Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 20, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
261	5.7	警告 Adjacent	nuxt	nuxt/webpack-builder nuxt/rspack-builder	Nuxtのnuxt/rspack-builder等の複数製品における危険なメソッドや機能の公開に関する脆弱性	CWE-749 危険なメソッドや機能の公開	CVE-2026-49993	2026-06-16 13:39	2026-06-12	Show	GitHub Exploit DB Packet Storm

262	9.8	緊急 Network	jmespath project	jmespath	JMESPathにおける複数の脆弱性	CWE-116 CWE-20 CWE-94	CVE-2026-54133	2026-06-16 13:39	2026-06-12	Show	GitHub Exploit DB Packet Storm

263	5.5	警告 Local		-	アップルのmacOSにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2025-24165	2026-06-16 13:39	2026-06-11	Show	GitHub Exploit DB Packet Storm

264	5.5	警告 Local		-	アップルのmacOSにおけるUNIX Symbolic Link のフォローに関する脆弱性	CWE-61 UNIX Symbolic Link のフォロー	CVE-2025-43278	2026-06-16 13:39	2026-06-11	Show	GitHub Exploit DB Packet Storm

265	5.5	警告 Local		-	アップルのmacOSにおけるログファイルからの情報漏えいに関する脆弱性	CWE-532 ログファイルからの情報漏えい	CVE-2025-46313	2026-06-16 13:39	2026-06-11	Show	GitHub Exploit DB Packet Storm

266	7.2	重要 Network	QNAP Systems	QuTS hero	QNAP SystemsのQuTS heroにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2025-62850	2026-06-16 13:39	2026-06-10	Show	GitHub Exploit DB Packet Storm

267	7.2	重要 Network	QNAP Systems	QuTS hero QNAP QTS	QNAP SystemsのQNAP QTS等の複数製品におけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2025-66273	2026-06-16 13:39	2026-06-10	Show	GitHub Exploit DB Packet Storm

268	7.2	重要 Network	QNAP Systems	QuTS hero QNAP QTS	QNAP SystemsのQNAP QTS等の複数製品におけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2025-66279	2026-06-16 13:39	2026-06-10	Show	GitHub Exploit DB Packet Storm

269	7.2	重要 Network	QNAP Systems	QuTS hero QNAP QTS	QNAP SystemsのQNAP QTS等の複数製品における複数の脆弱性	CWE-121 CWE-190	CVE-2025-66280	2026-06-16 13:39	2026-06-10	Show	GitHub Exploit DB Packet Storm

270	7.2	重要 Network	QNAP Systems	QuTS hero QNAP QTS	QNAP SystemsのQNAP QTS等の複数製品におけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2025-66281	2026-06-16 13:39	2026-06-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 21, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
190991	5.3	MEDIUM Network	valine.js	valine	Valine 1.4.14 allows remote attackers to cause a denial of service (application outage) by supplying a ua (aka User-Agent) value that only specifies the product and version.	NVD-CWE-noinfo	CVE-2021-34801	2024-11-21 15:11	2021-06-17	Show	GitHub Exploit DB Packet Storm

190992	8.2	HIGH Network	wago	750-8100_firmware 750-8101_firmware 750-8101\/025-000_firmware 750-8102_firmware 750-8102\/025-000_firmware 750-8202_firmware 750-8202\/000-011_firmware 750-8202\/000-012_firmwar…	In WAGO I/O-Check Service in multiple products an unauthenticated remote attacker can send a specially crafted packet containing OS commands to provoke a denial of service and an limited out-of-bound…	-	CVE-2021-34567	2024-11-21 15:10	2022-11-10	Show	GitHub Exploit DB Packet Storm

190993	7.5	HIGH Network	opensc_project	opensc	Stack overflow vulnerability in OpenSC smart card middleware before 0.23 via crafted responses to APDUs.	CWE-787 Out-of-bounds Write	CVE-2021-34193	2024-11-21 15:10	2023-08-23	Show	GitHub Exploit DB Packet Storm

190994	6.1	MEDIUM Network	microsoft	edge_chromium	Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability	NVD-CWE-noinfo	CVE-2021-34506	2024-11-21 15:10	2023-07-1	Show	GitHub Exploit DB Packet Storm

190995	5.4	MEDIUM Network	microsoft	edge_chromium	Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability	NVD-CWE-noinfo	CVE-2021-34475	2024-11-21 15:10	2023-07-1	Show	GitHub Exploit DB Packet Storm

190996	6.3	MEDIUM Local	gnu	mailman	An issue was discovered in Mailman Core before 3.3.5. An attacker with access to the REST API could use timing attacks to determine the value of the configured REST API password and then make arbitra…	NVD-CWE-noinfo	CVE-2021-34337	2024-11-21 15:10	2023-04-16	Show	GitHub Exploit DB Packet Storm

190997	7.5	HIGH Network	online_book_store_project	online_book_store	SQL injection vulnerability in sourcecodester online-book-store 1.0 allows remote attackers to view sensitive information via the id paremeter in application URL.	CWE-89 SQL Injection	CVE-2021-34249	2024-11-21 15:10	2023-02-25	Show	GitHub Exploit DB Packet Storm

190998	7.5	HIGH Network	phoenixcontact	fl_mguard_dm	In Phoenix Contact: FL MGUARD DM version 1.12.0 and 1.13.0 access to the Apache web server being installed as part of the FL MGUARD DM on Microsoft Windows does not require login credentials even if …	NVD-CWE-noinfo	CVE-2021-34579	2024-11-21 15:10	2022-11-10	Show	GitHub Exploit DB Packet Storm

190999	6.5	MEDIUM Adjacent	kadenvodomery	picoflux_air_firmware	In the Kaden PICOFLUX AiR water meter an adversary can read the values through wireless M-Bus mode 5 with a hardcoded shared key while being adjacent to the device.	-	CVE-2021-34577	2024-11-21 15:10	2022-11-10	Show	GitHub Exploit DB Packet Storm

191000	9.8	CRITICAL Network	wago	750-8100_firmware 750-8101_firmware 750-8101\/025-000_firmware 750-8102_firmware 750-8102\/025-000_firmware 750-8202_firmware 750-8202\/000-011_firmware 750-8202\/000-012_firmwar…	In WAGO I/O-Check Service in multiple products an attacker can send a specially crafted packet containing OS commands to crash the diagnostic tool and write memory.	-	CVE-2021-34569	2024-11-21 15:10	2022-11-10	Show	GitHub Exploit DB Packet Storm