Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2531 9.9 緊急
Network 		Termix Termix TermixにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-45744 2026-06-9 14:14 2026-06-5 Show GitHub Exploit DB Packet Storm
2532 8 重要
Network 		Termix Termix Termixにおける証明書検証に関する脆弱性 CWE-295
不正な証明書検証 		CVE-2026-45745 2026-06-9 14:14 2026-06-5 Show GitHub Exploit DB Packet Storm
2533 9 緊急
Network 		Termix Termix Termixにおける複数の脆弱性 CWE-284
CWE-639
CVE-2026-45746 2026-06-9 14:13 2026-06-5 Show GitHub Exploit DB Packet Storm
2534 9.8 緊急
Network 		Termix Termix TermixにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-45748 2026-06-9 14:13 2026-06-5 Show GitHub Exploit DB Packet Storm
2535 8.1 重要
Network 		Termix Termix Termixにおける単一要素認証の使用に関する脆弱性 CWE-308
単一要素認証の使用 		CVE-2026-45749 2026-06-9 14:13 2026-06-5 Show GitHub Exploit DB Packet Storm
2536 9 緊急
Network 		Termix Termix Termixにおける複数の脆弱性 CWE-639
CWE-78
CVE-2026-45750 2026-06-9 14:13 2026-06-5 Show GitHub Exploit DB Packet Storm
2537 7.5 重要
Network 		マイクロソフト Copilot Chat (Microsoft Edge) Copilot Chat (Microsoft Edge) の情報漏えいの脆弱性 CWE-74
インジェクション 		CVE-2026-47644 2026-06-9 14:13 2026-06-4 Show GitHub Exploit DB Packet Storm
2538 8.1 重要
Network 		7-Zip 7-Zip 7-Zipにおける境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2026-48092 2026-06-9 14:13 2026-06-5 Show GitHub Exploit DB Packet Storm
2539 8.8 重要
Network 		7-Zip 7-Zip 7-Zipにおける複数の脆弱性 CWE-190
CWE-787
CVE-2026-48095 2026-06-9 14:13 2026-06-5 Show GitHub Exploit DB Packet Storm
2540 6.5 警告
Network 		7-Zip 7-Zip 7-Zipにおける初期化されていないリソースの使用に関する脆弱性 CWE-908
初期化されていないリソースの使用 		CVE-2026-48101 2026-06-9 14:13 2026-06-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 28, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
320271 - - - A vulnerability classified as problematic has been found in D-Link DSL-2750U R5B017. This affects an unknown part of the component Port Forwarding Page. The manipulation of the argument PortMappingDe… CWE-79
Cross-site Scripting 		CVE-2024-9792 2024-10-15 21:58 2024-10-11 Show GitHub Exploit DB Packet Storm
320272 - - - Authd, through version 0.3.6, did not sufficiently randomize user IDs to prevent collisions. A local attacker who can register user names could spoof another user's ID and gain their privileges. - CVE-2024-9312 2024-10-15 21:58 2024-10-10 Show GitHub Exploit DB Packet Storm
320273 - - - SQL Injection: Hibernate vulnerability in TE Informatics Nova CMS allows SQL Injection.This issue affects Nova CMS: before 5.0. CWE-564
 SQL Injection: Hibernate 		CVE-2024-4658 2024-10-15 21:58 2024-10-10 Show GitHub Exploit DB Packet Storm
320274 - - - An attacker who successfully exploited these vulnerabilities could cause the robot to stop. A vulnerability exists in the PROFINET stack included in the RobotWare versions listed below.  This vul… CWE-476
 NULL Pointer Dereference 		CVE-2024-6157 2024-10-15 21:58 2024-10-10 Show GitHub Exploit DB Packet Storm
320275 - - - Bitcoin Core before 25.0 allows remote attackers to cause a denial of service (blocktxn message-handling assertion and node exit) by including transactions in a blocktxn message that are not committe… - CVE-2024-35202 2024-10-15 21:58 2024-10-10 Show GitHub Exploit DB Packet Storm
320276 - - - A vulnerability was found in SourceCodester Online Eyewear Shop 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file classes/Master.php?f=add_… CWE-89
SQL Injection 		CVE-2024-9974 2024-10-15 21:57 2024-10-15 Show GitHub Exploit DB Packet Storm
320277 - - - A vulnerability was found in SourceCodester Online Eyewear Shop 1.0. It has been classified as critical. Affected is an unknown function of the file /admin/?page=reports of the component Report Viewi… CWE-89
SQL Injection 		CVE-2024-9973 2024-10-15 21:57 2024-10-15 Show GitHub Exploit DB Packet Storm
320278 - - - The Astro web framework has a DOM Clobbering gadget in the client-side router starting in version 3.0.0 and prior to version 4.16.1. It can lead to cross-site scripting (XSS) in websites enables Astr… CWE-79
Cross-site Scripting 		CVE-2024-47885 2024-10-15 21:57 2024-10-15 Show GitHub Exploit DB Packet Storm
320279 - - - An issue in INATRONIC com.inatronic.bmw 2.7.1 allows a remote attacker to obtain sensitive information via the firmware update process. - CVE-2024-48793 2024-10-15 21:57 2024-10-15 Show GitHub Exploit DB Packet Storm
320280 - - - Cloudlog 2.6.15 allows Oqrs.php request_form SQL injection via station_id or callsign. - CVE-2024-48259 2024-10-15 21:57 2024-10-15 Show GitHub Exploit DB Packet Storm