Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 13, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
133761 5.5 警告
Local 		Fedora Project
JasPer Project		 JasPer
Fedora 		JasPer における境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2021-3272 2021-10-11 15:30 2021-01-6 Show GitHub Exploit DB Packet Storm
133762 7.5 重要
Network 		Winmail Winmail Winmail におけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2020-23776 2021-10-11 15:30 2020-06-30 Show GitHub Exploit DB Packet Storm
133763 5.4 警告
Network 		TIBCO Software TIBCO BPM Enterprise
TIBCO BPM Enterprise Distribution for TIBCO Silver Fabric 		TIBCO Software Inc. の TIBCO BPM Enterprise および TIBCO BPM Enterprise Distribution for TIBCO Silver Fabric におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2021-23272 2021-10-11 15:30 2021-01-26 Show GitHub Exploit DB Packet Storm
133764 7.5 重要
Network 		Silicon Labs, Inc. Micrium uC-HTTP Micrium uC-HTTP における NULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2020-13582 2021-10-11 15:30 2020-11-2 Show GitHub Exploit DB Packet Storm
133765 9.8 緊急
Network 		Sagemcom F@st 3686 ファームウェア Sagemcom F@ST 3686 デバイスにおける古典的バッファオーバーフローの脆弱性 CWE-120
古典的バッファオーバーフロー 		CVE-2021-3304 2021-10-11 15:30 2021-01-14 Show GitHub Exploit DB Packet Storm
133766 7.2 重要
Network 		Zen Cart Zen Cart Zen Cart における OS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2021-3291 2021-10-11 15:30 2021-01-29 Show GitHub Exploit DB Packet Storm
133767 5.3 警告
Network 		Texas Instruments Incorporated (TI) Code Composer Studio Integrated Development Enviroment TI Code Composer Studio IDE における証明書検証に関する脆弱性 CWE-295
不正な証明書検証 		CVE-2021-3285 2021-10-11 15:30 2021-01-14 Show GitHub Exploit DB Packet Storm
133768 9.8 緊急
Network 		ONLYOFFICE Document Server ONLYOFFICE Document Server におけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2021-3199 2021-10-11 15:30 2021-01-22 Show GitHub Exploit DB Packet Storm
133769 9.8 緊急
Network 		phpList phpList phpList における CSV ファイル内の数式要素の中和に関する脆弱性 CWE-1236
CSV ファイル内の数式要素の不適切な中和 		CVE-2021-3188 2021-10-11 15:30 2021-01-19 Show GitHub Exploit DB Packet Storm
133770 6.5 警告
Network 		シスコシステムズ Cisco SD-WAN vManage Cisco SD-WAN vManage ソフトウェアにおける脆弱性 CWE-noinfo
情報不足 		CVE-2021-1304 2021-10-11 15:28 2021-01-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
121 - - - Kitty is a cross-platform GPU based terminal. In versions prior to 0.47.3, kitty's OSC 21 (color-control) query reply reflects attacker-controlled bytes, including newlines, into the shell's input wi… New CWE-94
CWE-150
Code Injection
 Improper Neutralization of Escape, Meta, or Control Sequences 		CVE-2026-54057 2026-06-13 06:16 2026-06-13 Show GitHub Exploit DB Packet Storm
122 7.6 HIGH
Network 		- - Kitty is a cross-platform GPU based terminal. In versions 0.47.0 and 0.47.1, `kitten dnd` can allow a malicious remote drag-and-drop source to overwrite or truncate arbitrary files writable by the lo… New CWE-59
Link Following 		CVE-2026-54056 2026-06-13 06:16 2026-06-13 Show GitHub Exploit DB Packet Storm
123 3.7 LOW
Network 		- - ApostropheCMS is an open-source Node.js content management system. In versions up to and including 4.30.0, when `prettyUrls: true` is enabled on `@apostrophecms/file` (a documented SEO feature for se… New CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-53607 2026-06-13 06:16 2026-06-13 Show GitHub Exploit DB Packet Storm
124 5.4 MEDIUM
Network 		- - ApostropheCMS is an open-source Node.js content management system, and sanitize-html provides a simple HTML sanitizer with a clear API. Versions of sanitize-html prior to 2.17.5 use `allowedSchemesAp… New CWE-79
Cross-site Scripting 		CVE-2026-53606 2026-06-13 06:16 2026-06-13 Show GitHub Exploit DB Packet Storm
125 7.5 HIGH
Network 		- - IBM Qiskit SDK 0.43.0 through 2.5.0 could allow an attacker to trigger a segmentation fault leading to a denial of service due to uncontrolled recursion in the parser. New - CVE-2026-4870 2026-06-13 06:16 2026-06-13 Show GitHub Exploit DB Packet Storm
126 5.3 MEDIUM
Network 		- - Discourse is an open-source discussion platform. From versions 2026.1.0-latest to before 2026.1.4, 2026.3.0-latest to before 2026.3.1, and 2026.4.0-latest to before 2026.4.1, DetailedTagSerializer#ta… New CWE-200
Information Exposure 		CVE-2026-47264 2026-06-13 06:16 2026-06-13 Show GitHub Exploit DB Packet Storm
127 4.3 MEDIUM
Network 		- - Discourse is an open-source discussion platform. From versions 2026.1.0-latest to before 2026.1.4, 2026.3.0-latest to before 2026.3.1, and 2026.4.0-latest to before 2026.4.1, the MessageBus.publish c… New CWE-200
Information Exposure 		CVE-2026-47263 2026-06-13 06:16 2026-06-13 Show GitHub Exploit DB Packet Storm
128 6.8 MEDIUM
Network 		- - Discourse is an open-source discussion platform. From versions 2026.1.0-latest to before 2026.1.4, 2026.3.0-latest to before 2026.3.1, and 2026.4.0-latest to before 2026.4.1, a path traversal vulnera… New CWE-22
Path Traversal 		CVE-2026-45775 2026-06-13 06:16 2026-06-13 Show GitHub Exploit DB Packet Storm
129 5.3 MEDIUM
Network 		- - Discourse is an open-source discussion platform. From versions 2026.1.0-latest to before 2026.1.4, 2026.3.0-latest to before 2026.3.1, and 2026.4.0-latest to before 2026.4.1, four authorization/discl… New CWE-200
CWE-862
Information Exposure
 Missing Authorization 		CVE-2026-45085 2026-06-13 06:16 2026-06-13 Show GitHub Exploit DB Packet Storm
130 - - - ApostropheCMS is an open-source Node.js content management system. Versions up to and including 4.29.0 are vulnerable to stored cross-site scripting via unsanitized user display name in draft version… New CWE-79
Cross-site Scripting 		CVE-2026-45014 2026-06-13 06:16 2026-06-13 Show GitHub Exploit DB Packet Storm