Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 28, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 1771 | 7.8 |
重要
Local |
マイクロソフト |
Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Windows Server 2019 Microsoft Windows 11 26h1 Microsoft … |
Microsoft DWM Core ライブラリの特権の昇格の脆弱性 |
CWE-416
解放済みメモリの使用 |
CVE-2026-45637 | 2026-06-12 14:49 | 2026-06-9 | Show | GitHub Exploit DB Packet Storm |
| 1772 | 7.8 |
重要
Local |
マイクロソフト |
Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Windows Server 2016 Microsoft Windows Server 2019 Microsoft&n… |
WinSock 用 Windows Ancillary Function Driver の特権の昇格の脆弱性 |
CWE-122
ヒープオーバーフロー |
CVE-2026-45638 | 2026-06-12 14:49 | 2026-06-9 | Show | GitHub Exploit DB Packet Storm |
| 1773 | 7 |
重要
Local |
マイクロソフト |
Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Windows 11 26h1 Microsoft Windows 11 24h2 Microsoft Wind… |
Windows Bluetooth ポート ドライバーの特権昇格の脆弱性 |
CWE-416
解放済みメモリの使用 |
CVE-2026-45640 | 2026-06-12 14:49 | 2026-06-9 | Show | GitHub Exploit DB Packet Storm |
| 1774 | 7.8 |
重要
Local |
マイクロソフト |
Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Windows 11 26h1 Microsoft Windows 11 24h2 Microsoft Wind… |
Windows Hyper-V のリモートでコードが実行される脆弱性 |
CWE-125 CWE-843 |
CVE-2026-45641 | 2026-06-12 14:49 | 2026-06-9 | Show | GitHub Exploit DB Packet Storm |
| 1775 | 3.9 |
低
Physics |
マイクロソフト |
Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Windows Server 2016 Microsoft Windows Server 2019 Microsoft&n… |
Microsoft Azure 構成証明サービスとデバイス正常性構成証明サービスのなりすましの脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2026-45642 | 2026-06-12 14:49 | 2026-06-9 | Show | GitHub Exploit DB Packet Storm |
| 1776 | 8.8 |
重要
Network |
マイクロソフト |
Microsoft Windows Server 2025 Microsoft Windows Server 2022 |
Windows Active Directory ドメイン サービス のリモートでコードが実行される脆弱性 |
CWE-121
スタックオーバーフロー |
CVE-2026-45648 | 2026-06-12 14:49 | 2026-06-9 | Show | GitHub Exploit DB Packet Storm |
| 1777 | 7 |
重要
Local |
マイクロソフト |
Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Windows Server 2016 Microsoft Windows Server 2019 Microsoft&n… |
Windows カーネルの特権の昇格の脆弱性 |
CWE-122 CWE-416 |
CVE-2026-45653 | 2026-06-12 14:49 | 2026-06-9 | Show | GitHub Exploit DB Packet Storm |
| 1778 | 7.9 |
重要
Local |
マイクロソフト |
Microsoft Windows Server 2025 Microsoft Windows 11 25h2 Microsoft Windows 11 26h1 Microsoft Windows 11 24h2 |
セキュア ブートのセキュリティ機能のバイパスの脆弱性 |
CWE-284
不適切なアクセス制御 |
CVE-2026-45654 | 2026-06-12 14:49 | 2026-06-9 | Show | GitHub Exploit DB Packet Storm |
| 1779 | 5.3 |
警告
Physics |
マイクロソフト |
Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Windows Server 2016 Microsoft Windows Server 2019 Microsoft&n… |
Windows BitLocker セキュリティ機能バイパスの脆弱性 |
CWE-693
保護メカニズムの不具合 |
CVE-2026-45655 | 2026-06-12 14:49 | 2026-06-9 | Show | GitHub Exploit DB Packet Storm |
| 1780 | 5.3 |
警告
Network |
ImageMagick | ImageMagick | ImageMagickにおける複数の脆弱性 |
CWE-400 CWE-407 CWE-674 |
CVE-2026-45664 | 2026-06-12 14:49 | 2026-06-10 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 29, 2026, 4:19 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 861 | 6.5 |
MEDIUM
Network |
- | - | Author Cross Site Scripting (XSS) in Featured Image <= 2.1 versions. New |
CWE-79
Cross-site Scripting |
CVE-2026-57431 | 2026-06-27 00:49 | 2026-06-27 | Show | GitHub Exploit DB Packet Storm |
| 862 | 6.5 |
MEDIUM
Network |
- | - | Contributor Cross Site Scripting (XSS) in SeedProd Pro < 6.19.5 versions. New |
CWE-79
Cross-site Scripting |
CVE-2026-57617 | 2026-06-27 00:49 | 2026-06-27 | Show | GitHub Exploit DB Packet Storm |
| 863 | 6.5 |
MEDIUM
Network |
- | - | Contributor Cross Site Scripting (XSS) in StatCounter <= 2.1.1 versions. New |
CWE-79
Cross-site Scripting |
CVE-2026-57629 | 2026-06-27 00:49 | 2026-06-27 | Show | GitHub Exploit DB Packet Storm |
| 864 | 5.3 |
MEDIUM
Network |
- | - | Unauthenticated Insecure Direct Object References (IDOR) in Blocksy Companion Pro <= 2.1.46 versions. New |
CWE-639
Authorization Bypass Through User-Controlled Key |
CVE-2026-57630 | 2026-06-27 00:49 | 2026-06-27 | Show | GitHub Exploit DB Packet Storm |
| 865 | 6.5 |
MEDIUM
Network |
- | - | Unauthenticated Cross Site Request Forgery (CSRF) in FunnelKit Payment Gateway for Stripe WooCommerce <= 1.14.0.3 versions. New |
CWE-352
Origin Validation Error |
CVE-2026-57635 | 2026-06-27 00:49 | 2026-06-27 | Show | GitHub Exploit DB Packet Storm |
| 866 | 8.5 |
HIGH
Network |
- | - | Contributor SQL Injection in wpForo Forum <= 3.0.9 versions. New |
CWE-89
SQL Injection |
CVE-2026-57636 | 2026-06-27 00:49 | 2026-06-27 | Show | GitHub Exploit DB Packet Storm |
| 867 | 8.5 |
HIGH
Network |
- | - | Contributor SQL Injection in Gallery <= 4.7.8 versions. New |
CWE-89
SQL Injection |
CVE-2026-57642 | 2026-06-27 00:49 | 2026-06-27 | Show | GitHub Exploit DB Packet Storm |
| 868 | 8.5 |
HIGH
Network |
- | - | Contributor SQL Injection in WP Post Author <= 3.9.1 versions. New |
CWE-89
SQL Injection |
CVE-2026-57643 | 2026-06-27 00:49 | 2026-06-27 | Show | GitHub Exploit DB Packet Storm |
| 869 | 4.3 |
MEDIUM
Network |
- | - | Contributor Broken Access Control in Nelio Content <= 4.3.4 versions. New |
CWE-862
Missing Authorization |
CVE-2026-57648 | 2026-06-27 00:49 | 2026-06-27 | Show | GitHub Exploit DB Packet Storm |
| 870 | 4.3 |
MEDIUM
Network |
- | - | Subscriber Broken Access Control in Shoppable Images Lite <= 1.3 versions. New |
CWE-862
Missing Authorization |
CVE-2026-57649 | 2026-06-27 00:49 | 2026-06-27 | Show | GitHub Exploit DB Packet Storm |