Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 14, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
133781 7.5 重要
Network 		projectsend.org ProjectSend ProjectSend における認証に関する脆弱性 CWE-287
CWE-404
CVE-2020-28874 2021-10-8 18:02 2020-11-18 Show GitHub Exploit DB Packet Storm
133782 7.8 重要
Local 		Debian
OpenJPEG project		 OpenJPEG
Debian GNU/Linux 		openjpeg2 におけるヒープベースのバッファオーバーフローの脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2020-27814 2021-10-8 18:02 2020-11-26 Show GitHub Exploit DB Packet Storm
133783 6.1 警告
Network 		WING FTP software Wing FTP Server Wing FTP におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2020-27735 2021-10-8 18:02 2020-11-17 Show GitHub Exploit DB Packet Storm
133784 9.8 緊急
Network 		IBM IBM InfoSphere Information Server IBM InfoSphere Information Server における信頼できないデータのデシリアライゼーションに関する脆弱性 CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2020-27583 2021-10-8 18:02 2020-07-31 Show GitHub Exploit DB Packet Storm
133785 6.8 警告
Physics 		Rostelecom CS-C2SHW ファームウェア Rostelecom CS-C2SHW における OS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2020-27542 2021-10-8 18:02 2020-10-16 Show GitHub Exploit DB Packet Storm
133786 7.5 重要
Network 		Rostelecom CS-C2SHW ファームウェア Rostelecom CS-C2SHW における境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2020-27541 2021-10-8 18:02 2020-10-16 Show GitHub Exploit DB Packet Storm
133787 9.8 緊急
Network 		Rostelecom CS-C2SHW ファームウェア Rostelecom CS-C2SHW におけるデジタル署名の検証に関する脆弱性 CWE-347
デジタル署名の不適切な検証 		CVE-2020-27540 2021-10-8 18:02 2020-10-16 Show GitHub Exploit DB Packet Storm
133788 9.8 緊急
Network 		Rostelecom CS-C2SHW ファームウェア Rostelecom CS-C2SHW における境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2020-27539 2021-10-8 18:02 2020-10-16 Show GitHub Exploit DB Packet Storm
133789 4.9 警告
Network 		レッドハット
Linux		 Linux Kernel
Red Hat Enterprise Linux 		Linux Kernel NFS における特権の削除/エラーの低下に関する脆弱性 CWE-271
特権の削除/エラーの低下 		CVE-2020-35513 2021-10-8 18:02 2020-12-28 Show GitHub Exploit DB Packet Storm
133790 9.8 緊急
Network 		koa2-blog project koa2-blog koa2-blog における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2020-21180 2021-10-8 16:44 2020-08-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
131 7.6 HIGH
Network 		- - ApostropheCMS is an open-source Node.js content management system. Versions up to and including 4.29.0 contain an authenticated server-side request forgery (SSRF) in the rich-text widget import flow.… New CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-45012 2026-06-13 06:16 2026-06-13 Show GitHub Exploit DB Packet Storm
132 7.3 HIGH
Network 		- - ApostropheCMS is an open-source Node.js content management system. Version 4.29.0 has a stored cross-site scripting vulnerability in the image widget functionality. A user with the Editor role can co… New CWE-79
CWE-116
Cross-site Scripting
 Improper Encoding or Escaping of Output 		CVE-2026-45011 2026-06-13 06:16 2026-06-13 Show GitHub Exploit DB Packet Storm
133 9.3 CRITICAL
Network 		- - ApostropheCMS is an open-source Node.js content management system, and sanitize-html provides a simple HTML sanitizer with a clear API. Under the default configuration, versions of `sanitize-html` pr… New CWE-79
Cross-site Scripting 		CVE-2026-44990 2026-06-13 06:16 2026-06-13 Show GitHub Exploit DB Packet Storm
134 7.5 HIGH
Network 		- - Discourse is an open-source discussion platform. From versions 2026.1.0-latest to before 2026.1.4, 2026.3.0-latest to before 2026.3.1, and 2026.4.0-latest to before 2026.4.1, chat events for public c… New CWE-200
Information Exposure 		CVE-2026-44786 2026-06-13 06:16 2026-06-13 Show GitHub Exploit DB Packet Storm
135 4.3 MEDIUM
Network 		- - Discourse is an open-source discussion platform. From versions 2026.1.0-latest to before 2026.1.4, 2026.3.0-latest to before 2026.3.1, and 2026.4.0-latest to before 2026.4.1, the AI "explain" helper … New CWE-200
Information Exposure 		CVE-2026-44785 2026-06-13 06:16 2026-06-13 Show GitHub Exploit DB Packet Storm
136 6.5 MEDIUM
Network 		- - Discourse is an open-source discussion platform. From versions 2026.1.0-latest to before 2026.1.4, 2026.3.0-latest to before 2026.3.1, and 2026.4.0-latest to before 2026.4.1, group owners who are not… New CWE-200
Information Exposure 		CVE-2026-44784 2026-06-13 06:16 2026-06-13 Show GitHub Exploit DB Packet Storm
137 5.4 MEDIUM
Network 		- - Discourse is an open-source discussion platform. From versions 2026.1.0-latest to before 2026.1.4, 2026.3.0-latest to before 2026.3.1, and 2026.4.0-latest to before 2026.4.1, a flaw in how replies to… New CWE-284
Improper Access Control 		CVE-2026-44783 2026-06-13 06:16 2026-06-13 Show GitHub Exploit DB Packet Storm
138 4.3 MEDIUM
Network 		- - Discourse is an open-source discussion platform. From versions 2026.1.0-latest to before 2026.1.4, 2026.3.0-latest to before 2026.3.1, and 2026.4.0-latest to before 2026.4.1, GroupPostSerializer decl… New CWE-200
Information Exposure 		CVE-2026-44782 2026-06-13 06:16 2026-06-13 Show GitHub Exploit DB Packet Storm
139 4.3 MEDIUM
Network 		- - Discourse is an open-source discussion platform. From versions 2026.1.0-latest to before 2026.1.4, 2026.3.0-latest to before 2026.3.1, and 2026.4.0-latest to before 2026.4.1, ReviewableQueuedPostSeri… New CWE-200
Information Exposure 		CVE-2026-44780 2026-06-13 06:16 2026-06-13 Show GitHub Exploit DB Packet Storm
140 4.3 MEDIUM
Network 		- - Discourse is an open-source discussion platform. From versions 2026.1.0-latest to before 2026.1.4, 2026.3.0-latest to before 2026.3.1, and 2026.4.0-latest to before 2026.4.1, bot debug endpoints disc… New CWE-200
Information Exposure 		CVE-2026-44779 2026-06-13 06:16 2026-06-13 Show GitHub Exploit DB Packet Storm