Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 7, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
133391 7.5 重要
Network 		FreyrSCADA Embedded Solution IEC-60879-5-104 Server Simulator FreyrSCADA IEC-60879-5-104 Server Simulator における不適切な比較に関する脆弱性 CWE-697
不適切な比較 		CVE-2020-13559 2021-09-14 18:08 2020-10-26 Show GitHub Exploit DB Packet Storm
133392 6.5 警告
Network 		IBM IBM MQ Appliance IBM MQ Appliance における古典的バッファオーバーフローの脆弱性 CWE-120
古典的バッファオーバーフロー 		CVE-2020-4869 2021-09-14 18:08 2021-01-7 Show GitHub Exploit DB Packet Storm
133393 7.8 重要
Local 		Delta Electronics CNCSoft-B Delta Electronics CNCSoft-B における型の取り違えに関する脆弱性 CWE-843
型の取り違え 		CVE-2020-27293 2021-09-14 18:08 2020-08-26 Show GitHub Exploit DB Packet Storm
133394 7.8 重要
Local 		Delta Electronics CNCSoft-B Delta Electronics CNCSoft-B における境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2020-27291 2021-09-14 18:08 2020-09-4 Show GitHub Exploit DB Packet Storm
133395 7.8 重要
Local 		Delta Electronics CNCSoft-B Delta Electronics CNCSoft-B における NULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2020-27289 2021-09-14 18:08 2020-09-4 Show GitHub Exploit DB Packet Storm
133396 7.8 重要
Local 		Delta Electronics CNCSoft-B Delta Electronics CNCSoft-B における境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2020-27287 2021-09-14 18:08 2020-08-26 Show GitHub Exploit DB Packet Storm
133397 9.8 緊急
Network 		Daylight Studio FUEL CMS FUEL CMS における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2020-26045 2021-09-14 18:04 2020-09-23 Show GitHub Exploit DB Packet Storm
133398 7.5 重要
Network 		Apache Software Foundation Apache Flink Apache Flink における外部からアクセス可能なファイルまたはディレクトリに関する脆弱性 CWE-552
外部からアクセス可能なファイルまたはディレクトリ 		CVE-2020-17519 2021-09-14 18:04 2020-08-12 Show GitHub Exploit DB Packet Storm
133399 7.5 重要
Network 		Apache Software Foundation Apache Flink Apache Flink におけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2020-17518 2021-09-14 18:04 2020-08-12 Show GitHub Exploit DB Packet Storm
133400 6.7 警告
Local 		Linux
Fedora Project		 Linux Kernel
Fedora 		Linux Kernel における古典的バッファオーバーフローの脆弱性 CWE-120
古典的バッファオーバーフロー 		CVE-2020-36158 2021-09-14 18:04 2020-12-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
61 8.8 HIGH
Network 		- - Use after free in Chromoting in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code via malicious network traffic. (Chromium security severity: Medium) New CWE-416
 Use After Free 		CVE-2026-11116 2026-06-6 14:16 2026-06-5 Show GitHub Exploit DB Packet Storm
62 7.3 HIGH
Local 		- - Use after free in Updater in Google Chrome on Windows prior to 149.0.7827.53 allowed a local attacker to perform OS-level privilege escalation via a malicious file. (Chromium security severity: Mediu… New CWE-416
 Use After Free 		CVE-2026-11115 2026-06-6 14:16 2026-06-5 Show GitHub Exploit DB Packet Storm
63 6.1 MEDIUM
Network 		- - The Ad Inserter – Ad Manager & AdSense Ads plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via URL Parameters in iframe Mode in all versions up to, and including, 2.8.15 due to i… New CWE-79
Cross-site Scripting 		CVE-2026-9280 2026-06-6 13:17 2026-06-6 Show GitHub Exploit DB Packet Storm
64 4.9 MEDIUM
Network 		- - The Smart Slider 3 plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 3.5.1.36 via the replaceHTMLImage function. This makes it possible for authenticated… New CWE-22
Path Traversal 		CVE-2026-9197 2026-06-6 13:17 2026-06-6 Show GitHub Exploit DB Packet Storm
65 4.4 MEDIUM
Network 		- - The Drag and Drop Multiple File Upload for Contact Form 7 plugin for WordPress is vulnerable to Stored Cross-Site Scripting via 'drag_n_drop_text' and 'drag_n_drop_browse_text' Settings in all versio… New CWE-79
Cross-site Scripting 		CVE-2026-8991 2026-06-6 13:17 2026-06-6 Show GitHub Exploit DB Packet Storm
66 4.9 MEDIUM
Network 		- - The OptinCraft – Drag & Drop Optins & Popup Builder for WordPress plugin for WordPress is vulnerable to generic SQL Injection via the 'order_by' parameter in all versions up to, and including, 1.2.0 … New CWE-89
SQL Injection 		CVE-2026-8978 2026-06-6 13:17 2026-06-6 Show GitHub Exploit DB Packet Storm
67 5.3 MEDIUM
Network 		- - The LearnPress – WordPress LMS Plugin for Create and Sell Online Courses plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 4.3.6 via the 'retu… New CWE-862
 Missing Authorization 		CVE-2026-8502 2026-06-6 13:17 2026-06-6 Show GitHub Exploit DB Packet Storm
68 6.4 MEDIUM
Network 		- - The EmbedPress – PDF Embedder, Embed PDF viewer, YouTube Videos, 3D FlipBook, Social feeds & more plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the block 'url' attribute in al… New CWE-79
Cross-site Scripting 		CVE-2026-7796 2026-06-6 13:17 2026-06-6 Show GitHub Exploit DB Packet Storm
69 6.4 MEDIUM
Network 		- - The Click to Chat – WA Widget plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the [chat] shortcode 'num' parameter in all versions up to, and including, 4.38. This is due to ins… New CWE-79
Cross-site Scripting 		CVE-2026-7795 2026-06-6 13:17 2026-06-6 Show GitHub Exploit DB Packet Storm
70 5.3 MEDIUM
Network 		- - The WPForms – Easy Form Builder for WordPress – Contact Forms, Payment Forms, Surveys, & More plugin for WordPress is vulnerable to Insufficient Verification of Data Authenticity in versions up to an… New CWE-345
 Insufficient Verification of Data Authenticity 		CVE-2026-7792 2026-06-6 13:17 2026-06-6 Show GitHub Exploit DB Packet Storm