Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 11, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
133571	5.5	警告 Local	シスコシステムズ	Cisco FirePOWER Management Center	Cisco Firepower Management Center における認証情報の不十分な保護に関する脆弱性	CWE-522 認証情報の不十分な保護	CVE-2021-1126	2021-10-1 15:09	2021-01-13	Show	GitHub Exploit DB Packet Storm

133572	4.3	警告 Network	シスコシステムズ	Cisco Connected Mobile Experiences	Cisco Connected Mobile Experiences における不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2021-1143	2021-10-1 14:57	2021-01-13	Show	GitHub Exploit DB Packet Storm

133573	8.8	重要 Network	シスコシステムズ	Cisco Connected Mobile Experiences	Cisco Connected Mobile Experiences における不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2021-1144	2021-10-1 14:54	2021-01-13	Show	GitHub Exploit DB Packet Storm

133574	6.5	警告 Network	シスコシステムズ	Cisco StarOS	Cisco ASR 5000 シリーズルータ用 Cisco StarOS におけるリンク解釈に関する脆弱性	CWE-59 リンク解釈の問題	CVE-2021-1145	2021-10-1 14:36	2021-01-13	Show	GitHub Exploit DB Packet Storm

133575	4.8	警告 Network	シスコシステムズ	Cisco FirePOWER Management Center	Cisco Firepower Management Center におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2021-1238	2021-10-1 14:10	2021-01-13	Show	GitHub Exploit DB Packet Storm

133576	4.8	警告 Network	シスコシステムズ	Cisco FirePOWER Management Center	Cisco Firepower Management Center におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2021-1239	2021-10-1 14:03	2021-01-13	Show	GitHub Exploit DB Packet Storm

133577	-	-	トレンドマイクロ	Trend Micro ServerProtect	トレンドマイクロ製 ServerProtect における認証回避の脆弱性	-	CVE-2021-36745	2021-10-1 14:00	2021-09-30	Show	GitHub Exploit DB Packet Storm

133578	5.4	警告 Network	PHPGurukul	Daily Expense Tracker System	PHPGurukul Daily Expense Tracker System におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2021-26304	2021-09-30 18:06	2021-01-26	Show	GitHub Exploit DB Packet Storm

133579	6.1	警告 Network	Stockdio	Stockdio Historical Chart	WordPress 用 Stockdio Historical Chart プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2020-28707	2021-09-30 18:06	2020-10-19	Show	GitHub Exploit DB Packet Storm

133580	9.8	緊急 Network	Eran Hammer	hawk	ClusterLabs Hawk における OS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2020-35458	2021-09-30 17:58	2020-12-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 11, 2026, 5:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
131	6.1	MEDIUM Network	-	-	Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. In versions 8.2.6.4 and prior, wrap_line (app/modules/common/common.py:181-186) and highlight_word (app/modules/… New	CWE-79 Cross-site Scripting	CVE-2026-45560	2026-06-11 02:16	2026-06-11	Show	GitHub Exploit DB Packet Storm

132	9.1	CRITICAL Network	-	-	Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. In versions 8.2.6.4 and prior, PUT /smon/check (app/routes/smon/routes.py:117-138) gates only on roxywi_common.c… New	CWE-639 CWE-862 CWE-863 Authorization Bypass Through User-Controlled Key Missing Authorization Incorrect Authorization	CVE-2026-45550	2026-06-11 02:16	2026-06-11	Show	GitHub Exploit DB Packet Storm

133	8.5	HIGH Network	-	-	Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. In versions 8.2.6.4 and prior, agent_action (app/routes/smon/agent_routes.py:166-179) has decorators @bp.post('/… New	CWE-862 CWE-863 Missing Authorization Incorrect Authorization	CVE-2026-45549	2026-06-11 02:16	2026-06-11	Show	GitHub Exploit DB Packet Storm

134	7.5	HIGH Network	-	-	Shenzhen Tenda Technology Co., Ltd Tenda W15E v15.11.0.10 was discovered to contain a buffer overflow in the picCropName parameter of the formCropAndSetWewifiPic function. This vulnerability allows a… New	CWE-121 Stack-based Buffer Overflow	CVE-2026-36813	2026-06-11 02:16	2026-06-10	Show	GitHub Exploit DB Packet Storm

135	7.5	HIGH Network	-	-	Shenzhen Tenda Technology Co., Ltd Tenda W15E v15.11.0.10 was discovered to contain a buffer overflow in the webAuthUserPwd parameter of the formModifyWebAuthUser function. This vulnerability allows … New	CWE-121 Stack-based Buffer Overflow	CVE-2026-36806	2026-06-11 02:16	2026-06-10	Show	GitHub Exploit DB Packet Storm

136	7.5	HIGH Network	-	-	Shenzhen Tenda Technology Co., Ltd Tenda G0 v15.11.0.5 was discovered to contain multiple buffer overflows in the Saveqqlist function via the qqStr and markStr parameters. These vulnerabilities allow… New	CWE-121 Stack-based Buffer Overflow	CVE-2026-36805	2026-06-11 02:16	2026-06-10	Show	GitHub Exploit DB Packet Storm

137	9.1	CRITICAL Network	-	-	Issue Summary: Cryptographic Message Services (CMS) processing fails to perform sufficient input validation on the cipher and tag length fields of AuthEnvelopedData containers, leading to various pot… New	CWE-354 Improper Validation of Integrity Check Value	CVE-2026-34182	2026-06-11 02:16	2026-06-10	Show	GitHub Exploit DB Packet Storm

138	7.4	HIGH Network	-	-	Issue Summary: The PKCS#12 file processing fails to perform sufficient input validation for files that use Password-Based Message Authentication Code 1 (PBMAC1) integrity mechanism allowing a certifi… New	CWE-354 Improper Validation of Integrity Check Value	CVE-2026-34181	2026-06-11 02:16	2026-06-10	Show	GitHub Exploit DB Packet Storm

139	-		-	-	Insufficient input validation in NETGEAR JR6150 (AC750 WiFi Router 802.11ac Dual Band Gigabit released in 2014) allows users connected to the local WiFi Networks to execute operating system commands.… New	CWE-20 Improper Input Validation	CVE-2026-0419	2026-06-11 02:16	2026-06-10	Show	GitHub Exploit DB Packet Storm

140	-		-	-	Insufficient configuration management in the listed devices allows authenticated administrators connected to the local network to tamper with the system. New	CWE-15 External Control of System or Configuration Setting	CVE-2026-0418	2026-06-11 02:16	2026-06-10	Show	GitHub Exploit DB Packet Storm