Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 9, 2026, 4:11 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
133011 5.5 警告
Local 		xcb project xcb Rust 用 xcb crate における二重解放に関する脆弱性 CWE-415
CWE-416
CVE-2020-36205 2021-10-12 14:57 2020-12-10 Show GitHub Exploit DB Packet Storm
133012 7.2 重要
Network 		Moodle Moodle Moodle におけるコードインジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2021-20187 2021-10-12 14:55 2021-01-25 Show GitHub Exploit DB Packet Storm
133013 8.8 重要
Network 		Apache Software Foundation Apache Druid Apache Druid における重要なリソースに対する不適切なパーミッションの割り当てに関する脆弱性 CWE-732
重要なリソースに対する不適切なパーミッションの割り当て 		CVE-2021-25646 2021-10-12 14:46 2021-01-29 Show GitHub Exploit DB Packet Storm
133014 6.5 警告
Network 		CKEditor Team CKEditor 5 CKEditor 5 におけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2021-21254 2021-10-12 14:22 2021-01-27 Show GitHub Exploit DB Packet Storm
133015 9.8 緊急
Network 		Bitovi Launchpad launchpad におけるコマンドインジェクションの脆弱性 CWE-77
コマンドインジェクション 		CVE-2021-23330 2021-10-12 14:08 2021-02-1 Show GitHub Exploit DB Packet Storm
133016 7.3 重要
Network 		Artur Kurowski kill-process-on-port kill-process-on-port における OS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2020-28426 2021-10-12 13:58 2020-12-11 Show GitHub Exploit DB Packet Storm
133017 5.3 警告
Network 		Pallets project
Fedora Project		 Jinja
Fedora 		jinja2 におけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2020-28493 2021-10-12 13:51 2020-09-25 Show GitHub Exploit DB Packet Storm
133018 7.5 重要
Network 		MediaWiki MediaWiki MediaWiki における認証情報の不十分な保護に関する脆弱性 CWE-319
CWE-522
CVE-2020-29005 2021-10-11 18:12 2020-09-11 Show GitHub Exploit DB Packet Storm
133019 8.8 重要
Network 		MediaWiki MediaWiki MediaWiki におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2020-29004 2021-10-11 18:12 2020-09-11 Show GitHub Exploit DB Packet Storm
133020 6.5 警告
Network 		Istio
レッドハット		 Red Hat OpenShift Service Mesh
Istio 		Istio pilot における NULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2019-25014 2021-10-11 18:12 2019-11-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
351 7.3 HIGH
Network 		- - A vulnerability has been found in GL.iNet GL-MT3000 up to 4.4.5. Affected is the function FUN_0042e200 of the file /cgi-bin/glc of the component SET_USER_PWD Handler. The manipulation of the argument… New CWE-74
CWE-77
Injection
Command Injection 		CVE-2026-11452 2026-06-8 23:57 2026-06-7 Show GitHub Exploit DB Packet Storm
352 5.0 MEDIUM
Network 		- - A vulnerability was determined in FoundationAgents MetaGPT up to 0.8.2. Affected by this issue is the function check_cmd_exists of the file metagpt/utils/common.py. This manipulation of the argument … New CWE-74
CWE-77
Injection
Command Injection 		CVE-2026-11455 2026-06-8 23:57 2026-06-7 Show GitHub Exploit DB Packet Storm
353 7.3 HIGH
Network 		- - A security flaw has been discovered in erzhongxmu JeeWMS up to 141740afb2ba14d441c82a833d0a418d07ca2d69. This vulnerability affects unknown code of the file /base-boot/jmreport/testConnection of the … New CWE-74
CWE-707
Injection
 Improper Enforcement of Message or Data Structure 		CVE-2026-11457 2026-06-8 23:57 2026-06-7 Show GitHub Exploit DB Packet Storm
354 6.3 MEDIUM
Network 		- - A vulnerability has been found in NousResearch hermes-agent up to 0.12.0. This affects the function resolve_session_by_title of the file hermes_state.py of the component resume Endpoint. Such manipul… New CWE-285
CWE-639
Improper Authorization
 Authorization Bypass Through User-Controlled Key 		CVE-2026-11461 2026-06-8 23:57 2026-06-8 Show GitHub Exploit DB Packet Storm
355 7.3 HIGH
Network 		- - A vulnerability was determined in USCiLab Cereal up to 1.3.2. Affected is an unknown function of the component Shared Pointer Handler. Executing a manipulation can lead to type confusion. The attack … New CWE-843
Type Confusion 		CVE-2026-11463 2026-06-8 23:57 2026-06-8 Show GitHub Exploit DB Packet Storm
356 3.1 LOW
Network 		- - A security flaw has been discovered in songquanpeng one-api up to 0.6.11-preview.7. Affected by this issue is the function Redeem of the file model/redemption.go of the component Redemption Code Top-… New CWE-840
 Business Logic Errors 		CVE-2026-11465 2026-06-8 23:57 2026-06-8 Show GitHub Exploit DB Packet Storm
357 5.3 MEDIUM
Network 		- - A weakness has been identified in erzhongxmu JeeWMS up to 141740afb2ba14d441c82a833d0a418d07ca2d69. This issue affects some unknown processing of the file /base-boot/actuator of the component Boot Ac… New CWE-200
CWE-284
Information Exposure
Improper Access Control 		CVE-2026-11458 2026-06-8 23:57 2026-06-7 Show GitHub Exploit DB Packet Storm
358 7.3 HIGH
Network 		- - A flaw has been found in Boost Serialization up to 1.91. The impacted element is an unknown function. This manipulation causes improper validation of specified type of input. It is possible to initia… New CWE-20
CWE-1287
 Improper Input Validation 
 Improper Validation of Specified Type of Input 		CVE-2026-11460 2026-06-8 23:57 2026-06-8 Show GitHub Exploit DB Packet Storm
359 7.3 HIGH
Network 		- - A vulnerability was found in Chengdu Everbrite Network Technology BeikeShop up to 1.6.0.22. This impacts the function callback of the file plugins/Stripe/Controllers/StripeController.php of the compo… New CWE-266
CWE-285
 Incorrect Privilege Assignment
Improper Authorization 		CVE-2026-11462 2026-06-8 23:57 2026-06-8 Show GitHub Exploit DB Packet Storm
360 3.1 LOW
Network 		- - A vulnerability was identified in JeecgBoot up to 3.9.2. Affected by this vulnerability is the function queryPageList of the file src\main\java\org\jeecg\modules\system\controller\SysUserController.j… New CWE-200
CWE-284
Information Exposure
Improper Access Control 		CVE-2026-11464 2026-06-8 23:57 2026-06-8 Show GitHub Exploit DB Packet Storm