.3	警告 Network	シスコシステムズ	Cisco Identity Services Engine (ISE)	Cisco Identity Services Engine における権限管理に関する脆弱性	CWE-269 不適切な権限管理	CVE-2021-1416	2021-11-4 18:16	2021-02-17	Show	GitHub Exploit DB Packet Storm

132464	7.8	重要 Local	シスコシステムズ	Cisco AnyConnect Secure Mobility Client	Windows 用 Cisco AnyConnect Secure Mobility Client におけるデジタル署名の検証に関する脆弱性	CWE-347 デジタル署名の不適切な検証	CVE-2021-1366	2021-11-4 18:16	2021-02-17	Show	GitHub Exploit DB Packet Storm

132465	6.1	警告 Network	シスコシステムズ	Cisco WebEx Meetings	Cisco Webex Meetings におけるクロスサイトスクリプティングの脆弱性	CWE-80 クロスサイトスクリプティング (Basic XSS)	CVE-2021-1351	2021-11-4 18:16	2021-02-17	Show	GitHub Exploit DB Packet Storm

132466	6.5	警告 Network	IBM	Maximo for Civil Infrastructure	IBM Maximo for Civil Infrastructure における認証情報の不十分な保護に関する脆弱性	CWE-522 認証情報の不十分な保護	CVE-2021-20445	2021-11-4 18:16	2021-02-12	Show	GitHub Exploit DB Packet Storm

132467	6.1	警告 Network	IBM	Maximo for Civil Infrastructure	IBM Maximo for Civil Infrastructure におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2021-20444	2021-11-4 18:15	2021-02-12	Show	GitHub Exploit DB Packet Storm

132468	8.8	重要 Network	IBM	Maximo for Civil Infrastructure	IBM Maximo for Civil Infrastructure における信頼できない制御領域からの機能の組み込みに関する脆弱性	CWE-829 信頼性のない制御領域からの機能の組み込み	CVE-2021-20443	2021-11-4 18:15	2021-02-12	Show	GitHub Exploit DB Packet Storm

132469	7.5	重要 Network	IBM	IBM WebSphere Application Server	IBM WebSphere Application Server におけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2021-20354	2021-11-4 18:15	2021-02-17	Show	GitHub Exploit DB Packet Storm

132470	9.8	緊急 Network	Irfan Skiljan	WPG	IrfanView 用 WPG プラグインにおける境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2021-27362	2021-11-4 18:15	2021-02-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
331	-		-	-	Quest Bot is an opensource modern Discord Bot built for moderation, utilities and support. Prior to version 1.0.4, a user who can configure bot settings can set the ticket transcript channel to a cha… New	CWE-200 Information Exposure	CVE-2026-47177	2026-06-12 05:58	2026-06-12	Show	GitHub Exploit DB Packet Storm

332	-		-	-	PenguinMod-BackendApi is the backend api for penguinmod. Prior to version 1.0.0, a NoSQL injection vulnerability in the password reset endpoint allows any authenticated user to change the password of… New	CWE-20 CWE-943 Improper Input Validation Improper Neutralization of Special Elements in Data Query Logic	CVE-2026-47181	2026-06-12 05:58	2026-06-12	Show	GitHub Exploit DB Packet Storm

333	-		-	-	Quest Bot is an opensource modern Discord Bot built for moderation, utilities and support. Prior to version 1.0.5, the latest release suppresses mentions in several moderation commands, but /unban an… New	CWE-116 Improper Encoding or Escaping of Output	CVE-2026-47188	2026-06-12 05:58	2026-06-12	Show	GitHub Exploit DB Packet Storm

334	-		-	-	Quest Bot is an opensource modern Discord Bot built for moderation, utilities and support. Prior to version 1.0.5, the AutoMod remove flow looks up and deletes rules by global database ID without ver… New	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2026-47189	2026-06-12 05:58	2026-06-12	Show	GitHub Exploit DB Packet Storm

335	7.3	HIGH Network	-	-	KanaDojo contains a command injection vulnerability that allows an attacker with pull request access to execute arbitrary shell commands by inserting shell metacharacters into the version or changes … New	CWE-78 OS Command	CVE-2026-48547	2026-06-12 05:57	2026-06-12	Show	GitHub Exploit DB Packet Storm

336	7.6	HIGH Network	-	-	An integer overflow flaw was found in the SASL I/O layer of 389 Directory Server (389-ds-base). In sasl_io_start_packet(), adding sizeof(uint32_t) to a crafted SASL packet length prefix of 0xFFFFFFFC… New	CWE-190 Integer Overflow or Wraparound	CVE-2026-11774	2026-06-12 05:56	2026-06-12	Show	GitHub Exploit DB Packet Storm

337	-		-	-	Idira Endpoint Privilege Manager Agent versions prior to 26.5 exhibit improper access control within high-privileged agent components. A local, low-privileged attacker could exploit this by manipulat… New	CWE-269 Improper Privilege Management	CVE-2026-45176	2026-06-12 05:56	2026-06-12	Show	GitHub Exploit DB Packet Storm

338	-		-	-	Idira Secrets Manager SaaS Edge versions prior to 1.8 exhibit improper access control within its internal authentication components. A remote, unauthenticated attacker could exploit this by submittin… New	CWE-284 Improper Access Control	CVE-2026-45177	2026-06-12 05:56	2026-06-12	Show	GitHub Exploit DB Packet Storm

339	-		-	-	Idira Secrets Manager Self-Hosted versions 13.8.0 and lower exhibit improper access control within internal cluster endpoints. A remote, authenticated attacker possessing standard node-level credenti… New	CWE-284 Improper Access Control	CVE-2026-45178	2026-06-12 05:56	2026-06-12	Show	GitHub Exploit DB Packet Storm

340	-		-	-	Vim is an open source, command line text editor. Prior to version 9.2.0495, a Vimscript code injection vulnerability exists in s:NetrwBookHistSave() in the netrw plugin (runtime/pack/dist/opt/netrw/a… New	CWE-74 CWE-94 Injection Code Injection	CVE-2026-47162	2026-06-12 05:56	2026-06-12	Show	GitHub Exploit DB Packet Storm