Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 11, 2026, 6:13 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
133001 6.5 警告
Network 		Google
Outlook.com		 Microsoft Edge Chromium
Google Chrome 		Chromium CVE-2021-21134: Incorrect security UI in Page Info CWE-290
スプーフィングによる認証回避 		CVE-2021-21134 2021-10-20 17:38 2021-01-19 Show GitHub Exploit DB Packet Storm
133002 6.5 警告
Network 		Google
Outlook.com		 Microsoft Edge Chromium
Google Chrome 		Chromium CVE-2021-21133: Insufficient policy enforcement in Downloads CWE-287
不適切な認証 		CVE-2021-21133 2021-10-20 17:38 2021-01-19 Show GitHub Exploit DB Packet Storm
133003 8.8 重要
Network 		Google
Outlook.com		 Microsoft Edge Chromium
Google Chrome 		Chromium CVE-2021-21128: Heap buffer overflow in Blink CWE-787
境界外書き込み 		CVE-2021-21128 2021-10-20 17:38 2021-01-19 Show GitHub Exploit DB Packet Storm
133004 8.8 重要
Network 		Google
Outlook.com		 Microsoft Edge Chromium
Google Chrome 		Chromium CVE-2021-21127: Insufficient policy enforcement in extensions CWE-287
不適切な認証 		CVE-2021-21127 2021-10-20 17:38 2021-01-19 Show GitHub Exploit DB Packet Storm
133005 6.5 警告
Network 		Google
Outlook.com		 Microsoft Edge Chromium
Google Chrome 		Chromium CVE-2021-21126: Insufficient policy enforcement in extensions CWE-287
不適切な認証 		CVE-2021-21126 2021-10-20 17:38 2021-01-19 Show GitHub Exploit DB Packet Storm
133006 8.1 重要
Network 		Google
Outlook.com		 Microsoft Edge Chromium
Google Chrome 		Chromium CVE-2021-21125: Insufficient policy enforcement in File System API CWE-287
不適切な認証 		CVE-2021-21125 2021-10-20 17:38 2021-01-19 Show GitHub Exploit DB Packet Storm
133007 9.6 緊急
Network 		Google
Outlook.com		 Microsoft Edge Chromium
Google Chrome 		Chromium CVE-2021-21124: Potential user after free in Speech Recognizer CWE-416
解放済みメモリの使用 		CVE-2021-21124 2021-10-20 17:38 2021-01-19 Show GitHub Exploit DB Packet Storm
133008 9.6 緊急
Network 		Google
Outlook.com		 Microsoft Edge Chromium
Google Chrome 		Chromium CVE-2021-21121: Use after free in Omnibox CWE-416
解放済みメモリの使用 		CVE-2021-21121 2021-10-20 17:38 2021-01-19 Show GitHub Exploit DB Packet Storm
133009 8.8 重要
Network 		Google
Outlook.com		 Microsoft Edge Chromium
Google Chrome 		Chromium CVE-2021-21120: Use after free in WebSQL CWE-416
解放済みメモリの使用 		CVE-2021-21120 2021-10-20 17:38 2021-01-19 Show GitHub Exploit DB Packet Storm
133010 8.8 重要
Network 		Google
Outlook.com		 Microsoft Edge Chromium
Google Chrome 		Chromium CVE-2021-21119: Use after free in Media CWE-416
解放済みメモリの使用 		CVE-2021-21119 2021-10-20 17:38 2021-01-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
601 9.3 CRITICAL
Adjacent 		- - A flaw was found in assisted-migration-agent. The application hardcodes insecure Transport Layer Security (TLS) connections when communicating with vCenter. This vulnerability allows a Man-in-the-Mid… New CWE-295
Improper Certificate Validation  		CVE-2026-53475 2026-06-11 00:16 2026-06-11 Show GitHub Exploit DB Packet Storm
602 9.6 CRITICAL
Network 		- - A flaw was found in migration-planner. A remote authenticated attacker could exploit this vulnerability by uploading a specially crafted RVTools .xlsx file. Due to improper input sanitization, malici… New CWE-89
SQL Injection 		CVE-2026-53474 2026-06-11 00:16 2026-06-11 Show GitHub Exploit DB Packet Storm
603 7.3 HIGH
Network 		- - A flaw was found in migration-planner-ui-app. An attacker can register a malicious discovery agent with a specially crafted credentialUrl containing JavaScript code. When an organizational user click… New CWE-79
Cross-site Scripting 		CVE-2026-53473 2026-06-11 00:16 2026-06-11 Show GitHub Exploit DB Packet Storm
604 9.6 CRITICAL
Network 		- - A flaw was found in migration-planner. An authenticated attacker could exploit an improper access control vulnerability in the `/api/v1/sources/{id}/image-url` endpoint. This flaw allows the attacker… New CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2026-53470 2026-06-11 00:16 2026-06-11 Show GitHub Exploit DB Packet Storm
605 9.1 CRITICAL
Network 		- - A flaw was found in migration-planner. An authenticated user can exploit this vulnerability by sending a DELETE request to the /api/v1/sources route, which lacks proper authorization and filtering. T… New CWE-306
Missing Authentication for Critical Function 		CVE-2026-53469 2026-06-11 00:16 2026-06-11 Show GitHub Exploit DB Packet Storm
606 4.8 MEDIUM
Network 		- - Ghidra before 12.2 contains an unauthenticated path traversal vulnerability in the IsfServer that accepts TCP connections and passes client-supplied namespace strings directly to filesystem operation… New CWE-22
Path Traversal 		CVE-2026-52756 2026-06-11 00:16 2026-06-10 Show GitHub Exploit DB Packet Storm
607 6.1 MEDIUM
Local 		- - Ghidra before 12.1 contains a heap-use-after-free vulnerability in SleighBuilder::generatePointerAdd caused by iterator invalidation when PcodeCacher::allocateInstruction reallocates the issued vecto… New CWE-416
 Use After Free 		CVE-2026-49496 2026-06-11 00:16 2026-06-10 Show GitHub Exploit DB Packet Storm
608 9.9 CRITICAL
Network 		- - Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. In versions 8.2.6.4 and prior, the install blueprint declares only bp.before_request → @jwt_required() (app/rout… New CWE-639
CWE-862
CWE-863
 Authorization Bypass Through User-Controlled Key
 Missing Authorization
 Incorrect Authorization 		CVE-2026-45552 2026-06-11 00:16 2026-06-11 Show GitHub Exploit DB Packet Storm
609 8.8 HIGH
Network 		- - Issue summary: A specially crafted PKCS#7 or S/MIME signed message could trigger a use-after-free during PKCS#7 signature verification. Impact summary: A use-after-free may result in process crashes… New CWE-416
 Use After Free 		CVE-2026-45447 2026-06-11 00:16 2026-06-10 Show GitHub Exploit DB Packet Storm
610 9.8 CRITICAL
Network 		- - DedeCMS V5.7.118 is vulnerable to Command Execution in file_manage_control.php. New CWE-78
OS Command  		CVE-2026-38615 2026-06-11 00:16 2026-06-10 Show GitHub Exploit DB Packet Storm