Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 15, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
133921 7.5 重要
Network 		Winmail Winmail Winmail におけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2020-23776 2021-10-11 15:30 2020-06-30 Show GitHub Exploit DB Packet Storm
133922 5.4 警告
Network 		TIBCO Software TIBCO BPM Enterprise
TIBCO BPM Enterprise Distribution for TIBCO Silver Fabric 		TIBCO Software Inc. の TIBCO BPM Enterprise および TIBCO BPM Enterprise Distribution for TIBCO Silver Fabric におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2021-23272 2021-10-11 15:30 2021-01-26 Show GitHub Exploit DB Packet Storm
133923 7.5 重要
Network 		Silicon Labs, Inc. Micrium uC-HTTP Micrium uC-HTTP における NULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2020-13582 2021-10-11 15:30 2020-11-2 Show GitHub Exploit DB Packet Storm
133924 9.8 緊急
Network 		Sagemcom F@st 3686 ファームウェア Sagemcom F@ST 3686 デバイスにおける古典的バッファオーバーフローの脆弱性 CWE-120
古典的バッファオーバーフロー 		CVE-2021-3304 2021-10-11 15:30 2021-01-14 Show GitHub Exploit DB Packet Storm
133925 7.2 重要
Network 		Zen Cart Zen Cart Zen Cart における OS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2021-3291 2021-10-11 15:30 2021-01-29 Show GitHub Exploit DB Packet Storm
133926 5.3 警告
Network 		Texas Instruments Incorporated (TI) Code Composer Studio Integrated Development Enviroment TI Code Composer Studio IDE における証明書検証に関する脆弱性 CWE-295
不正な証明書検証 		CVE-2021-3285 2021-10-11 15:30 2021-01-14 Show GitHub Exploit DB Packet Storm
133927 9.8 緊急
Network 		ONLYOFFICE Document Server ONLYOFFICE Document Server におけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2021-3199 2021-10-11 15:30 2021-01-22 Show GitHub Exploit DB Packet Storm
133928 9.8 緊急
Network 		phpList phpList phpList における CSV ファイル内の数式要素の中和に関する脆弱性 CWE-1236
CSV ファイル内の数式要素の不適切な中和 		CVE-2021-3188 2021-10-11 15:30 2021-01-19 Show GitHub Exploit DB Packet Storm
133929 6.5 警告
Network 		シスコシステムズ Cisco SD-WAN vManage Cisco SD-WAN vManage ソフトウェアにおける脆弱性 CWE-noinfo
情報不足 		CVE-2021-1304 2021-10-11 15:28 2021-01-20 Show GitHub Exploit DB Packet Storm
133930 7.5 重要
Network 		シスコシステムズ Cisco Elastic Services Controller Cisco Elastic Services Controller におけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2021-1312 2021-10-11 15:02 2021-01-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
41 9.1 CRITICAL
Network 		openssl openssl Issue Summary: Cryptographic Message Services (CMS) processing fails to perform sufficient input validation on the cipher and tag length fields of AuthEnvelopedData containers, leading to various pot… Update CWE-354
 Improper Validation of Integrity Check Value 		CVE-2026-34182 2026-06-16 03:13 2026-06-10 Show GitHub Exploit DB Packet Storm
42 7.5 HIGH
Network 		openssl openssl Issue summary: Remote peer may exhaust heap memory of the QUIC server or client by flooding it with packets containing PATH_CHALLENGE frames. Impact summary: A malicious remote peer can cause an unb… Update CWE-1325
 Improperly Controlled Sequential Memory Allocation 		CVE-2026-34183 2026-06-16 03:12 2026-06-10 Show GitHub Exploit DB Packet Storm
43 5.0 MEDIUM
Network 		openssl openssl Issue summary: A malicious server can exploit TLS OCSP stapling by delivering a crafted response through the status_request extension, triggering a double-free in the client's certificate verificatio… Update CWE-415
 Double Free 		CVE-2026-35188 2026-06-16 03:12 2026-06-10 Show GitHub Exploit DB Packet Storm
44 5.7 MEDIUM
Adjacent 		nuxt nuxt\/rspack-builder
nuxt\/webpack-builder 		Nuxt is an open-source web development framework for Vue.js. In @nuxt/rspack-builder and @nuxt/webpack-builder from versions 3.15.4 to before 3.21.7 and 4.0.0 to before 4.4.7, there is an incomplete … New CWE-749
 Exposed Dangerous Method or Function 		CVE-2026-49993 2026-06-16 03:10 2026-06-12 Show GitHub Exploit DB Packet Storm
45 9.8 CRITICAL
Network 		jmespath jmespath jmespath.php allows users to use JMESPath, software for declaratively specifying how to extract elements from a JSON document, in PHP applications with PHP data structures. Versions prior to 2.9.1 ca… New CWE-20
CWE-94
CWE-116
 Improper Input Validation 
Code Injection
 Improper Encoding or Escaping of Output 		CVE-2026-54133 2026-06-16 03:09 2026-06-13 Show GitHub Exploit DB Packet Storm
46 5.4 MEDIUM
Network 		nuxt nuxt Nuxt is an open-source web development framework for Vue.js. From versions 3.4.3 to before 3.21.6 and 4.0.0-alpha.1 to before 4.4.6, navigateTo() with external: true generates a server-side HTML redi… New CWE-83
 Improper Neutralization of Script in Attributes in a Web Page 		CVE-2026-45669 2026-06-16 03:09 2026-06-12 Show GitHub Exploit DB Packet Storm
47 5.3 MEDIUM
Network 		nuxt nuxt
nuxt\/nitro-server 		Nuxt is an open-source web development framework for Vue.js. In Nuxt versions 3.11.0 to before 3.21.6 and 4.0.0-alpha.1 to before 4.4.6 and @nuxt/nitro-server versions 3.20.0 to before 3.21.6 and 4.0… New CWE-284
CWE-288
Improper Access Control
Authentication Bypass Using an Alternate Path or Channel 		CVE-2026-47200 2026-06-16 03:09 2026-06-12 Show GitHub Exploit DB Packet Storm
48 5.4 MEDIUM
Network 		nuxt nuxt
nuxt\/nitro-server 		Nuxt is an open-source web development framework for Vue.js. In Nuxt versions 3.1.0 to before 3.21.6 and 4.0.0-alpha.1 to before 4.4.6 and @nuxt/nitro-server versions 3.20.0 to before 3.21.6 and 4.0.… New CWE-79
CWE-349
CWE-444
Cross-site Scripting
 Acceptance of Extraneous Untrusted Data With Trusted Data
HTTP Request Smuggling 		CVE-2026-46342 2026-06-16 03:09 2026-06-12 Show GitHub Exploit DB Packet Storm
49 5.4 MEDIUM
Network 		nuxt nuxt\/rspack-builder
nuxt\/webpack-builder 		Nuxt is an open-source web development framework for Vue.js. In @nuxt/rspack-builder and @nuxt/webpack-builder versions 3.15.4 to before 3.21.6, and 4.0.0-alpha.1 to before 4.4.6, there is an incompl… New CWE-749
 Exposed Dangerous Method or Function 		CVE-2026-45670 2026-06-16 03:08 2026-06-12 Show GitHub Exploit DB Packet Storm
50 9.8 CRITICAL
Network 		apache cxf A logic error in OAuthRequestFilter rejects legitimate requests originating from the bound IP address, while blindly allowing requests from any other IP address. Enabling this security feature inadv… New CWE-20
 Improper Input Validation  		CVE-2026-50628 2026-06-16 03:07 2026-06-12 Show GitHub Exploit DB Packet Storm