Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 9, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
133141 4.8 警告
Network 		Textpattern Textpattern CMS Textpattern におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2020-35854 2021-10-7 18:11 2020-12-30 Show GitHub Exploit DB Packet Storm
133142 4.8 警告
Network 		4homepages 4images 4images Image Gallery Management System におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2020-35853 2021-10-7 18:11 2020-12-30 Show GitHub Exploit DB Packet Storm
133143 4.8 警告
Network 		Bakeshop Inventory System project Bakeshop Inventory System Bakeshop Online Ordering System におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2020-35309 2021-10-7 18:11 2020-11-26 Show GitHub Exploit DB Packet Storm
133144 9.9 緊急
Network 		HTCondor project HTCondor HTCondor におけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2021-25311 2021-10-7 18:11 2021-01-27 Show GitHub Exploit DB Packet Storm
133145 9.8 緊急
Network 		phpList phpList phpList における脆弱性 CWE-noinfo
情報不足 		CVE-2020-23361 2021-10-7 18:11 2020-05-26 Show GitHub Exploit DB Packet Storm
133146 8.8 重要
Network 		KLog Server KLog Server KLog Server におけるコマンドインジェクションの脆弱性 CWE-77
コマンドインジェクション 		CVE-2021-3317 2021-10-7 18:11 2021-01-26 Show GitHub Exploit DB Packet Storm
133147 6.1 警告
Network 		Winmail Winmail Winmail におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2020-23774 2021-10-7 18:10 2020-06-28 Show GitHub Exploit DB Packet Storm
133148 9.8 緊急
Network 		Local Service Search Engine Management System Local Service Search Engine Management System Local Service Search Engine Management System における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2021-3278 2021-10-7 18:10 2021-06-2 Show GitHub Exploit DB Packet Storm
133149 9.8 緊急
Network 		Nagios Enterprises, LLC Nagios XI Nagios XI で使用される Nagios Docker Config Wizard における脆弱性 CWE-noinfo
情報不足 		CVE-2021-3193 2021-10-7 18:10 2021-01-26 Show GitHub Exploit DB Packet Storm
133150 6.1 警告
Network 		Tenda AC1200 ファームウェア Tenda AC5 AC1200 におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2021-3186 2021-10-7 18:10 2021-01-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
351 7.3 HIGH
Network 		- - A vulnerability has been found in GL.iNet GL-MT3000 up to 4.4.5. Affected is the function FUN_0042e200 of the file /cgi-bin/glc of the component SET_USER_PWD Handler. The manipulation of the argument… New CWE-74
CWE-77
Injection
Command Injection 		CVE-2026-11452 2026-06-8 23:57 2026-06-7 Show GitHub Exploit DB Packet Storm
352 5.0 MEDIUM
Network 		- - A vulnerability was determined in FoundationAgents MetaGPT up to 0.8.2. Affected by this issue is the function check_cmd_exists of the file metagpt/utils/common.py. This manipulation of the argument … New CWE-74
CWE-77
Injection
Command Injection 		CVE-2026-11455 2026-06-8 23:57 2026-06-7 Show GitHub Exploit DB Packet Storm
353 7.3 HIGH
Network 		- - A security flaw has been discovered in erzhongxmu JeeWMS up to 141740afb2ba14d441c82a833d0a418d07ca2d69. This vulnerability affects unknown code of the file /base-boot/jmreport/testConnection of the … New CWE-74
CWE-707
Injection
 Improper Enforcement of Message or Data Structure 		CVE-2026-11457 2026-06-8 23:57 2026-06-7 Show GitHub Exploit DB Packet Storm
354 6.3 MEDIUM
Network 		- - A vulnerability has been found in NousResearch hermes-agent up to 0.12.0. This affects the function resolve_session_by_title of the file hermes_state.py of the component resume Endpoint. Such manipul… New CWE-285
CWE-639
Improper Authorization
 Authorization Bypass Through User-Controlled Key 		CVE-2026-11461 2026-06-8 23:57 2026-06-8 Show GitHub Exploit DB Packet Storm
355 7.3 HIGH
Network 		- - A vulnerability was determined in USCiLab Cereal up to 1.3.2. Affected is an unknown function of the component Shared Pointer Handler. Executing a manipulation can lead to type confusion. The attack … New CWE-843
Type Confusion 		CVE-2026-11463 2026-06-8 23:57 2026-06-8 Show GitHub Exploit DB Packet Storm
356 3.1 LOW
Network 		- - A security flaw has been discovered in songquanpeng one-api up to 0.6.11-preview.7. Affected by this issue is the function Redeem of the file model/redemption.go of the component Redemption Code Top-… New CWE-840
 Business Logic Errors 		CVE-2026-11465 2026-06-8 23:57 2026-06-8 Show GitHub Exploit DB Packet Storm
357 5.3 MEDIUM
Network 		- - A weakness has been identified in erzhongxmu JeeWMS up to 141740afb2ba14d441c82a833d0a418d07ca2d69. This issue affects some unknown processing of the file /base-boot/actuator of the component Boot Ac… New CWE-200
CWE-284
Information Exposure
Improper Access Control 		CVE-2026-11458 2026-06-8 23:57 2026-06-7 Show GitHub Exploit DB Packet Storm
358 7.3 HIGH
Network 		- - A flaw has been found in Boost Serialization up to 1.91. The impacted element is an unknown function. This manipulation causes improper validation of specified type of input. It is possible to initia… New CWE-20
CWE-1287
 Improper Input Validation 
 Improper Validation of Specified Type of Input 		CVE-2026-11460 2026-06-8 23:57 2026-06-8 Show GitHub Exploit DB Packet Storm
359 7.3 HIGH
Network 		- - A vulnerability was found in Chengdu Everbrite Network Technology BeikeShop up to 1.6.0.22. This impacts the function callback of the file plugins/Stripe/Controllers/StripeController.php of the compo… New CWE-266
CWE-285
 Incorrect Privilege Assignment
Improper Authorization 		CVE-2026-11462 2026-06-8 23:57 2026-06-8 Show GitHub Exploit DB Packet Storm
360 3.1 LOW
Network 		- - A vulnerability was identified in JeecgBoot up to 3.9.2. Affected by this vulnerability is the function queryPageList of the file src\main\java\org\jeecg\modules\system\controller\SysUserController.j… New CWE-200
CWE-284
Information Exposure
Improper Access Control 		CVE-2026-11464 2026-06-8 23:57 2026-06-8 Show GitHub Exploit DB Packet Storm