Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 21, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1841 5.3 警告
Network 		libxls project libxls libxls projectのlibxlsにおける初期化されていないリソースの使用に関する脆弱性 CWE-908
初期化されていないリソースの使用 		CVE-2026-26825 2026-06-8 11:48 2026-06-3 Show GitHub Exploit DB Packet Storm
1842 7.5 重要
Network 		SolarWinds Web Help Desk SolarWindsのWeb Help Deskにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-28299 2026-06-8 11:47 2026-06-2 Show GitHub Exploit DB Packet Storm
1843 7.5 重要
Network 		SolarWinds Serv-U SolarWindsのServ-Uにおけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2026-28318 2026-06-8 11:47 2026-06-4 Show GitHub Exploit DB Packet Storm
1844 7.1 重要
Network 		librechat librechat LibreChatにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-31942 2026-06-8 11:47 2026-06-2 Show GitHub Exploit DB Packet Storm
1845 9.6 緊急
Network 		librechat librechat LibreChatにおける情報漏えいに関する脆弱性 CWE-200
CWE-noinfo
CVE-2026-32625 2026-06-8 11:47 2026-06-2 Show GitHub Exploit DB Packet Storm
1846 4.7 警告
Network 		Shopify React Router ShopifyのReact Routerにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-33245 2026-06-8 11:47 2026-06-2 Show GitHub Exploit DB Packet Storm
1847 7.5 重要
Network 		Python Software Foundation Python Python Software FoundationのPythonにおける複数の脆弱性 CWE-116
CWE-20
CVE-2026-3644 2026-06-8 11:47 2026-03-16 Show GitHub Exploit DB Packet Storm
1848 6.1 警告
Network 		Shopify React Router ShopifyのReact Routerにおけるオープンリダイレクトの脆弱性 CWE-601
オープンリダイレクト 		CVE-2026-40181 2026-06-8 11:47 2026-06-2 Show GitHub Exploit DB Packet Storm
1849 7.8 重要
Local 		Linaro OP-TEE Trusted OS LinaroのOP-TEE Trusted OSにおける解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-40290 2026-06-8 11:47 2026-06-3 Show GitHub Exploit DB Packet Storm
1850 7.7 重要
Network 		lfprojects mlflow lfprojectsのmlflowにおける送信データへの重要な情報の挿入に関する脆弱性 CWE-201
送信データへの重要な情報の挿入 		CVE-2026-4035 2026-06-8 11:47 2026-06-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 21, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
3901 4.3 MEDIUM
Network 		- - A vulnerability was detected in itsourcecode Fees Management System 1.0. The affected element is an unknown function of the file index.php. Performing a manipulation of the argument page results in c… CWE-79
CWE-94
Cross-site Scripting
Code Injection 		CVE-2026-10301 2026-06-2 22:03 2026-06-2 Show GitHub Exploit DB Packet Storm
3902 6.3 MEDIUM
Network 		- - A flaw has been found in itsourcecode Fees Management System 1.0. The impacted element is an unknown function of the file /manage_fee.php. Executing a manipulation of the argument ID can lead to sql … CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-10302 2026-06-2 22:03 2026-06-2 Show GitHub Exploit DB Packet Storm
3903 3.3 LOW
Local 		- - A security flaw has been discovered in Orthanc DICOM Server up to 1.12.11. This issue affects the function DcmItem::read of the file OrthancFramework/Sources/DicomParsing/FromDcmtkBridge.cpp of the c… CWE-119
CWE-121
Incorrect Access of Indexable Resource ('Range Error') 
Stack-based Buffer Overflow 		CVE-2026-10528 2026-06-2 22:03 2026-06-2 Show GitHub Exploit DB Packet Storm
3904 4.3 MEDIUM
Network 		- - The Slider Revolution plugin for WordPress is vulnerable to Sensitive Information Exposure in versions 7.0.0 - 7.0.14, via the 'slider.get.full' AJAX Action. This makes it possible for authenticated … CWE-863
 Incorrect Authorization 		CVE-2026-9048 2026-06-2 22:03 2026-06-2 Show GitHub Exploit DB Packet Storm
3905 4.3 MEDIUM
Network 		- - The Slider Revolution plugin for WordPress in versions 6.0.0-6.7.55 and 7.0.0-7.0.14 is vulnerable to unauthorized modification of data. This is due to the plugin not properly verifying that a user i… CWE-862
 Missing Authorization 		CVE-2026-9050 2026-06-2 22:03 2026-06-2 Show GitHub Exploit DB Packet Storm
3906 6.3 MEDIUM
Network 		- - A weakness has been identified in elunez eladmin up to 2.7. This vulnerability affects unknown code of the file App.java of the component Application Deployment Module. This manipulation of the argum… CWE-74
CWE-77
Injection
Command Injection 		CVE-2026-10550 2026-06-2 22:03 2026-06-2 Show GitHub Exploit DB Packet Storm
3907 6.3 MEDIUM
Network 		- - A vulnerability was detected in SourceCodester Pizzafy Ecommerce System 1.0. Impacted is an unknown function of the file /admin/index.php. Performing a manipulation of the argument page results in fi… CWE-73
 External Control of File Name or Path 		CVE-2026-10558 2026-06-2 22:03 2026-06-2 Show GitHub Exploit DB Packet Storm
3908 6.3 MEDIUM
Network 		- - A flaw has been found in SourceCodester Pizzafy Ecommerce System 1.0. The affected element is an unknown function of the file /index.php. Executing a manipulation of the argument page can lead to fil… CWE-73
 External Control of File Name or Path 		CVE-2026-10559 2026-06-2 22:03 2026-06-2 Show GitHub Exploit DB Packet Storm
3909 3.1 LOW
Network 		- - A security flaw has been discovered in Open5GS up to 2.7.6. The impacted element is the function gmm_state_security_mode of the file src/amf/gmm-sm.c of the component NGAP Handover. Performing a mani… CWE-362
Race Condition 		CVE-2026-10565 2026-06-2 22:03 2026-06-2 Show GitHub Exploit DB Packet Storm
3910 5.3 MEDIUM
Local 		- - A weakness has been identified in FoundationAgents MetaGPT up to 0.8.2. This affects the function Message.check_instruct_content of the file metagpt/schema.py. Executing a manipulation of the argumen… CWE-20
CWE-502
 Improper Input Validation 
 Deserialization of Untrusted Data 		CVE-2026-10566 2026-06-2 22:03 2026-06-2 Show GitHub Exploit DB Packet Storm