Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 29, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2231 8.8 重要
Network 		flowiseai flowise flowiseaiのflowiseにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-46444 2026-06-12 14:47 2026-06-8 Show GitHub Exploit DB Packet Storm
2232 8.7 重要
Network 		OpenEMR OpenEMR OpenEMRにおける複数の脆弱性 CWE-79
CWE-862
CVE-2026-46518 2026-06-12 14:47 2026-06-10 Show GitHub Exploit DB Packet Storm
2233 7.5 重要
Network 		ImageMagick ImageMagick ImageMagickにおける複数の脆弱性 CWE-122
CWE-787
CVE-2026-46520 2026-06-12 14:47 2026-06-10 Show GitHub Exploit DB Packet Storm
2234 5.5 警告
Local 		ImageMagick ImageMagick ImageMagickにおける複数の脆弱性 CWE-131
CWE-252
CWE-787
CWE-835
CVE-2026-46521 2026-06-12 14:47 2026-06-10 Show GitHub Exploit DB Packet Storm
2235 7.5 重要
Network 		ImageMagick ImageMagick ImageMagickにおける複数の脆弱性 CWE-400
CWE-835
CVE-2026-46522 2026-06-12 14:47 2026-06-10 Show GitHub Exploit DB Packet Storm
2236 6.2 警告
Local 		ImageMagick ImageMagick ImageMagickにおける解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-46523 2026-06-12 14:47 2026-06-10 Show GitHub Exploit DB Packet Storm
2237 4.6 警告
Adjacent 		Espressif Systems ESP-IDF Espressif SystemsのESP-IDFにおける境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2026-46532 2026-06-12 14:47 2026-06-10 Show GitHub Exploit DB Packet Storm
2238 6.2 警告
Local 		ImageMagick ImageMagick ImageMagickにおける再帰制御に関する脆弱性 CWE-674
不適切な再帰制御 		CVE-2026-46557 2026-06-12 14:47 2026-06-10 Show GitHub Exploit DB Packet Storm
2239 8.3 重要
Network 		plane plane planeにおける複数の脆弱性 CWE-639
CWE-862
CVE-2026-46558 2026-06-12 14:47 2026-06-10 Show GitHub Exploit DB Packet Storm
2240 4 警告
Local 		ImageMagick ImageMagick ImageMagickにおける複数の脆弱性 CWE-193
CWE-787
CVE-2026-46559 2026-06-12 14:47 2026-06-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 29, 2026, 4:19 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
320561 5.4 MEDIUM
Network 		davidartiss code_embed The Code Embed plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's script embed functionality in all versions up to, and including, 2.4 due to insufficient restrictions… CWE-79
Cross-site Scripting 		CVE-2024-8804 2024-10-11 05:56 2024-10-4 Show GitHub Exploit DB Packet Storm
320562 6.1 MEDIUM
Network 		wpfactory quantity_dynamic_pricing_\&_bulk_discounts_for_woocommerce The Quantity Dynamic Pricing & Bulk Discounts for WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the … CWE-79
Cross-site Scripting 		CVE-2024-9384 2024-10-11 05:52 2024-10-4 Show GitHub Exploit DB Packet Storm
320563 6.1 MEDIUM
Network 		techbanker captcha_bank The WordPress Captcha Plugin by Captcha Bank plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versio… CWE-79
Cross-site Scripting 		CVE-2024-9375 2024-10-11 05:44 2024-10-4 Show GitHub Exploit DB Packet Storm
320564 5.4 MEDIUM
Network 		wpblockshub wp_blocks_hub The WP Blocks Hub plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 1.0.2 due to insufficient input sanitization and output … CWE-79
Cross-site Scripting 		CVE-2024-9372 2024-10-11 05:36 2024-10-4 Show GitHub Exploit DB Packet Storm
320565 5.4 MEDIUM
Network 		miguelmello aggregator_advanced_settings The Aggregator Advanced Settings plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 1.2.1 due to insufficient input sanitizat… CWE-79
Cross-site Scripting 		CVE-2024-9368 2024-10-11 05:30 2024-10-4 Show GitHub Exploit DB Packet Storm
320566 6.1 MEDIUM
Network 		michaeluno auto_amazon_links The Auto Amazon Links – Amazon Associates Affiliate Plugin plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL… CWE-79
Cross-site Scripting 		CVE-2024-9349 2024-10-11 05:25 2024-10-4 Show GitHub Exploit DB Packet Storm
320567 9.8 CRITICAL
Network 		dlink dir-860l_firmware In D-Link DIR-860L v2.03, there is a buffer overflow vulnerability due to the lack of length verification for the SID field in gena.cgi. Attackers who successfully exploit this vulnerability can caus… CWE-120
Classic Buffer Overflow 		CVE-2024-42812 2024-10-11 05:18 2024-08-20 Show GitHub Exploit DB Packet Storm
320568 6.1 MEDIUM
Network 		angeljudesuarez placement_management_system itsourcecode Placement Management System 1.0 is vulnerable to Cross Site Scripting (XSS) via the Full Name field in registration.php. CWE-79
Cross-site Scripting 		CVE-2024-46300 2024-10-11 03:52 2024-10-8 Show GitHub Exploit DB Packet Storm
320569 4.9 MEDIUM
Network 		google android In wlan driver, there is a possible out of bounds read due to improper input validation. This could lead to remote information disclosure with System execution privileges needed. User interaction is … CWE-125
Out-of-bounds Read 		CVE-2024-20102 2024-10-11 03:20 2024-10-7 Show GitHub Exploit DB Packet Storm
320570 4.7 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: ALSA: line6: Fix racy access to midibuf There can be concurrent accesses to line6 midibuf from both the URB completion callback a… CWE-362
Race Condition 		CVE-2024-44954 2024-10-11 03:02 2024-09-5 Show GitHub Exploit DB Packet Storm