Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 13, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
132661	-	-	日立	Hitachi Device Manager	Hitachi Device Manager における認証バイパスの脆弱性	CWE-noinfo 情報不足	-	2021-11-1 14:58	2021-10-29	Show	GitHub Exploit DB Packet Storm

132662	9.8	緊急 Network	inoideas	inoERP	InoERP におけるコードインジェクションの脆弱性	CWE-20 CWE-94	CVE-2020-28870	2021-11-1 14:23	2020-03-14	Show	GitHub Exploit DB Packet Storm

132663	5.3	警告 Network	qwutils	qwutils	Rust 用 qwutils crate における二重解放に関する脆弱性	CWE-415 二重解放	CVE-2021-26954	2021-11-1 14:23	2021-02-3	Show	GitHub Exploit DB Packet Storm

132664	7.5	重要 Network	postscript project	postscript	Rust 用 postscript crate における初期化されていないリソースの使用に関する脆弱性	CWE-908 初期化されていないリソースの使用	CVE-2021-26953	2021-11-1 14:23	2021-01-30	Show	GitHub Exploit DB Packet Storm

132665	9.8	緊急 Network	calamine	calamine	Rust 用 calamine crate における境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2021-26951	2021-11-1 14:23	2021-01-6	Show	GitHub Exploit DB Packet Storm

132666	9.6	緊急 Network	Acquia Inc.	Mautic	Mautic におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2020-35125	2021-11-1 14:23	2020-12-11	Show	GitHub Exploit DB Packet Storm

132667	9.1	緊急 Network	SAP	SCIMono	SCIMono におけるインジェクションに関する脆弱性	CWE-74 インジェクション	CVE-2021-21479	2021-11-1 14:22	2021-02-9	Show	GitHub Exploit DB Packet Storm

132668	6.1	警告 Network	SAP	Web Dynpro ABAP	SAP Web Dynpro ABAP におけるオープンリダイレクトの脆弱性	CWE-601 オープンリダイレクト	CVE-2021-21478	2021-11-1 14:22	2021-02-9	Show	GitHub Exploit DB Packet Storm

132669	9.9	緊急 Network	SAP	SAP Commerce	SAP Commerce Cloud におけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2021-21477	2021-11-1 14:22	2021-02-9	Show	GitHub Exploit DB Packet Storm

132670	6.1	警告 Network	SAP	SAPUI5	SAP UI5 におけるオープンリダイレクトの脆弱性	CWE-601 オープンリダイレクト	CVE-2021-21476	2021-11-1 14:22	2021-02-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
391	7.8	HIGH Local	adobe	acrobat acrobat_reader	Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. E… New	CWE-787 Out-of-bounds Write	CVE-2026-47911	2026-06-12 04:15	2026-06-10	Show	GitHub Exploit DB Packet Storm

392	7.8	HIGH Local	adobe	acrobat acrobat_reader	Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploit… New	CWE-416 Use After Free	CVE-2026-47912	2026-06-12 04:15	2026-06-10	Show	GitHub Exploit DB Packet Storm

393	7.8	HIGH Local	adobe	acrobat acrobat_reader	Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploit… New	CWE-416 Use After Free	CVE-2026-47913	2026-06-12 04:08	2026-06-10	Show	GitHub Exploit DB Packet Storm

394	7.8	HIGH Local	adobe	acrobat acrobat_reader	Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploit… New	CWE-416 Use After Free	CVE-2026-47914	2026-06-12 04:08	2026-06-10	Show	GitHub Exploit DB Packet Storm

395	6.1	MEDIUM Network	microsoft	sharepoint_server	Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network. Update	CWE-79 Cross-site Scripting	CVE-2026-33113	2026-06-12 04:03	2026-06-10	Show	GitHub Exploit DB Packet Storm

396	5.4	MEDIUM Network	adobe	experience_manager	Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a DOM-based Cross-Site Scripting (XSS) vulnerability. An attacker could exploit this issue by manipulating the D… Update	CWE-79 Cross-site Scripting	CVE-2026-34692	2026-06-12 04:03	2026-06-10	Show	GitHub Exploit DB Packet Storm

397	8.1	HIGH Network	microsoft	visual_studio_code	Improper input validation in Visual Studio Code allows an unauthorized attacker to elevate privileges over a network. Update	CWE-20 NVD-CWE-noinfo Improper Input Validation	CVE-2026-40376	2026-06-12 03:56	2026-06-10	Show	GitHub Exploit DB Packet Storm

398	5.5	MEDIUM Local	microsoft	windows_server_2019 windows_server_2022 windows_server_2025	Use after free in Windows Network Controller (NC) Host Agent allows an authorized attacker to deny service locally. Update	CWE-416 CWE-822 Use After Free Untrusted Pointer Dereference	CVE-2026-44805	2026-06-12 03:55	2026-06-10	Show	GitHub Exploit DB Packet Storm

399	8.8	HIGH Network	microsoft	windows_server_2022 windows_server_2025	Stack-based buffer overflow in Active Directory Domain Services allows an authorized attacker to execute code over a network. Update	CWE-121 Stack-based Buffer Overflow	CVE-2026-45648	2026-06-12 03:54	2026-06-10	Show	GitHub Exploit DB Packet Storm

400	7.5	HIGH Network	svelte	svelte	Svelte is a performance oriented web framework. From version 5.51.5 to before version 5.55.7, an internal regex in the Svelte runtime can take exponential time to test in <svelte:element this={tag}><… Update	CWE-1333 Inefficient Regular Expression Complexity	CVE-2026-42567	2026-06-12 03:54	2026-06-10	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed