Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 17, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
331 5.4 警告
Network 		アドビシステムズ Adobe ColdFusion アドビのAdobe ColdFusionにおけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-47933 2026-06-16 13:36 2026-06-9 Show GitHub Exploit DB Packet Storm
332 7.4 重要
Network 		アドビシステムズ Adobe ColdFusion アドビのAdobe ColdFusionにおけるXML 外部エンティティの脆弱性 New CWE-611
XML 外部エンティティ参照の不適切な制限 		CVE-2026-47960 2026-06-16 13:36 2026-06-9 Show GitHub Exploit DB Packet Storm
333 6.5 警告
Network 		ERLANG Erlang/ssh
Erlang/OTP 		ERLANGのErlang/OTP等の複数製品における情報漏えいに関する脆弱性 New CWE-200
情報漏えい 		CVE-2026-48855 2026-06-16 13:36 2026-06-10 Show GitHub Exploit DB Packet Storm
334 6.5 警告
Network 		ERLANG Erlang/OTP
Erlang/Inets (Inets) 		ERLANGのErlang/Inets (Inets)等の複数製品におけるオープンリダイレクトの脆弱性 New CWE-601
オープンリダイレクト 		CVE-2026-48856 2026-06-16 13:36 2026-06-10 Show GitHub Exploit DB Packet Storm
335 5.3 警告
Network 		ERLANG Erlang/ssh
Erlang/OTP 		ERLANGのErlang/OTP等の複数製品におけるタイミングの違いに起因する情報漏えいに関する脆弱性 New CWE-208
タイミングの違いに起因する情報漏えい 		CVE-2026-48859 2026-06-16 13:36 2026-06-10 Show GitHub Exploit DB Packet Storm
336 6.5 警告
Network 		ERLANG Erlang/SSL (Erlang SSL)
Erlang/OTP 		ERLANGのErlang/OTP等の複数製品における複数の脆弱性 New CWE-1025
CWE-863
CVE-2026-48860 2026-06-16 13:36 2026-06-10 Show GitHub Exploit DB Packet Storm
337 5.3 警告
Network 		guzzlephp psr-7 guzzlephpのpsr-7における複数の脆弱性 New CWE-20
CWE-918
CWE-918
CVE-2026-48998 2026-06-16 13:36 2026-06-11 Show GitHub Exploit DB Packet Storm
338 5.3 警告
Network 		guzzlephp psr-7 guzzlephpのpsr-7における複数の脆弱性 New CWE-113
CWE-20
CWE-93
CVE-2026-49214 2026-06-16 13:36 2026-06-11 Show GitHub Exploit DB Packet Storm
339 9.8 緊急
Network 		Apache Software Foundation Apache CXF Apache Software FoundationのApache CXFにおけるXML 外部エンティティの脆弱性 New CWE-611
XML 外部エンティティ参照の不適切な制限 		CVE-2026-49875 2026-06-16 13:36 2026-06-12 Show GitHub Exploit DB Packet Storm
340 8.2 重要
Network 		KARASZI Istvan Tmp KARASZI IstvanのTmpにおける複数の脆弱性 New CWE-20
CWE-22
CVE-2026-49982 2026-06-16 13:36 2026-06-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 17, 2026, 4:19 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
320001 - - - There exists a use after free vulnerability in Reverb. Reverb supports the VARIANT datatype, which is supposed to represent an arbitrary object in C++. When a tensor proto of type VARIANT is unpacked… - CVE-2024-8375 2024-09-20 21:30 2024-09-20 Show GitHub Exploit DB Packet Storm
320002 - - - Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Ece Software Electronic Ticket System allows Reflected XSS, Cross-Site Scripting (XSS).Thi… CWE-79
Cross-site Scripting 		CVE-2024-7785 2024-09-20 21:30 2024-09-19 Show GitHub Exploit DB Packet Storm
320003 - - - The grafana plugin SDK bundles build metadata into the binaries it compiles; this metadata includes the repository URI for the plugin being built, as retrieved by running `git remote get-url origin`.… - CVE-2024-8986 2024-09-20 21:30 2024-09-19 Show GitHub Exploit DB Packet Storm
320004 - - - langchain_experimental (aka LangChain Experimental) 0.1.17 through 0.3.0 for LangChain allows attackers to execute arbitrary code through sympy.sympify (which uses eval) in LLMSymbolicMathChain. LLMS… - CVE-2024-46946 2024-09-20 21:30 2024-09-19 Show GitHub Exploit DB Packet Storm
320005 - - - Any project that parses untrusted Protocol Buffers data containing an arbitrary number of nested groups / series of SGROUP tags can corrupted by exceeding the stack limit i.e. StackOverflow. Parsing … - CVE-2024-7254 2024-09-20 21:30 2024-09-19 Show GitHub Exploit DB Packet Storm
320006 - - - In Brave Android prior to v1.67.116, domains in the Brave Shields popup are elided from the right instead of the left, which may lead to domain confusion. - CVE-2024-37406 2024-09-20 21:30 2024-09-19 Show GitHub Exploit DB Packet Storm
320007 - - - Best House Rental Management System 1.0 contains an arbitrary file upload vulnerability in the save_settings() function of the file rental/admin_class.php. - CVE-2024-46377 2024-09-20 21:30 2024-09-19 Show GitHub Exploit DB Packet Storm
320008 - - - Best House Rental Management System 1.0 contains an arbitrary file upload vulnerability in the update_account() function of the file rental/admin_class.php. - CVE-2024-46376 2024-09-20 21:30 2024-09-19 Show GitHub Exploit DB Packet Storm
320009 - - - Best House Rental Management System 1.0 contains an arbitrary file upload vulnerability in the signup() function of the file rental/admin_class.php. - CVE-2024-46375 2024-09-20 21:30 2024-09-19 Show GitHub Exploit DB Packet Storm
320010 - - - Best House Rental Management System 1.0 contains a SQL injection vulnerability in the delete_category() function of the file rental/admin_class.php. - CVE-2024-46374 2024-09-20 21:30 2024-09-19 Show GitHub Exploit DB Packet Storm