Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 13, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
133691	7.2	重要 Network	Moodle	Moodle	Moodle におけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2021-20187	2021-10-12 14:55	2021-01-25	Show	GitHub Exploit DB Packet Storm

133692	8.8	重要 Network	Apache Software Foundation	Apache Druid	Apache Druid における重要なリソースに対する不適切なパーミッションの割り当てに関する脆弱性	CWE-732 重要なリソースに対する不適切なパーミッションの割り当て	CVE-2021-25646	2021-10-12 14:46	2021-01-29	Show	GitHub Exploit DB Packet Storm

133693	6.5	警告 Network	CKEditor Team	CKEditor 5	CKEditor 5 におけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2021-21254	2021-10-12 14:22	2021-01-27	Show	GitHub Exploit DB Packet Storm

133694	9.8	緊急 Network	Bitovi	Launchpad	launchpad におけるコマンドインジェクションの脆弱性	CWE-77 コマンドインジェクション	CVE-2021-23330	2021-10-12 14:08	2021-02-1	Show	GitHub Exploit DB Packet Storm

133695	7.3	重要 Network	Artur Kurowski	kill-process-on-port	kill-process-on-port における OS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2020-28426	2021-10-12 13:58	2020-12-11	Show	GitHub Exploit DB Packet Storm

133696	5.3	警告 Network	Pallets project Fedora Project	Jinja Fedora	jinja2 におけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2020-28493	2021-10-12 13:51	2020-09-25	Show	GitHub Exploit DB Packet Storm

133697	7.5	重要 Network	MediaWiki	MediaWiki	MediaWiki における認証情報の不十分な保護に関する脆弱性	CWE-319 CWE-522	CVE-2020-29005	2021-10-11 18:12	2020-09-11	Show	GitHub Exploit DB Packet Storm

133698	8.8	重要 Network	MediaWiki	MediaWiki	MediaWiki におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2020-29004	2021-10-11 18:12	2020-09-11	Show	GitHub Exploit DB Packet Storm

133699	6.5	警告 Network	Istio レッドハット	Red Hat OpenShift Service Mesh Istio	Istio pilot における NULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2019-25014	2021-10-11 18:12	2019-11-12	Show	GitHub Exploit DB Packet Storm

133700	7.5	重要 Network	marc project	marc	Rust 用 marc crate における脆弱性	CWE-noinfo 情報不足	CVE-2021-26308	2021-10-11 18:12	2021-01-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
91	8.8	HIGH Network	google	chrome	Use after free in Core in Google Chrome on Windows prior to 149.0.7827.115 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: Critical) New	CWE-416 Use After Free	CVE-2026-12007	2026-06-13 02:08	2026-06-12	Show	GitHub Exploit DB Packet Storm

92	7.8	HIGH Local	microsoft	windows_10_1809 windows_10_21h2 windows_10_22h2 windows_11_23h2 windows_11_24h2 windows_11_25h2 windows_11_26h1 windows_server_2019 windows_server_2022 windows_server_2025	Use after free in Windows DWM Core Library allows an authorized attacker to elevate privileges locally. Update	CWE-416 Use After Free	CVE-2026-44802	2026-06-13 02:05	2026-06-10	Show	GitHub Exploit DB Packet Storm

93	7.8	HIGH Local	microsoft	windows_11_26h1	Use after free in Windows DWM Core Library allows an authorized attacker to elevate privileges locally. Update	CWE-416 Use After Free	CVE-2026-44804	2026-06-13 02:02	2026-06-10	Show	GitHub Exploit DB Packet Storm

94	7.8	HIGH Local	microsoft	windows_11_26h1	Use after free in Windows DWM Core Library allows an authorized attacker to elevate privileges locally. Update	CWE-416 Use After Free	CVE-2026-44807	2026-06-13 02:01	2026-06-10	Show	GitHub Exploit DB Packet Storm

95	7.8	HIGH Local	microsoft	windows_11_26h1	Use after free in Windows DWM Core Library allows an authorized attacker to elevate privileges locally. Update	CWE-122 CWE-125 CWE-416 Heap-based Buffer Overflow Out-of-bounds Read Use After Free	CVE-2026-44808	2026-06-13 02:01	2026-06-10	Show	GitHub Exploit DB Packet Storm

96	7.8	HIGH Local	microsoft	windows_11_26h1	Use after free in Windows DWM Core Library allows an authorized attacker to elevate privileges locally. Update	CWE-20 CWE-122 CWE-416 Improper Input Validation Heap-based Buffer Overflow Use After Free	CVE-2026-44811	2026-06-13 02:00	2026-06-10	Show	GitHub Exploit DB Packet Storm

97	7.8	HIGH Local	microsoft	windows_11_26h1	Use after free in Windows DWM Core Library allows an authorized attacker to elevate privileges locally. Update	CWE-416 Use After Free	CVE-2026-44813	2026-06-13 01:59	2026-06-10	Show	GitHub Exploit DB Packet Storm

98	5.5	MEDIUM Local	microsoft	windows_11_26h1	Out-of-bounds read in Windows DWM Core Library allows an authorized attacker to disclose information locally. Update	CWE-122 CWE-125 Heap-based Buffer Overflow Out-of-bounds Read	CVE-2026-44814	2026-06-13 01:58	2026-06-10	Show	GitHub Exploit DB Packet Storm

99	7.8	HIGH Local	microsoft	windows_narrator_braille	Untrusted search path in Windows Narrator Braille allows an authorized attacker to elevate privileges locally. Update	CWE-426 Untrusted Search Path	CVE-2026-48565	2026-06-13 01:58	2026-06-10	Show	GitHub Exploit DB Packet Storm

100	5.5	MEDIUM Local	microsoft	visual_studio_code	Improper input validation in Visual Studio Code allows an unauthorized attacker to bypass a security feature locally. Update	CWE-20 CWE-23 NVD-CWE-noinfo Improper Input Validation Relative Path Traversal	CVE-2026-48569	2026-06-13 01:57	2026-06-10	Show	GitHub Exploit DB Packet Storm