Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3071	3.8	低 Local	opentelemetry	eBPF Instrumentation	opentelemetryのeBPF Instrumentationにおける複数の脆弱性	CWE-127 CWE-200	CVE-2026-45683	2026-06-5 10:50	2026-06-2	Show	GitHub Exploit DB Packet Storm

3072	5.3	警告 Local	opentelemetry	eBPF Instrumentation	opentelemetryのeBPF Instrumentationにおける複数の脆弱性	CWE-126 CWE-787	CVE-2026-45684	2026-06-5 10:50	2026-06-2	Show	GitHub Exploit DB Packet Storm

3073	7.5	重要 Network	opentelemetry	eBPF Instrumentation	opentelemetryのeBPF Instrumentationにおける複数の脆弱性	CWE-20 CWE-248 CWE-704	CVE-2026-45685	2026-06-5 10:50	2026-06-2	Show	GitHub Exploit DB Packet Storm

3074	7.5	重要 Network	opentelemetry	eBPF Instrumentation	opentelemetryのeBPF Instrumentationにおける整数オーバーフローの脆弱性	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2026-45686	2026-06-5 10:50	2026-06-2	Show	GitHub Exploit DB Packet Storm

3075	8.8	重要 Adjacent	TP-LINK Technologies	Archer C64 Firmware	TP-LINK TechnologiesのArcher C64 Firmwareにおける複数の脆弱性	CWE-288 CWE-306	CVE-2026-8697	2026-06-5 10:50	2026-05-28	Show	GitHub Exploit DB Packet Storm

3076	9.8	緊急 Network	Mirasvit	Full Page Cache Warmer	MirasvitのFull Page Cache Warmerにおける信頼できないデータのデシリアライゼーションに関する脆弱性	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2026-45247	2026-06-5 10:50	2026-05-26	Show	GitHub Exploit DB Packet Storm

3077	7.8	重要 Local	Google	Android	GoogleのAndroidにおける保護メカニズムの不具合に関する脆弱性	CWE-693 保護メカニズムの不具合	CVE-2025-48649	2026-06-5 10:50	2026-06-1	Show	GitHub Exploit DB Packet Storm

3078	7.8	重要 Local	Google	Android	GoogleのAndroidにおける権限管理に関する脆弱性	CWE-269 不適切な権限管理	CVE-2026-0009	2026-06-5 10:50	2026-06-1	Show	GitHub Exploit DB Packet Storm

3079	7.8	重要 Local	Google	Android	GoogleのAndroidにおけるレンダリングされたユーザインターフェースレイヤまたはフレームの不適切な制限に関する脆弱性	CWE-1021 レンダリングされたユーザインターフェースレイヤまたはフレームの不適切な制限	CVE-2026-0036	2026-06-5 10:50	2026-06-1	Show	GitHub Exploit DB Packet Storm

3080	7.8	重要 Local	Google	Android	GoogleのAndroidにおける保護メカニズムの不具合に関する脆弱性	CWE-693 保護メカニズムの不具合	CVE-2026-0045	2026-06-5 10:50	2026-06-1	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 28, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
319931	5.3	MEDIUM Network	gitlab	gitlab	An issue has been discovered in GitLab EE affecting all versions starting from 16.6 prior to 17.2.9, from 17.3 prior to 17.3.5, and from 17.4 prior to 17.4.2. It was possible for an unauthenticated a…	NVD-CWE-noinfo	CVE-2024-9596	2024-10-17 02:00	2024-10-10	Show	GitHub Exploit DB Packet Storm

319932	6.5	MEDIUM Network	gitlab	gitlab	An issue was discovered in GitLab CE/EE affecting all versions starting from 8.16 prior to 17.2.9, starting from 17.3 prior to 17.3.5, and starting from 17.4 prior to 17.4.2, which allows deploy keys…	CWE-863 Incorrect Authorization	CVE-2024-9623	2024-10-17 01:59	2024-10-10	Show	GitHub Exploit DB Packet Storm

319933	5.4	MEDIUM Network	jetbrains	youtrack	In JetBrains YouTrack before 2024.3.46677 improper access control allowed users with project update permission to delete applications via API	CWE-862 Missing Authorization	CVE-2024-48902	2024-10-17 01:57	2024-10-10	Show	GitHub Exploit DB Packet Storm

319934	9.8	CRITICAL Network	seur	seur	The SEUR plugin, in its versions prior to 2.5.11, is vulnerable to time-based SQL injection through the use of the ‘id_order’ parameter of the ‘/modules/seur/ajax/saveCodFee.php’ endpoint.	CWE-89 SQL Injection	CVE-2024-9201	2024-10-17 01:55	2024-10-10	Show	GitHub Exploit DB Packet Storm

319935	5.4	MEDIUM Network	gitlab	gitlab	A cross-site scripting issue has been discovered in GitLab affecting all versions starting from 17.1 prior 17.2.9, starting from 17.3 prior to 17.3.5, and starting from 17.4 prior to 17.4.2. When add…	CWE-79 Cross-site Scripting	CVE-2024-6530	2024-10-17 01:53	2024-10-10	Show	GitHub Exploit DB Packet Storm

319936	6.7	MEDIUM Local	openatom	openharmony	in OpenHarmony v4.1.0 allow a local attacker with high privileges arbitrary code execution in pre-installed apps through use after free.	CWE-416 Use After Free	CVE-2024-39831	2024-10-17 01:53	2024-10-8	Show	GitHub Exploit DB Packet Storm

319937	5.5	MEDIUM Local	openatom	openharmony	in OpenHarmony v4.1.0 and prior versions allow a local attacker cause information leak through out-of-bounds Read.	CWE-125 Out-of-bounds Read	CVE-2024-39806	2024-10-17 01:49	2024-10-8	Show	GitHub Exploit DB Packet Storm

319938	8.8	HIGH Network	dlink	dir-619l_firmware	A vulnerability was found in D-Link DIR-619L B1 2.06. It has been declared as critical. This vulnerability affects the function formEasySetupWWConfig of the file /goform/formEasySetupWWConfig. The ma…	CWE-120 Classic Buffer Overflow	CVE-2024-9782	2024-10-17 01:44	2024-10-10	Show	GitHub Exploit DB Packet Storm

319939	4.8	MEDIUM Network	wikimedia	apex	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in The Wikimedia Foundation Mediawiki - Apex skin allows Stored XSS.This issue affects Mediaw…	CWE-79 Cross-site Scripting	CVE-2024-47840	2024-10-17 01:44	2024-10-5	Show	GitHub Exploit DB Packet Storm

319940	8.8	HIGH Network	dlink	dir-619l_firmware	A vulnerability was found in D-Link DIR-619L B1 2.06. It has been rated as critical. This issue affects the function formLogDnsquery of the file /goform/formLogDnsquery. The manipulation of the argum…	CWE-120 Classic Buffer Overflow	CVE-2024-9783	2024-10-17 01:43	2024-10-10	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed