Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 26, 2026, 12:10 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
132591 8.8 重要
Network 		port-killer project port-killer port-killer パッケージにおける入力確認に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2021-23359 2021-12-2 18:04 2021-03-18 Show GitHub Exploit DB Packet Storm
132592 7.8 重要
Local 		Linux
Fedora Project		 Linux Kernel
Fedora 		Linux Kernel における境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2021-28660 2021-12-2 18:04 2021-03-10 Show GitHub Exploit DB Packet Storm
132593 7.5 重要
Network 		Pygments Pygments pygments における脆弱性 CWE-Other
その他 		CVE-2021-27291 2021-12-2 18:04 2021-01-11 Show GitHub Exploit DB Packet Storm
132594 9.8 緊急
Network 		クアルコム APQ8009W ファームウェア
APQ8009 ファームウェア
CSRA6620 ファームウェア
AQT1000 ファームウェア
APQ8096AU ファームウェア
APQ8053 ファームウェア
APQ8064AU ファームウェア
APQ8017 ファームウェア
A… 		複数の Qualcomm 製品における古典的バッファオーバーフローの脆弱性 CWE-120
古典的バッファオーバーフロー 		CVE-2020-11299 2021-12-2 18:04 2020-03-31 Show GitHub Exploit DB Packet Storm
132595 7 重要
Local 		クアルコム APQ8009W ファームウェア
CSRA6640 ファームウェア
APQ8009 ファームウェア
CSRA6620 ファームウェア
FSM10055 ファームウェア
AQT1000 ファームウェア
CSRB31024 ファームウェア
APQ8053 ファームウェア
A… 		複数の Qualcomm 製品における解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2020-11290 2021-12-2 18:04 2020-03-31 Show GitHub Exploit DB Packet Storm
132596 9.6 緊急
Network 		myDBR.com myDBR myDBR におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2020-28149 2021-12-2 18:04 2020-11-2 Show GitHub Exploit DB Packet Storm
132597 8.2 重要
Network 		Envoy Proxy Envoy Envoy における認証アルゴリズムの不適切な実装に関する脆弱性 CWE-287
CWE-303
CVE-2021-21378 2021-12-2 18:04 2021-02-26 Show GitHub Exploit DB Packet Storm
132598 5.5 警告
Local 		トレンドマイクロ Trend Micro Control Manager
TrendMicro InterScan Web Security Virtual Appliance
Apex One
Deep Discovery Email Inspector
Trend&n… 		複数の Trend Micro 製品におけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2021-25252 2021-12-2 18:04 2021-03-2 Show GitHub Exploit DB Packet Storm
132599 6.1 警告
Network 		マイクロフォーカス株式会社 Access Manager (NAM) Micro Focus Access Manager におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2020-25840 2021-12-2 18:03 2020-09-23 Show GitHub Exploit DB Packet Storm
132600 6.1 警告
Network 		TP-LINK Technologies TL-WA801N ファームウェア
TL-WA801ND ファームウェア
TL-WR802N ファームウェア
Archer-C3150 ファームウェア
TD-W9977 ファームウェア 		複数の TP-Link 製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2021-3275 2021-12-2 18:03 2021-01-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 26, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1491 7.1 HIGH
Local 		- - A malicious application may cause unexpected changes in memory shared between processes. A memory corruption issue was addressed with improved state management. This issue is fixed in macOS Monterey … CWE-362
Race Condition 		CVE-2022-26758 2026-06-11 23:43 2026-06-11 Show GitHub Exploit DB Packet Storm
1492 3.5 LOW
Physics 		- - A person with access to a Mac may be able to bypass Login Window. A consistency issue was addressed with improved state handling. This issue is fixed in macOS Monterey 12.4. CWE-287
Improper Authentication 		CVE-2022-48575 2026-06-11 23:43 2026-06-11 Show GitHub Exploit DB Packet Storm
1493 5.3 MEDIUM
Local 		- - Improper input validation for DIMM serial presence detect (SPD) metadata could allow an attacker with physical access, ring0 access on a system with a non-compliant DIMM, or control over the Root of … CWE-20
 Improper Input Validation  		CVE-2024-21944 2026-06-11 23:43 2026-06-11 Show GitHub Exploit DB Packet Storm
1494 3.7 LOW
Network 		- - A vulnerability was determined in TwiN gatus 5.36.0. Impacted is the function setSessionCookie of the file security/oidc.go of the component OIDC Session Cookie Handler. Executing a manipulation can … CWE-614
CWE-1004
 Sensitive Cookie in HTTPS Session Without 'Secure' Attribute
 Sensitive Cookie Without 'HttpOnly' Flag 		CVE-2026-11956 2026-06-11 23:42 2026-06-11 Show GitHub Exploit DB Packet Storm
1495 4.7 MEDIUM
Network 		- - The Open User Map PRO plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'oum_location_notification' parameter in versions up to, and including, 1.4.31 due to insufficient inpu… CWE-79
Cross-site Scripting 		CVE-2026-2827 2026-06-11 23:42 2026-06-11 Show GitHub Exploit DB Packet Storm
1496 8.1 HIGH
Network 		- - The UpdraftPlus: WP Backup & Migration Plugin plugin for WordPress is vulnerable to Authentication Bypass in all versions up to, and including, 1.26.4 via the UpdraftPlus_Remote_Communications_V2::wp… CWE-347
 Improper Verification of Cryptographic Signature 		CVE-2026-10795 2026-06-11 23:42 2026-06-11 Show GitHub Exploit DB Packet Storm
1497 7.1 HIGH
Network 		- - Improper neutralization of input during web page generation ('cross-site scripting') vulnerability in WPVibes WP Mail Log allows DOM-Based XSS. This issue affects WP Mail Log: from n/a through 1.0.2. CWE-79
Cross-site Scripting 		CVE-2023-33999 2026-06-11 23:42 2026-06-11 Show GitHub Exploit DB Packet Storm
1498 5.3 MEDIUM
Network 		- - Authorization bypass through User-Controlled key vulnerability in Essential Plugin WP Logo Showcase Responsive Slider and Carousel allows Exploiting Incorrectly Configured Access Control Security Lev… CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2023-40200 2026-06-11 23:42 2026-06-11 Show GitHub Exploit DB Packet Storm
1499 4.3 MEDIUM
Network 		- - Cross-Site request forgery (CSRF) vulnerability in Magepeople inc. WpEvently allows Cross Site Request Forgery. This issue affects WpEvently: from n/a through 4.1.2. CWE-352
 Origin Validation Error 		CVE-2024-32110 2026-06-11 23:42 2026-06-11 Show GitHub Exploit DB Packet Storm
1500 5.4 MEDIUM
Network 		- - Missing Authorization vulnerability in TemplateHouse Soledad allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects Soledad: from n/a through 8.2.5. CWE-862
 Missing Authorization 		CVE-2022-42479 2026-06-11 23:42 2026-06-11 Show GitHub Exploit DB Packet Storm