Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 24, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
4041 9.8 緊急
Network 		openwebui open webui openwebuiのopen webuiにおける複数の脆弱性 CWE-22
CWE-434
CVE-2026-44566 2026-05-21 10:51 2026-05-15 Show GitHub Exploit DB Packet Storm
4042 7.3 重要
Network 		openwebui open webui openwebuiのopen webuiにおける複数の脆弱性 CWE-602
CWE-863
CVE-2026-44567 2026-05-21 10:51 2026-05-15 Show GitHub Exploit DB Packet Storm
4043 7.1 重要
Network 		openwebui open webui openwebuiのopen webuiにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-44569 2026-05-21 10:51 2026-05-15 Show GitHub Exploit DB Packet Storm
4044 9.9 緊急
Network 		traefik traefik traefikにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-44774 2026-05-21 10:51 2026-05-15 Show GitHub Exploit DB Packet Storm
4045 6.5 警告
Network 		Apache Software Foundation Apache OFBiz Apache Software FoundationのApache OFBizにおける認可に関する脆弱性 CWE-285
不適切な認可 		CVE-2026-45187 2026-05-21 10:50 2026-05-19 Show GitHub Exploit DB Packet Storm
4046 5.4 警告
Network 		openwebui open webui openwebuiのopen webuiにおける動的に決定されたオブジェクト属性の不適切に制御された変更に関する脆弱性 CWE-915
動的に決定されたオブジェクト属性の不適切に制御された変更 		CVE-2026-45396 2026-05-21 10:50 2026-05-15 Show GitHub Exploit DB Packet Storm
4047 5.3 警告
Network 		openwebui open webui openwebuiのopen webuiにおける重要な機能に対する認証の欠如に関する脆弱性 CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2026-45397 2026-05-21 10:50 2026-05-15 Show GitHub Exploit DB Packet Storm
4048 7.5 重要
Network 		openwebui open webui openwebuiのopen webuiにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-45398 2026-05-21 10:50 2026-05-15 Show GitHub Exploit DB Packet Storm
4049 8.5 重要
Network 		openwebui open webui openwebuiのopen webuiにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-45400 2026-05-21 10:50 2026-05-15 Show GitHub Exploit DB Packet Storm
4050 8.5 重要
Network 		openwebui open webui openwebuiのopen webuiにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-45401 2026-05-21 10:50 2026-05-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 24, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
315721 6.1 MEDIUM
Network 		cisco firepower_management_center A vulnerability in the web-based management interface of Cisco Firepower Management Center (FMC) Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attac… CWE-79
Cross-site Scripting 		CVE-2024-20409 2024-11-6 01:11 2024-10-24 Show GitHub Exploit DB Packet Storm
315722 6.1 MEDIUM
Network 		cisco firepower_management_center A vulnerability in the web-based management interface of Cisco Firepower Management Center (FMC) Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attac… CWE-79
Cross-site Scripting 		CVE-2024-20410 2024-11-6 01:08 2024-10-24 Show GitHub Exploit DB Packet Storm
315723 5.3 MEDIUM
Network 		cisco firepower_management_center
firepower_threat_defense 		A vulnerability in the password change feature of Cisco Firepower Management Center (FMC) software could allow an unauthenticated, remote attacker to determine valid user names on an affected device.… NVD-CWE-Other
CVE-2024-20388 2024-11-6 01:07 2024-10-24 Show GitHub Exploit DB Packet Storm
315724 6.1 MEDIUM
Network 		cisco firepower_management_center A vulnerability in the web-based management interface of Cisco Firepower Management Center (FMC) Software could allow an unauthenticated, remote attacker to conduct a stored cross-site scripting (XSS… CWE-79
Cross-site Scripting 		CVE-2024-20386 2024-11-6 01:05 2024-10-24 Show GitHub Exploit DB Packet Storm
315725 - - - D-Link DIR_823G 1.0.2B05 was discovered to contain a command injection vulnerability via the HostName parameter in the SetWanSettings function. This vulnerability allows attackers to execute arbitrar… - CVE-2024-51024 2024-11-6 01:04 2024-11-6 Show GitHub Exploit DB Packet Storm
315726 - - - D-Link DIR_823G 1.0.2B05 was discovered to contain a command injection vulnerability via the Address parameter in the SetNetworkTomographySettings function. This vulnerability allows attackers to exe… - CVE-2024-51023 2024-11-6 01:04 2024-11-6 Show GitHub Exploit DB Packet Storm
315727 - - - Zope AccessControl provides a general security framework for use in Zope. In affected versions anonymous users can delete the user data maintained by an `AccessControl.userfolder.UserFolder` which ma… CWE-284
Improper Access Control 		CVE-2024-51734 2024-11-6 01:04 2024-11-5 Show GitHub Exploit DB Packet Storm
315728 - - - Meshtastic firmware is a device firmware for the Meshtastic project. The Meshtastic firmware does not check for packets claiming to be from the special broadcast address (0xFFFFFFFF) which could resu… CWE-138
CWE-159
 Improper Neutralization of Special Elements
 Improper Handling of Invalid Use of Special Elements 		CVE-2024-51500 2024-11-6 01:04 2024-11-5 Show GitHub Exploit DB Packet Storm
315729 - - - gaizhenbiao/chuanhuchatgpt project, version <=20240802 is vulnerable to stored Cross-Site Scripting (XSS) in WebSocket session transmission. An attacker can inject malicious content into a WebSocket … - CVE-2024-48059 2024-11-6 01:04 2024-11-5 Show GitHub Exploit DB Packet Storm
315730 - - - golang-jwt is a Go implementation of JSON Web Tokens. Unclear documentation of the error behavior in `ParseWithClaims` can lead to situation where users are potentially not checking errors in the way… CWE-755
 Improper Handling of Exceptional Conditions 		CVE-2024-51744 2024-11-6 01:04 2024-11-5 Show GitHub Exploit DB Packet Storm