Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 19, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
281 5.7 警告
Network 		Splunk Splunk
splunk cloud platform 		SplunkのSplunk等の複数製品における入力確認に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2026-20256 2026-06-16 13:38 2026-06-10 Show GitHub Exploit DB Packet Storm
282 5.7 警告
Network 		Splunk Splunk
splunk cloud platform 		SplunkのSplunk等の複数製品における入力確認に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2026-20257 2026-06-16 13:38 2026-06-10 Show GitHub Exploit DB Packet Storm
283 5.4 警告
Network 		Splunk Splunk
splunk cloud platform 		SplunkのSplunk等の複数製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-20258 2026-06-16 13:38 2026-06-10 Show GitHub Exploit DB Packet Storm
284 7.2 重要
Network 		QNAP Systems QuTS hero
QNAP QTS 		QNAP SystemsのQNAP QTS等の複数製品におけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-22893 2026-06-16 13:38 2026-06-10 Show GitHub Exploit DB Packet Storm
285 7.2 重要
Network 		QNAP Systems QuTS hero
QNAP QTS 		QNAP SystemsのQNAP QTS等の複数製品におけるNULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2026-24716 2026-06-16 13:38 2026-06-10 Show GitHub Exploit DB Packet Storm
286 7.2 重要
Network 		QNAP Systems QuTS hero
QNAP QTS 		QNAP SystemsのQNAP QTS等の複数製品におけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-24719 2026-06-16 13:38 2026-06-10 Show GitHub Exploit DB Packet Storm
287 5.3 警告
Network 		NAVTOR AS NavBox Firmware NAVTOR ASのNavBox Firmwareにおけるエラーメッセージによる情報漏えいに関する脆弱性 CWE-209
エラーメッセージによる情報漏えい 		CVE-2026-2752 2026-06-16 13:38 2026-03-6 Show GitHub Exploit DB Packet Storm
288 7.5 重要
Network 		OpenSSL Project OpenSSL OpenSSL ProjectのOpenSSLにおける境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2026-34180 2026-06-16 13:38 2026-06-9 Show GitHub Exploit DB Packet Storm
289 7.4 重要
Network 		OpenSSL Project OpenSSL OpenSSL ProjectのOpenSSLにおけるデータの整合性検証不備に関する脆弱性 CWE-354
データの整合性検証不備 		CVE-2026-34181 2026-06-16 13:38 2026-06-9 Show GitHub Exploit DB Packet Storm
290 9.1 緊急
Network 		OpenSSL Project OpenSSL OpenSSL ProjectのOpenSSLにおけるデータの整合性検証不備に関する脆弱性 CWE-354
データの整合性検証不備 		CVE-2026-34182 2026-06-16 13:38 2026-06-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 19, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
320141 8.8 HIGH
Network 		thimpress wp_events_manager The WP Events Manager plugin for WordPress is vulnerable to time-based SQL Injection via the ‘order’ parameter in all versions up to, and including, 2.1.11 due to insufficient escaping on the user su… CWE-89
SQL Injection 		CVE-2024-7717 2024-09-20 09:08 2024-08-31 Show GitHub Exploit DB Packet Storm
320142 5.3 MEDIUM
Network 		wpcerber cerber_security_antispam_\&_malware_scan The WP Cerber Security plugin for WordPress is vulnerable to IP Protection bypass in versions up to, and including 9.4 due to the plugin improperly checking for a visitor's IP address. This makes it … NVD-CWE-noinfo
CVE-2022-4100 2024-09-20 09:08 2024-08-31 Show GitHub Exploit DB Packet Storm
320143 5.3 MEDIUM
Network 		youtag ip-vault-wp-firewall The IP Vault – WP Firewall plugin for WordPress is vulnerable to IP Address Spoofing in versions up to, and including, 1.1. This is due to insufficient restrictions on where the IP Address informatio… NVD-CWE-Other
CVE-2022-4536 2024-09-20 09:04 2024-08-31 Show GitHub Exploit DB Packet Storm
320144 6.3 MEDIUM
Network 		microsoft edge_chromium Microsoft Edge (HTML-based) Memory Corruption Vulnerability CWE-787
 Out-of-bounds Write 		CVE-2024-38207 2024-09-20 07:15 2024-08-24 Show GitHub Exploit DB Packet Storm
320145 7.8 HIGH
Local 		microsoft edge_chromium Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability CWE-125
Out-of-bounds Read 		CVE-2024-38210 2024-09-20 07:15 2024-08-23 Show GitHub Exploit DB Packet Storm
320146 7.8 HIGH
Local 		microsoft edge_chromium Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability CWE-843
Type Confusion 		CVE-2024-38209 2024-09-20 07:15 2024-08-23 Show GitHub Exploit DB Packet Storm
320147 6.1 MEDIUM
Network 		microsoft edge Microsoft Edge for Android Spoofing Vulnerability CWE-79
Cross-site Scripting 		CVE-2024-38208 2024-09-20 07:15 2024-08-23 Show GitHub Exploit DB Packet Storm
320148 5.4 MEDIUM
Network 		wpbeaveraddons powerpack_lite_for_beaver_builder The Beaver Builder – WordPress Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘type’ parameter in all versions up to, and including, 2.8.3.5 due to insufficien… CWE-79
Cross-site Scripting 		CVE-2024-7895 2024-09-20 07:13 2024-08-29 Show GitHub Exploit DB Packet Storm
320149 5.4 MEDIUM
Network 		funnelkit funnel_builder The FunnelKit Funnel Builder Pro plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'allow_iframe_tag_in_post' function which uses the 'wp_kses_allowed_html' filter to globally… CWE-79
Cross-site Scripting 		CVE-2024-1056 2024-09-20 07:06 2024-08-29 Show GitHub Exploit DB Packet Storm
320150 9.8 CRITICAL
Network 		geeeeeeeek dingfanzu A vulnerability was found in dingfanzu CMS up to 29d67d9044f6f93378e6eb6ff92272217ff7225c. It has been rated as critical. Affected by this issue is some unknown functionality of the file /ajax/chpwd.… CWE-89
SQL Injection 		CVE-2024-8302 2024-09-20 06:55 2024-08-29 Show GitHub Exploit DB Packet Storm