Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 16, 2026, 4:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
133951	6.5	警告 Network	Pyrescom	Termod4 ファームウェア	Pyrescom Termod4 におけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2020-23161	2021-10-13 16:49	2020-09-3	Show	GitHub Exploit DB Packet Storm

133952	8.8	重要 Network	openMAINT	openMAINT	openMAINT における危険なタイプのファイルの無制限アップロードに関する脆弱性	CWE-434 危険なタイプのファイルの無制限アップロード	CVE-2020-24549	2021-10-13 16:37	2020-08-19	Show	GitHub Exploit DB Packet Storm

133953	5.5	警告 Local	ESET	ESET NOD32アンチウイルス ESET Endpoint Antivirus ESET Security ESET File Security ESET Endpoint Security ESET Internet Security ESET …	複数の ESET 製品における不適切なデフォルトパーミッションに関する脆弱性	CWE-276 不適切なデフォルトパーミッション	CVE-2020-26941	2021-10-13 16:31	2020-10-10	Show	GitHub Exploit DB Packet Storm

133954	6.5	警告 Network	The Go Project Fedora Project Debian NetApp	Cloud Insights Telegraf Agent Fedora Go StorageGRID Debian GNU/Linux	Go における計算の誤りに関する脆弱性	CWE-682 計算の誤り	CVE-2021-3114	2021-10-13 16:14	2021-01-22	Show	GitHub Exploit DB Packet Storm

133955	7.5	重要 Network	The Go Project Fedora Project NetApp	Go Cloud Insights Telegraf Agent StorageGRID Fedora	Go におけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2021-3115	2021-10-13 16:01	2021-01-19	Show	GitHub Exploit DB Packet Storm

133956	5.3	警告 Network	Home Assistant	Home Assistant	Home Assistant におけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2021-3152	2021-10-13 15:09	2021-01-14	Show	GitHub Exploit DB Packet Storm

133957	8.8	重要 Network	ChurchRota project	ChurchRota	ChurchRota における危険なタイプのファイルの無制限アップロードに関する脆弱性	CWE-434 危険なタイプのファイルの無制限アップロード	CVE-2021-3164	2021-10-13 15:03	2021-01-20	Show	GitHub Exploit DB Packet Storm

133958	7.5	重要 Network	Bitcoin Core	Bitcoin Core	Bitcoin Core における入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2021-3195	2021-10-13 14:48	2021-01-6	Show	GitHub Exploit DB Packet Storm

133959	8.8	重要 Network	アドビシステムズ	Adobe Acrobat Adobe Acrobat Reader DC Adobe Acrobat DC	Adobe Reader および Acrobat における解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2021-21021	2021-10-13 14:44	2021-02-9	Show	GitHub Exploit DB Packet Storm

133960	8.8	重要 Network	アドビシステムズ	Adobe Acrobat Adobe Acrobat Reader DC Adobe Acrobat DC	Adobe Reader および Acrobat における境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2021-21017	2021-10-13 14:44	2021-02-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
81	5.3	MEDIUM Network	-	-	Impact: multer versions 2.0.0-alpha.1 through 2.1.1 and 3.0.0-alpha.1 are vulnerable to a Denial of Service when using diskStorage. Aborted or malformed multipart uploads leave orphaned partial files… New	CWE-459 Incomplete Cleanup	CVE-2026-5038	2026-06-16 01:16	2026-06-16	Show	GitHub Exploit DB Packet Storm

82	-		-	-	Kitty is a cross-platform GPU based terminal. In versions prior to 0.47.3, kitty's OSC 21 (color-control) query reply reflects attacker-controlled bytes, including newlines, into the shell's input wi… New	CWE-94 CWE-150 Code Injection Improper Neutralization of Escape, Meta, or Control Sequences	CVE-2026-54057	2026-06-16 01:16	2026-06-13	Show	GitHub Exploit DB Packet Storm

83	6.4	MEDIUM Network	-	-	Nezha Monitoring is a self-hostable, lightweight, servers and websites monitoring and O&M tool. From version 2.0.14 to before version 2.1.0, PATCH /server/{id} accepts and persists nonexistent ddns_p… New	CWE-863 Incorrect Authorization	CVE-2026-53521	2026-06-16 01:16	2026-06-13	Show	GitHub Exploit DB Packet Storm

84	6.3	MEDIUM Network	-	-	Koel is a free, open-source music streaming solution. Prior to version 9.7.1, Koel contains a Server-Side Request Forgery (SSRF) vulnerability in the radio station creation endpoint (POST /api/radio/… New	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-50552	2026-06-16 01:16	2026-06-13	Show	GitHub Exploit DB Packet Storm

85	7.3	HIGH Network	-	-	ApostropheCMS is an open-source Node.js content management system. Version 4.29.0 has a stored cross-site scripting vulnerability in the image widget functionality. A user with the Editor role can co… New	CWE-79 CWE-116 Cross-site Scripting Improper Encoding or Escaping of Output	CVE-2026-45011	2026-06-16 01:16	2026-06-13	Show	GitHub Exploit DB Packet Storm

86	7.8	HIGH Local	-	-	Kitty is a cross-platform GPU based terminal. In versions prior to 0.47.0, a program able to write bytes to a kitty terminal — a remote SSH peer, a downloaded file viewed with `cat`, a log line, an e… New	CWE-94 CWE-862 Code Injection Missing Authorization	CVE-2026-42851	2026-06-16 01:16	2026-06-13	Show	GitHub Exploit DB Packet Storm

87	9.8	CRITICAL Network	-	-	A web page that contains unusual WebGPU content loaded into the GPU GLES render process and can trigger an out-of-bound write in the GPU user-space driver, leading to memory corruption and possible b… New	CWE-787 Out-of-bounds Write	CVE-2026-41157	2026-06-16 01:16	2026-06-13	Show	GitHub Exploit DB Packet Storm

88	5.3	MEDIUM Local	-	-	A flaw has been found in Moovit Bus & Public Transit App 1.18 on Android. This affects an unknown part of the component com.tranzmate. Executing a manipulation can lead to improper authorization in h… New	CWE-285 CWE-939 Improper Authorization Improper Authorization in Handler for Custom URL Scheme	CVE-2026-12189	2026-06-16 01:16	2026-06-15	Show	GitHub Exploit DB Packet Storm

89	4.8	MEDIUM Adjacent	-	-	Zephyr's native TCP stack iterates the global connection list in net_tcp_foreach() (subsys/net/ip/tcp.c) using the SYS_SLIST_FOR_EACH_CONTAINER_SAFE macro, which caches a pointer to the next list nod… New	CWE-416 Use After Free	CVE-2026-10634	2026-06-16 01:16	2026-06-16	Show	GitHub Exploit DB Packet Storm

90	6.5	MEDIUM Network	-	-	Contributor Cross Site Scripting (XSS) in Elizaibots <= 1.0.2 versions. New	CWE-79 Cross-site Scripting	CVE-2025-15659	2026-06-16 01:16	2026-06-16	Show	GitHub Exploit DB Packet Storm