Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 28, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
201 6.5 警告
Network 		PEVANS (Paul Evans ) Metrics::Any::Adapter::SignalFx PEVANS (Paul Evans )のMetrics::Any::Adapter::SignalFxにおける複数の脆弱性 CWE-150
CWE-93
CVE-2026-50637
CVE-2026-50638
CVE-2026-50639
CVE-2026-9270 		2026-06-26 11:51 2026-06-10 Show GitHub Exploit DB Packet Storm
202 7.5 重要
Network 		Devolutions UniGetUI DevolutionsのUniGetUIにおける誤って解決された名前や参照の使用に関する脆弱性 CWE-706
誤って解決された名前や参照の使用 		CVE-2026-10696 2026-06-26 11:51 2026-06-17 Show GitHub Exploit DB Packet Storm
203 7.8 重要
Local 		デル AIOps Collector デルのAIOps Collectorにおけるデフォルトの認証情報の使用に関する脆弱性 CWE-1392
デフォルトの認証情報の使用 		CVE-2026-32652 2026-06-26 11:50 2026-06-17 Show GitHub Exploit DB Packet Storm
204 9.1 緊急
Network 		UI UniFi OS Server UIのUniFi OS Serverにおける入力確認に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2026-33000 2026-06-26 11:50 2026-05-22 Show GitHub Exploit DB Packet Storm
205 7.7 重要
Network 		UI UniFi Dream Machine Special Edition Firmware (UDM-SE)
UniFi Cloud Gateway Ultra Firmware (UCG-Ultra)
UniFi Network Video Re… 		UIのEnterprise Fortress Gateway Firmware (EFG)等の複数製品におけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-34911 2026-06-26 11:50 2026-05-22 Show GitHub Exploit DB Packet Storm
206 8.8 重要
Adjacent 		Palo Alto Networks IDIRA Privilege Cloud Connector Palo Alto NetworksのIDIRA Privilege Cloud Connectorにおける証明書検証に関する脆弱性 CWE-295
不正な証明書検証 		CVE-2026-45170 2026-06-26 11:50 2026-06-12 Show GitHub Exploit DB Packet Storm
207 8.8 重要
Network 		Palo Alto Networks IDIRA Privileged Session Manager (PSM) Palo Alto NetworksのIDIRA Privileged Session Manager (PSM)におけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-45171 2026-06-26 11:50 2026-06-11 Show GitHub Exploit DB Packet Storm
208 8.8 重要
Network 		Palo Alto Networks Privileged Session Manager (PSM) Palo Alto NetworksのPrivileged Session Manager (PSM)におけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-45172 2026-06-26 11:50 2026-06-11 Show GitHub Exploit DB Packet Storm
209 8.2 重要
Local 		マイクロソフト Microsoft MANA Network Driver Microsoft Azure ネットワーク アダプターの特権昇格の脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-45476 2026-06-26 11:50 2026-06-9 Show GitHub Exploit DB Packet Storm
210 7.8 重要
Local 		Leejet Stable-diffusion.cpp LeejetのStable-diffusion.cppにおける複数の脆弱性 CWE-122
CWE-787
CVE-2026-47747 2026-06-26 11:50 2026-06-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 29, 2026, 4:19 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
254261 4.8 MEDIUM
Network 		limesurvey limesurvey LimeSurvey version 3.0.0-beta.3+17110 contains a Cross Site Scripting (XSS) vulnerability in Boxes that can result in JS code execution against LimeSurvey admins. This vulnerability appears to have b… CWE-79
Cross-site Scripting 		CVE-2018-1000513 2024-11-21 12:40 2018-06-27 Show GitHub Exploit DB Packet Storm
254262 6.1 MEDIUM
Network 		tooltipy_project tooltipy Tooltipy Tooltipy (tooltips for WP) version 5 contains a Cross Site Scripting (XSS) vulnerability in Glossary shortcode that can result in could allow anybody to do almost anything an admin can. This… CWE-79
Cross-site Scripting 		CVE-2018-1000512 2024-11-21 12:40 2018-06-27 Show GitHub Exploit DB Packet Storm
254263 7.5 HIGH
Network 		wpulike ulike WP ULike version 2.8.1, 3.1 contains a Incorrect Access Control vulnerability in AJAX that can result in allows anybody to delete any row in certain tables. This attack appear to be exploitable via A… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2018-1000511 2024-11-21 12:40 2018-06-27 Show GitHub Exploit DB Packet Storm
254264 6.5 MEDIUM
Network 		silkypress image_zoom WP Image Zoom version 1.23 contains a Incorrect Access Control vulnerability in AJAX settings that can result in allows anybody to cause denial of service. This attack appear to be exploitable via Ca… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2018-1000510 2024-11-21 12:40 2018-06-27 Show GitHub Exploit DB Packet Storm
254265 7.2 HIGH
Network 		redirection redirection Redirection version 2.7.1 contains a Serialisation vulnerability possibly allowing ACE vulnerability in Settings page AJAX that can result in could allow admin to execute arbitrary code in some circu… CWE-502
 Deserialization of Untrusted Data 		CVE-2018-1000509 2024-11-21 12:40 2018-06-27 Show GitHub Exploit DB Packet Storm
254266 4.8 MEDIUM
Network 		wpulike ulike WP ULike version 2.8.1, 3.1 contains a Cross Site Scripting (XSS) vulnerability in Settings screen that can result in allows unauthorised users to do almost anything an admin can. This attack appear … CWE-79
Cross-site Scripting 		CVE-2018-1000508 2024-11-21 12:40 2018-06-27 Show GitHub Exploit DB Packet Storm
254267 6.5 MEDIUM
Network 		jjj wp_user_groups WP User Groups version 2.0.0 contains a Cross ite Request Forgery (CSRF) vulnerability in Settings page that can result in allows anybody to modify user groups and types. This attack appear to be exp… CWE-352
 Origin Validation Error 		CVE-2018-1000507 2024-11-21 12:40 2018-06-27 Show GitHub Exploit DB Packet Storm
254268 8.8 HIGH
Network 		mediaron metronet_tag_manager Metronet Tag Manager version 1.2.7 contains a Cross ite Request Forgery (CSRF) vulnerability in Settings page /wp-admin/options-general.php?page=metronet-tag-manager that can result in allows anybody… CWE-352
 Origin Validation Error 		CVE-2018-1000506 2024-11-21 12:40 2018-06-27 Show GitHub Exploit DB Packet Storm
254269 6.5 MEDIUM
Network 		tooltipy tooltipy Tooltipy (tooltips for WP) version 5 contains a Cross ite Request Forgery (CSRF) vulnerability in Settings page that can result in could allow anybody to duplicate posts. This attack appear to be exp… CWE-352
 Origin Validation Error 		CVE-2018-1000505 2024-11-21 12:40 2018-06-27 Show GitHub Exploit DB Packet Storm
254270 7.2 HIGH
Network 		redirection redirection Redirection version 2.7.3 contains a ACE via file inclusion vulnerability in Pass-through mode that can result in allows admins to execute any PHP file in the filesystem. This attack appear to be exp… CWE-601
Open Redirect 		CVE-2018-1000504 2024-11-21 12:40 2018-06-27 Show GitHub Exploit DB Packet Storm