Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 14, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
133751 7.5 重要
Network 		cPanel cPanel cPanel における脆弱性 CWE-Other
その他 		CVE-2021-26266 2021-10-11 16:19 2021-01-18 Show GitHub Exploit DB Packet Storm
133752 7.8 重要
Local 		ACD Systems Photo Studio ACDSee Professional 2021 における不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2021-26026 2021-10-11 16:19 2021-01-25 Show GitHub Exploit DB Packet Storm
133753 7.8 重要
Local 		ACD Systems Photo Studio ACDSee Professional 2021 における不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2021-26025 2021-10-11 16:19 2021-01-25 Show GitHub Exploit DB Packet Storm
133754 8.8 重要
Adjacent 		Open5GS Open5GS Open5GS におけるハードコードされた認証情報の使用に関する脆弱性 CWE-798
ハードコードされた認証情報の使用 		CVE-2021-25863 2021-10-11 16:19 2021-01-15 Show GitHub Exploit DB Packet Storm
133755 8.8 重要
Network 		Apache Software Foundation Apache Hadoop Apache Hadoop における不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2020-9492 2021-10-11 16:19 2020-03-1 Show GitHub Exploit DB Packet Storm
133756 4.9 警告
Network 		Robert Bosch GmbH FSM-5000 ファームウェア
FSM-2500 ファームウェア 		Bosch FSM-2500 サーバおよび Bosch FSM-5000 サーバにおける強度が不十分なパスワードハッシュの使用に関する脆弱性 CWE-916
強度が不十分なパスワードハッシュの使用 		CVE-2020-6780 2021-10-11 16:19 2020-01-10 Show GitHub Exploit DB Packet Storm
133757 10 緊急
Network 		Robert Bosch GmbH FSM-5000 ファームウェア
FSM-2500 ファームウェア 		Bosch FSM-2500 サーバおよび Bosch FSM-5000 サーバにおけるハードコードされた認証情報の使用に関する脆弱性 CWE-798
ハードコードされた認証情報の使用 		CVE-2020-6779 2021-10-11 16:19 2020-01-10 Show GitHub Exploit DB Packet Storm
133758 7.8 重要
Local 		シスコシステムズ Cisco SD-WAN vManage
Cisco SD-WAN ファームウェア
Cisco SD-WAN vBond Orchestrator
Cisco SD-WAN vSmart Controller ファームウェア 		複数の Cisco SD-WAN 製品におけるコマンドインジェクションの脆弱性 CWE-77
コマンドインジェクション 		CVE-2021-1263 2021-10-11 16:14 2021-01-20 Show GitHub Exploit DB Packet Storm
133759 8.8 重要
Network 		シスコシステムズ Cisco SD-WAN vManage Cisco SD-WAN vManage ソフトウェアにおける脆弱性 CWE-noinfo
情報不足 		CVE-2021-1302 2021-10-11 16:05 2021-01-20 Show GitHub Exploit DB Packet Storm
133760 6 警告
Network 		VMware Spring Cloud Task Spring Cloud Task における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2020-5428 2021-10-11 15:30 2020-11-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
121 - - - Kitty is a cross-platform GPU based terminal. In versions prior to 0.47.3, kitty's OSC 21 (color-control) query reply reflects attacker-controlled bytes, including newlines, into the shell's input wi… New CWE-94
CWE-150
Code Injection
 Improper Neutralization of Escape, Meta, or Control Sequences 		CVE-2026-54057 2026-06-13 06:16 2026-06-13 Show GitHub Exploit DB Packet Storm
122 7.6 HIGH
Network 		- - Kitty is a cross-platform GPU based terminal. In versions 0.47.0 and 0.47.1, `kitten dnd` can allow a malicious remote drag-and-drop source to overwrite or truncate arbitrary files writable by the lo… New CWE-59
Link Following 		CVE-2026-54056 2026-06-13 06:16 2026-06-13 Show GitHub Exploit DB Packet Storm
123 3.7 LOW
Network 		- - ApostropheCMS is an open-source Node.js content management system. In versions up to and including 4.30.0, when `prettyUrls: true` is enabled on `@apostrophecms/file` (a documented SEO feature for se… New CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-53607 2026-06-13 06:16 2026-06-13 Show GitHub Exploit DB Packet Storm
124 5.4 MEDIUM
Network 		- - ApostropheCMS is an open-source Node.js content management system, and sanitize-html provides a simple HTML sanitizer with a clear API. Versions of sanitize-html prior to 2.17.5 use `allowedSchemesAp… New CWE-79
Cross-site Scripting 		CVE-2026-53606 2026-06-13 06:16 2026-06-13 Show GitHub Exploit DB Packet Storm
125 7.5 HIGH
Network 		- - IBM Qiskit SDK 0.43.0 through 2.5.0 could allow an attacker to trigger a segmentation fault leading to a denial of service due to uncontrolled recursion in the parser. New - CVE-2026-4870 2026-06-13 06:16 2026-06-13 Show GitHub Exploit DB Packet Storm
126 5.3 MEDIUM
Network 		- - Discourse is an open-source discussion platform. From versions 2026.1.0-latest to before 2026.1.4, 2026.3.0-latest to before 2026.3.1, and 2026.4.0-latest to before 2026.4.1, DetailedTagSerializer#ta… New CWE-200
Information Exposure 		CVE-2026-47264 2026-06-13 06:16 2026-06-13 Show GitHub Exploit DB Packet Storm
127 4.3 MEDIUM
Network 		- - Discourse is an open-source discussion platform. From versions 2026.1.0-latest to before 2026.1.4, 2026.3.0-latest to before 2026.3.1, and 2026.4.0-latest to before 2026.4.1, the MessageBus.publish c… New CWE-200
Information Exposure 		CVE-2026-47263 2026-06-13 06:16 2026-06-13 Show GitHub Exploit DB Packet Storm
128 6.8 MEDIUM
Network 		- - Discourse is an open-source discussion platform. From versions 2026.1.0-latest to before 2026.1.4, 2026.3.0-latest to before 2026.3.1, and 2026.4.0-latest to before 2026.4.1, a path traversal vulnera… New CWE-22
Path Traversal 		CVE-2026-45775 2026-06-13 06:16 2026-06-13 Show GitHub Exploit DB Packet Storm
129 5.3 MEDIUM
Network 		- - Discourse is an open-source discussion platform. From versions 2026.1.0-latest to before 2026.1.4, 2026.3.0-latest to before 2026.3.1, and 2026.4.0-latest to before 2026.4.1, four authorization/discl… New CWE-200
CWE-862
Information Exposure
 Missing Authorization 		CVE-2026-45085 2026-06-13 06:16 2026-06-13 Show GitHub Exploit DB Packet Storm
130 - - - ApostropheCMS is an open-source Node.js content management system. Versions up to and including 4.29.0 are vulnerable to stored cross-site scripting via unsanitized user display name in draft version… New CWE-79
Cross-site Scripting 		CVE-2026-45014 2026-06-13 06:16 2026-06-13 Show GitHub Exploit DB Packet Storm