Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 19, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1721 7.5 重要
Network 		Securly, Inc. Securly Securly, Inc.のSecurlyにおけるアルゴリズムの複雑さに関する脆弱性 CWE-407
アルゴリズムの複雑性 		CVE-2026-8889 2026-06-8 12:27 2026-06-3 Show GitHub Exploit DB Packet Storm
1722 9.8 緊急
Network 		IBM IBM Operations Analytics Log Analysis IBMのIBM Operations Analytics Log Analysisにおける脆弱なパスワードの要求に関する脆弱性 CWE-521
CWE-521
CVE-2024-40684 2026-06-8 12:27 2026-05-27 Show GitHub Exploit DB Packet Storm
1723 8.8 重要
Network 		IBM IBM Security QRadar SIEM IBMのIBM Security QRadar SIEMにおける複数の脆弱性 CWE-530
CWE-552
CVE-2024-56462 2026-06-8 12:27 2026-05-27 Show GitHub Exploit DB Packet Storm
1724 9.8 緊急
Network 		Python Software Foundation Python Python Software FoundationのPythonにおける複数の脆弱性 CWE-20
CWE-434
CWE-74
CVE-2025-13462 2026-06-8 12:27 2026-03-12 Show GitHub Exploit DB Packet Storm
1725 6.1 警告
Network 		Forcepoint LLC. Forcepoint Web Security Forcepoint LLC.のForcepoint Web Securityにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2025-2274 2026-06-8 12:27 2026-03-16 Show GitHub Exploit DB Packet Storm
1726 6.4 警告
Local 		レッドハット Red Hat Fuse レッドハットのRed Hat Fuseにおける不適切なデフォルトパーミッションに関する脆弱性 CWE-276
不適切なデフォルトパーミッション 		CVE-2025-57849 2026-06-8 12:27 2026-03-13 Show GitHub Exploit DB Packet Storm
1727 9.8 緊急
Network 		HCL Technologies Limited unica
HCL Unica Audience Central 		HCL Technologies Limitedのunica等の複数製品におけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2025-62319 2026-06-8 12:27 2026-03-16 Show GitHub Exploit DB Packet Storm
1728 6.4 警告
Local 		レッドハット Red Hat OpenShift Data Foundation レッドハットのRed Hat OpenShift Data Foundationにおける不適切なデフォルトパーミッションに関する脆弱性 CWE-276
不適切なデフォルトパーミッション 		CVE-2025-8766 2026-06-8 12:27 2026-03-13 Show GitHub Exploit DB Packet Storm
1729 8.8 重要
Network 		Amazon.com, Inc. Kiro IDE Amazon.com, Inc.のKiro IDEにおける重要なリソースに対する不適切なパーミッションの割り当てに関する脆弱性 CWE-732
重要なリソースに対する不適切なパーミッションの割り当て 		CVE-2026-10591 2026-06-8 12:27 2026-06-2 Show GitHub Exploit DB Packet Storm
1730 4.3 警告
Network 		MISP MISP MISPにおける情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2026-10854 2026-06-8 12:27 2026-06-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 20, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
320171 4.8 MEDIUM
Network 		peepso peepso The Community by PeepSo – Social Network, Membership, Registration, User Profiles plugin for WordPress is vulnerable to Stored Cross-Site Scripting in all versions up to, and including, 6.4.5.0 due t… CWE-79
Cross-site Scripting 		CVE-2024-7655 2024-09-20 03:20 2024-09-10 Show GitHub Exploit DB Packet Storm
320172 4.8 MEDIUM
Network 		peepso peepso The Community by PeepSo – Social Network, Membership, Registration, User Profiles plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘content’ parameter in all versions up to, … CWE-79
Cross-site Scripting 		CVE-2024-7618 2024-09-20 03:20 2024-09-10 Show GitHub Exploit DB Packet Storm
320173 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: avoid using null object of framebuffer Instead of using state->fb->obj[0] directly, get object from framebuffer … CWE-476
 NULL Pointer Dereference 		CVE-2024-46694 2024-09-20 03:16 2024-09-13 Show GitHub Exploit DB Packet Storm
320174 5.4 MEDIUM
Network 		microfocus netiq_access_manager Improper Input Validation vulnerability in OpenText NetIQ Access Manager leads to Cross-Site Scripting (XSS) attack. This issue affects NetIQ Access Manager before 5.0.4.1 and 5.1. CWE-79
Cross-site Scripting 		CVE-2024-4554 2024-09-20 03:15 2024-08-28 Show GitHub Exploit DB Packet Storm
320175 7.1 HIGH
Local 		stripe stripe-cli stripe-cli is a command-line tool for the payment processor Stripe. A vulnerability exists in stripe-cli starting in version 1.11.1 and prior to version 1.21.3 where a plugin package containing a man… CWE-22
Path Traversal 		CVE-2024-45401 2024-09-20 03:12 2024-09-6 Show GitHub Exploit DB Packet Storm
320176 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: pktgen: use cpus_read_lock() in pg_net_init() I have seen the WARN_ON(smp_processor_id() != cpu) firing in pktgen_thread_worker()… NVD-CWE-noinfo
CVE-2024-46681 2024-09-20 03:10 2024-09-13 Show GitHub Exploit DB Packet Storm
320177 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: binfmt_elf_fdpic: fix AUXV size calculation when ELF_HWCAP2 is defined create_elf_fdpic_tables() does not correctly account the s… CWE-131
Incorrect Calculation of Buffer Size 		CVE-2024-46684 2024-09-20 03:04 2024-09-13 Show GitHub Exploit DB Packet Storm
320178 6.1 MEDIUM
Network 		mlewand open_link ckeditor-plugin-openlink is a plugin for the CKEditor JavaScript text editor that extends the context menu with a possibility to open a link in a new tab. A vulnerability in versions of the plugin pr… CWE-79
Cross-site Scripting 		CVE-2024-45400 2024-09-20 03:04 2024-09-6 Show GitHub Exploit DB Packet Storm
320179 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: erofs: fix out-of-bound access when z_erofs_gbuf_growsize() partially fails If z_erofs_gbuf_growsize() partially fails on a globa… CWE-787
 Out-of-bounds Write 		CVE-2024-46688 2024-09-20 03:01 2024-09-13 Show GitHub Exploit DB Packet Storm
320180 5.3 MEDIUM
Network 		apple visionos The issue was addressed by suspending Persona when the virtual keyboard is active. This issue is fixed in visionOS 1.3. Inputs to the virtual keyboard may be inferred from Persona. NVD-CWE-noinfo
CVE-2024-40865 2024-09-20 02:58 2024-09-6 Show GitHub Exploit DB Packet Storm