Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 22, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
161	7.1	重要 Local	OpenClaw	OpenClaw	OpenClawにおける信頼できない検索パスに関する脆弱性 New	CWE-426 信頼性のない検索パス	CVE-2026-53842	2026-06-22 11:48	2026-06-16	Show	GitHub Exploit DB Packet Storm

162	8.8	重要 Network	OpenClaw	OpenClaw	OpenClawにおけるセッション期限に関する脆弱性 New	CWE-613 不適切なセッション期限	CVE-2026-53843	2026-06-22 11:48	2026-06-16	Show	GitHub Exploit DB Packet Storm

163	6.5	警告 Network	OpenClaw	OpenClaw	OpenClawにおける認証の欠如に関する脆弱性 New	CWE-862 認証の欠如	CVE-2026-53844	2026-06-22 11:48	2026-06-16	Show	GitHub Exploit DB Packet Storm

164	4.3	警告 Network	OpenClaw	OpenClaw	OpenClawにおける保護メカニズムの不具合に関する脆弱性 New	CWE-693 保護メカニズムの不具合	CVE-2026-53845	2026-06-22 11:48	2026-06-16	Show	GitHub Exploit DB Packet Storm

165	7.1	重要 Local	OpenClaw	OpenClaw	OpenClawにおける信頼できない検索パスに関する脆弱性 New	CWE-426 信頼性のない検索パス	CVE-2026-53846	2026-06-22 11:48	2026-06-16	Show	GitHub Exploit DB Packet Storm

166	5.4	警告 Network	OpenClaw	OpenClaw	OpenClawにおける不適切な権限設定に関する脆弱性 New	CWE-266 不適切な権限設定	CVE-2026-53847	2026-06-22 11:48	2026-06-16	Show	GitHub Exploit DB Packet Storm

167	4.3	警告 Network	OpenClaw	OpenClaw	OpenClawにおける不完全なブラックリストに関する脆弱性 New	CWE-184 不完全なブラックリスト	CVE-2026-53848	2026-06-22 11:48	2026-06-16	Show	GitHub Exploit DB Packet Storm

168	8.1	重要 Network	OpenClaw	OpenClaw	OpenClawにおけるスプーフィングによる認証回避に関する脆弱性 New	CWE-290 スプーフィングによる認証回避	CVE-2026-53849	2026-06-22 11:48	2026-06-16	Show	GitHub Exploit DB Packet Storm

169	5.5	警告 Local	OpenClaw	OpenClaw	OpenClawにおける認証の欠如に関する脆弱性 New	CWE-862 認証の欠如	CVE-2026-53850	2026-06-22 11:48	2026-06-16	Show	GitHub Exploit DB Packet Storm

170	5.3	警告 Network	OpenClaw	OpenClaw	OpenClawにおける認証の欠如に関する脆弱性 New	CWE-862 認証の欠如	CVE-2026-53851	2026-06-22 11:48	2026-06-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 23, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
191381	4.6	MEDIUM Physics	xscreensaver_project fedoraproject	xscreensaver fedora	XScreenSaver 5.45 can be bypassed if the machine has more than ten disconnectable video outputs. A buffer overflow in update_screen_layout() allows an attacker to bypass the standard screen lock auth…	CWE-120 Classic Buffer Overflow	CVE-2021-34557	2024-11-21 15:10	2021-06-11	Show	GitHub Exploit DB Packet Storm

191382	6.8	MEDIUM Physics	netsetman	netsetman	An unauthenticated attacker with physical access to a computer with NetSetMan Pro before 5.0 installed, that has the pre-logon profile switch button within the Windows logon screen enabled, is able t…	CWE-287 Improper Authentication	CVE-2021-34546	2024-11-21 15:10	2021-06-11	Show	GitHub Exploit DB Packet Storm

191383	7.5	HIGH Network	trusteddomain fedoraproject	opendmarc fedora	OpenDMARC 1.4.1 and 1.4.1.1 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a multi-value From header field.	CWE-476 NULL Pointer Dereference	CVE-2021-34555	2024-11-21 15:10	2021-06-11	Show	GitHub Exploit DB Packet Storm

191384	4.3	MEDIUM Network	paessler	prtg_network_monitor	PRTG Network Monitor 20.1.55.1775 allows /editsettings CSRF for user account creation.	CWE-352 Origin Validation Error	CVE-2021-34547	2024-11-21 15:10	2021-06-11	Show	GitHub Exploit DB Packet Storm

191385	7.2	HIGH Network	cubecoders	amp	An issue was discovered in CubeCoders AMP before 2.1.1.8. A lack of validation of the Java Version setting means that an unintended executable path can be set. The result is that high-privileged user…	CWE-668 Exposure of Resource to Wrong Sphere	CVE-2021-34539	2024-11-21 15:10	2021-06-10	Show	GitHub Exploit DB Packet Storm

191386	9.1	CRITICAL Network	the_fuck_project fedoraproject	the_fuck fedora	The thefuck (aka The Fuck) package before 3.31 for Python allows Path Traversal that leads to arbitrary file deletion via the "undo archive operation" feature.	CWE-22 Path Traversal	CVE-2021-34363	2024-11-21 15:10	2021-06-10	Show	GitHub Exploit DB Packet Storm

191387	6.1	MEDIUM Network	accela	civic_platform	Accela Civic Platform through 20.1 allows ssoAdapter/logoutAction.do successURL XSS. NOTE: the vendor states "there are configurable security flags and we are unable to reproduce them with the availa…	CWE-79 Cross-site Scripting	CVE-2021-34370	2024-11-21 15:10	2021-06-9	Show	GitHub Exploit DB Packet Storm

191388	6.5	MEDIUM Network	accela	civic_platform	portlets/contact/ref/refContactDetail.do in Accela Civic Platform through 20.1 allows remote attackers to obtain sensitive information via a modified contactSeqNumber value. NOTE: the vendor states "…	NVD-CWE-noinfo	CVE-2021-34369	2024-11-21 15:10	2021-06-9	Show	GitHub Exploit DB Packet Storm

191389	6.1	MEDIUM Network	refined-github_project	refined-github	The Refined GitHub browser extension before 21.6.8 might allow XSS via a link in a document. NOTE: github.com sends Content-Security-Policy headers to, in general, address XSS and other concerns.	CWE-79 Cross-site Scripting	CVE-2021-34364	2024-11-21 15:10	2021-06-9	Show	GitHub Exploit DB Packet Storm

191390	7.8	HIGH Local	polarisoffice	polaris_office	Polaris Office v9.103.83.44230 is affected by a Uninitialized Pointer Vulnerability in PolarisOffice.exe and EngineDLL.dll that may cause a Remote Code Execution. To exploit the vulnerability, someon…	CWE-824 Access of Uninitialized Pointer	CVE-2021-34280	2024-11-21 15:10	2021-06-9	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed