Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 16, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
133641 6.5 警告
Network 		Tendermint Tendermint Tendermint Core におけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2021-21271 2021-10-19 17:23 2021-01-19 Show GitHub Exploit DB Packet Storm
133642 8.8 重要
Network 		easycms EasyCMS EasyCMS におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2020-24271 2021-10-19 17:17 2020-08-5 Show GitHub Exploit DB Packet Storm
133643 5 警告
Network 		openHAB openHAB openHAB における XML 外部エンティティの脆弱性 CWE-611
XML 外部エンティティ参照の不適切な制限 		CVE-2021-21266 2021-10-19 17:10 2021-01-28 Show GitHub Exploit DB Packet Storm
133644 8.8 重要
Network 		WWBN AVideo AVideo プラットフォームにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2021-21286 2021-10-19 17:07 2021-01-30 Show GitHub Exploit DB Packet Storm
133645 5.3 警告
Network 		JetBrains YouTrack JetBrains YouTrack における不適切なデフォルトパーミッションに関する脆弱性 CWE-276
不適切なデフォルトパーミッション 		CVE-2020-25208 2021-10-19 17:06 2020-09-9 Show GitHub Exploit DB Packet Storm
133646 6.5 警告
Network 		SolarWinds Serv-U SolarWinds Serv-U におけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2020-27994 2021-10-19 17:06 2020-12-21 Show GitHub Exploit DB Packet Storm
133647 9.8 緊急
Network 		Zoho Corporation ManageEngine OpManager Zoho ManageEngine OpManager における脆弱性 CWE-noinfo
情報不足 		CVE-2020-28653 2021-10-19 17:06 2020-11-13 Show GitHub Exploit DB Packet Storm
133648 9.8 緊急
Network 		Moxa Inc. EDR-810 シリーズ ファームウェア
EDR-G902 シリーズ ファームウェア
EDR-G903 シリーズ ファームウェア 		複数の Moxa EDR 製品におけるバッファエラーの脆弱性 CWE-119
バッファエラー 		CVE-2020-28144 2021-10-19 17:06 2020-10-29 Show GitHub Exploit DB Packet Storm
133649 7.8 重要
Local 		Cloudflare, Inc. WARP Windows 用 Cloudflare WARP における引用されない検索パスまたは要素に関する脆弱性 CWE-428
引用されない検索パスまたは要素 		CVE-2020-35152 2021-10-19 17:06 2020-12-11 Show GitHub Exploit DB Packet Storm
133650 6.7 警告
Local 		インテル Intel Server Board M10JNP2SB ファームウェア Intel Server Board M10JNP2SB における入力確認に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2020-8734 2021-10-19 17:06 2020-08-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
241 - - - Config::IniFiles versions before 3.001000 for Perl allow OS command injection and file overwrite via a 2-arg open() of the -file argument in _make_filehandle. Config::IniFiles::_make_filehandle open… New CWE-73
CWE-78
 External Control of File Name or Path
OS Command  		CVE-2026-11527 2026-06-15 09:16 2026-06-14 Show GitHub Exploit DB Packet Storm
242 7.8 HIGH
Local 		- - A vulnerability was found in Comma AI Openpilot 0.11. This issue affects the function pickle.load/pickle.loads of the file selfdrive/modeld/modeld.py of the component Pickle Module. The manipulation … New CWE-20
CWE-502
 Improper Input Validation 
 Deserialization of Untrusted Data 		CVE-2026-12191 2026-06-15 08:16 2026-06-15 Show GitHub Exploit DB Packet Storm
243 5.3 MEDIUM
Local 		- - A vulnerability has been found in Genspark AI Workspace App 2.8.4 on Android. This vulnerability affects unknown code of the component ai.mainfunc.genspark. The manipulation leads to improper authori… New CWE-285
CWE-939
Improper Authorization
 Improper Authorization in Handler for Custom URL Scheme 		CVE-2026-12190 2026-06-15 08:16 2026-06-15 Show GitHub Exploit DB Packet Storm
244 6.3 MEDIUM
Network 		- - A vulnerability was detected in Grit42 Grit up to 0.11.0. Affected by this issue is some unknown functionality of the file modules/core/backend/app/controllers/concerns/grit/core/grit_entity_controll… New CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-12188 2026-06-15 08:16 2026-06-15 Show GitHub Exploit DB Packet Storm
245 8.8 HIGH
Network 		- - A security vulnerability has been detected in GL.iNet GL-MT3000 up to 4.4.5. Affected by this vulnerability is an unknown functionality of the file /usr/bin/one_click_upgrade of the component Online … New CWE-74
CWE-77
Injection
Command Injection 		CVE-2026-12187 2026-06-15 08:16 2026-06-15 Show GitHub Exploit DB Packet Storm
246 8.8 HIGH
Network 		- - A weakness has been identified in GL.iNet GL-MT3000 up to 4.4.5. Affected is the function replace_country in the library /usr/lib/oui-httpd/rpc/tor of the component Tor Proxy Service Configuration Ha… New CWE-74
CWE-77
Injection
Command Injection 		CVE-2026-12186 2026-06-15 06:16 2026-06-15 Show GitHub Exploit DB Packet Storm
247 8.2 HIGH
Network 		- - driftregion iso14229 through 0.9.0 contains an integer underflow and downstream out-of-bounds read in the Handle_0x27_SecurityAccess() function in iso14229.c that allows a remote unauthenticated atta… New CWE-125
CWE-191
Out-of-bounds Read
 Integer Underflow (Wrap or Wraparound) 		CVE-2026-54413 2026-06-15 03:17 2026-06-15 Show GitHub Exploit DB Packet Storm
248 8.2 HIGH
Network 		- - LiamBindle MQTT-C through version 1.1.6 contains a heap-based out-of-bounds read and integer underflow in the mqtt_unpack_publish_response() function in src/mqtt.c that allows a remote unauthenticate… New CWE-125
CWE-191
Out-of-bounds Read
 Integer Underflow (Wrap or Wraparound) 		CVE-2026-54412 2026-06-15 03:17 2026-06-15 Show GitHub Exploit DB Packet Storm
249 5.9 MEDIUM
Network 		- - Linux-PAM through 1.7.2 contains an observable timing discrepancy (CWE-208) in the pam_userdb module's plaintext-password comparison path in modules/pam_userdb/pam_userdb.c that allows a local or net… New CWE-208
 Information Exposure Through Timing Discrepancy 		CVE-2026-54411 2026-06-15 03:17 2026-06-15 Show GitHub Exploit DB Packet Storm
250 8.6 HIGH
Network 		- - nanoMODBUS through v1.23.0 contains an off-by-one buffer overflow in the recv_msg_header() function of the Modbus/TCP server that allows remote unauthenticated attackers to write one attacker-control… New CWE-193
CWE-787
 Off-by-one Error
 Out-of-bounds Write 		CVE-2026-54410 2026-06-15 03:17 2026-06-15 Show GitHub Exploit DB Packet Storm