Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 22, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
201 8.1 重要
Network 		MongoDB Inc. MongoDB MongoDB Inc.のMongoDBにおける複数の脆弱性 New CWE-1287
CWE-787
CVE-2026-9753 2026-06-22 11:46 2026-06-9 Show GitHub Exploit DB Packet Storm
202 6.5 警告
Network 		MongoDB Inc. MongoDB MongoDB Inc.のMongoDBにおける初期化されていない変数の使用に関する脆弱性 New CWE-457
初期化されていない変数の使用 		CVE-2026-9754 2026-06-22 11:46 2026-06-9 Show GitHub Exploit DB Packet Storm
203 7.8 重要
Local 		Google Android GoogleのAndroidにおける解放済みメモリの使用に関する脆弱性 New CWE-416
解放済みメモリの使用 		CVE-2026-0143 2026-06-22 11:45 2026-06-16 Show GitHub Exploit DB Packet Storm
204 6.5 警告
Network 		Google Android GoogleのAndroidにおける古典的バッファオーバーフローの脆弱性 New CWE-120
古典的バッファオーバーフロー 		CVE-2026-0144 2026-06-22 11:45 2026-06-16 Show GitHub Exploit DB Packet Storm
205 3.3
Local 		Google Android GoogleのAndroidにおける認証の欠如に関する脆弱性 New CWE-862
認証の欠如 		CVE-2026-0145 2026-06-22 11:45 2026-06-16 Show GitHub Exploit DB Packet Storm
206 8.8 重要
Network 		Google Android GoogleのAndroidにおける複数の脆弱性 New CWE-120
CWE-787
CVE-2026-0146 2026-06-22 11:45 2026-06-16 Show GitHub Exploit DB Packet Storm
207 8.8 重要
Network 		Google Android GoogleのAndroidにおける複数の脆弱性 New CWE-120
CWE-787
CVE-2026-0147 2026-06-22 11:45 2026-06-16 Show GitHub Exploit DB Packet Storm
208 8.8 重要
Network 		Google Android GoogleのAndroidにおける複数の脆弱性 New CWE-190
CWE-787
CVE-2026-0148 2026-06-22 11:45 2026-06-16 Show GitHub Exploit DB Packet Storm
209 8.8 重要
Network 		Google Android GoogleのAndroidにおける複数の脆弱性 New CWE-122
CWE-787
CVE-2026-0149 2026-06-22 11:45 2026-06-16 Show GitHub Exploit DB Packet Storm
210 7.8 重要
Local 		Google Android GoogleのAndroidにおける複数の脆弱性 New CWE-190
CWE-787
CVE-2026-0150 2026-06-22 11:45 2026-06-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 23, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
191421 9.8 CRITICAL
Network 		wms_project wms An issue in FeMiner WMS v1.1 allows attackers to execute arbitrary code via the filename parameter and the exec function. NVD-CWE-noinfo
CVE-2021-33949 2024-11-21 15:09 2023-02-18 Show GitHub Exploit DB Packet Storm
191422 9.8 CRITICAL
Network 		hotels_server_project hotels_server SQL injection vulnerability in FantasticLBP Hotels Server v1.0 allows attacker to execute arbitrary code via the username parameter. CWE-89
SQL Injection 		CVE-2021-33948 2024-11-21 15:09 2023-02-18 Show GitHub Exploit DB Packet Storm
191423 8.8 HIGH
Network 		plone plone An issue in Plone CMS v. 5.2.4, 5.2.3, 5.2.2, 5.2.1, 5.2.0, 5.1rc2, 5.1rc1, 5.1b4, 5.1b3, 5.1b2, 5.1a2, 5.1a1, 5.1.7, 5.1.6, 5.1.5, 5.1.4, 5.1.2, 5.1.1 5.1, 5.0rc3, 5.0rc2, 5.0rc1, 5.0.9, 5.0.8, 5.0.… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2021-33926 2024-11-21 15:09 2023-02-18 Show GitHub Exploit DB Packet Storm
191424 7.5 HIGH
Network 		seopanel seo_panel SQL Injection vulnerability in SEO Panel 4.9.0 in api/user.api.php in function getUserName in the username parameter, allows attackers to gain sensitive information. CWE-89
SQL Injection 		CVE-2021-34117 2024-11-21 15:09 2023-02-16 Show GitHub Exploit DB Packet Storm
191425 9.8 CRITICAL
Network 		cms-corephp_project cms-corephp SQL Injection vulnerability in nitinparashar30 cms-corephp through commit bdabe52ef282846823bda102728a35506d0ec8f9 (May 19, 2021) allows unauthenticated attackers to gain escilated privledges via a c… CWE-89
SQL Injection 		CVE-2021-33925 2024-11-21 15:09 2023-02-16 Show GitHub Exploit DB Packet Storm
191426 5.5 MEDIUM
Local 		openeuler byacc When a file is processed, an infinite loop occurs in next_inline() of the more_curly() function. CWE-835
 Loop with Unreachable Exit Condition ('Infinite Loop') 		CVE-2021-33642 2024-11-21 15:09 2023-01-21 Show GitHub Exploit DB Packet Storm
191427 7.8 HIGH
Local 		openeuler byacc When processing files, malloc stores the data of the current line. When processing comments, malloc incorrectly accesses the released memory (use after free). CWE-416
 Use After Free 		CVE-2021-33641 2024-11-21 15:09 2023-01-21 Show GitHub Exploit DB Packet Storm
191428 7.5 HIGH
Network 		plex media_server Plex media server 1.21 and before is vulnerable to ddos reflection attack via plex service. CWE-346
 Origin Validation Error 		CVE-2021-33959 2024-11-21 15:09 2023-01-18 Show GitHub Exploit DB Packet Storm
191429 9.8 CRITICAL
Network 		huawei
fedoraproject 		openeuler
fedora 		After tar_close(), libtar.c releases the memory pointed to by pointer t. After tar_close() is called in the list() function, it continues to use pointer t: free_longlink_longname(t->th_buf) . As a re… CWE-416
 Use After Free 		CVE-2021-33640 2024-11-21 15:09 2022-12-20 Show GitHub Exploit DB Packet Storm
191430 5.4 MEDIUM
Network 		tomexam tomexam Cross Site Scripting (XSS) vulnerability in TomExam 3.0 via p_name parameter to list.thtml. CWE-79
Cross-site Scripting 		CVE-2021-34181 2024-11-21 15:09 2022-12-6 Show GitHub Exploit DB Packet Storm