Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 22, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
451	8.8	重要 Network	オラクル	Oracle Project Portfolio Analysis	オラクルのOracle Project Portfolio Analysisにおける複数の脆弱性 New	CWE-269 CWE-287 CWE-306	CVE-2026-46962	2026-06-22 11:33	2026-06-17	Show	GitHub Exploit DB Packet Storm

452	7.2	重要 Network	オラクル	Oracle Financials for EMEA	オラクルのOracle Financials for EMEAにおけるアクセス制御に関する脆弱性 New	CWE-284 不適切なアクセス制御	CVE-2026-46969	2026-06-22 11:33	2026-06-17	Show	GitHub Exploit DB Packet Storm

453	7.2	重要 Network	オラクル	Oracle HR Intelligence	オラクルのOracle HR Intelligenceにおける権限管理に関する脆弱性 New	CWE-269 不適切な権限管理	CVE-2026-46970	2026-06-22 11:33	2026-06-17	Show	GitHub Exploit DB Packet Storm

454	7.5	重要 Network	オラクル	Oracle HR Intelligence	オラクルのOracle HR Intelligenceにおける複数の脆弱性 New	CWE-269 CWE-284	CVE-2026-46971	2026-06-22 11:33	2026-06-17	Show	GitHub Exploit DB Packet Storm

455	8.8	重要 Network	オラクル	Oracle Outsourced Manufacturing for Discrete Industries	オラクルのOracle Outsourced Manufacturing for Discrete Industriesにおける複数の脆弱性 New	CWE-269 CWE-287 CWE-306	CVE-2026-46972	2026-06-22 11:33	2026-06-17	Show	GitHub Exploit DB Packet Storm

456	8.8	重要 Network	オラクル	Oracle Outsourced Manufacturing for Discrete Industries	オラクルのOracle Outsourced Manufacturing for Discrete Industriesにおける複数の脆弱性 New	CWE-269 CWE-287 CWE-306	CVE-2026-46973	2026-06-22 11:33	2026-06-17	Show	GitHub Exploit DB Packet Storm

457	7.2	重要 Network	オラクル	Public Sector Payroll	オラクルのPublic Sector Payrollにおけるアクセス制御に関する脆弱性 New	CWE-284 不適切なアクセス制御	CVE-2026-46976	2026-06-22 11:33	2026-06-17	Show	GitHub Exploit DB Packet Storm

458	4.4	警告 Network	metal3	ip-address-manager	Metal3のip-address-managerにおける不要な特権による実行に関する脆弱性 New	CWE-250 不要な特権による実行	CVE-2026-47190	2026-06-22 11:32	2026-06-12	Show	GitHub Exploit DB Packet Storm

459	9.1	緊急 Network	i18next	i18next-fs-backend	i18nextのi18next-fs-backendにおけるオブジェクトプロトタイプ属性の不適切に制御された変更に関する脆弱性 New	CWE-1321 オブジェクトプロトタイプ属性の不適切に制御された変更 (プロトタイプの汚染)	CVE-2026-48713	2026-06-22 11:32	2026-06-15	Show	GitHub Exploit DB Packet Storm

460	9.1	緊急 Network	i18next	i18next-http-middleware	i18nextのi18next-http-middlewareにおけるオブジェクトプロトタイプ属性の不適切に制御された変更に関する脆弱性 New	CWE-1321 オブジェクトプロトタイプ属性の不適切に制御された変更 (プロトタイプの汚染)	CVE-2026-48714	2026-06-22 11:32	2026-06-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 22, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
190991	5.3	MEDIUM Network	valine.js	valine	Valine 1.4.14 allows remote attackers to cause a denial of service (application outage) by supplying a ua (aka User-Agent) value that only specifies the product and version.	NVD-CWE-noinfo	CVE-2021-34801	2024-11-21 15:11	2021-06-17	Show	GitHub Exploit DB Packet Storm

190992	8.2	HIGH Network	wago	750-8100_firmware 750-8101_firmware 750-8101\/025-000_firmware 750-8102_firmware 750-8102\/025-000_firmware 750-8202_firmware 750-8202\/000-011_firmware 750-8202\/000-012_firmwar…	In WAGO I/O-Check Service in multiple products an unauthenticated remote attacker can send a specially crafted packet containing OS commands to provoke a denial of service and an limited out-of-bound…	-	CVE-2021-34567	2024-11-21 15:10	2022-11-10	Show	GitHub Exploit DB Packet Storm

190993	7.5	HIGH Network	opensc_project	opensc	Stack overflow vulnerability in OpenSC smart card middleware before 0.23 via crafted responses to APDUs.	CWE-787 Out-of-bounds Write	CVE-2021-34193	2024-11-21 15:10	2023-08-23	Show	GitHub Exploit DB Packet Storm

190994	6.1	MEDIUM Network	microsoft	edge_chromium	Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability	NVD-CWE-noinfo	CVE-2021-34506	2024-11-21 15:10	2023-07-1	Show	GitHub Exploit DB Packet Storm

190995	5.4	MEDIUM Network	microsoft	edge_chromium	Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability	NVD-CWE-noinfo	CVE-2021-34475	2024-11-21 15:10	2023-07-1	Show	GitHub Exploit DB Packet Storm

190996	6.3	MEDIUM Local	gnu	mailman	An issue was discovered in Mailman Core before 3.3.5. An attacker with access to the REST API could use timing attacks to determine the value of the configured REST API password and then make arbitra…	NVD-CWE-noinfo	CVE-2021-34337	2024-11-21 15:10	2023-04-16	Show	GitHub Exploit DB Packet Storm

190997	7.5	HIGH Network	online_book_store_project	online_book_store	SQL injection vulnerability in sourcecodester online-book-store 1.0 allows remote attackers to view sensitive information via the id paremeter in application URL.	CWE-89 SQL Injection	CVE-2021-34249	2024-11-21 15:10	2023-02-25	Show	GitHub Exploit DB Packet Storm

190998	7.5	HIGH Network	phoenixcontact	fl_mguard_dm	In Phoenix Contact: FL MGUARD DM version 1.12.0 and 1.13.0 access to the Apache web server being installed as part of the FL MGUARD DM on Microsoft Windows does not require login credentials even if …	NVD-CWE-noinfo	CVE-2021-34579	2024-11-21 15:10	2022-11-10	Show	GitHub Exploit DB Packet Storm

190999	6.5	MEDIUM Adjacent	kadenvodomery	picoflux_air_firmware	In the Kaden PICOFLUX AiR water meter an adversary can read the values through wireless M-Bus mode 5 with a hardcoded shared key while being adjacent to the device.	-	CVE-2021-34577	2024-11-21 15:10	2022-11-10	Show	GitHub Exploit DB Packet Storm

191000	9.8	CRITICAL Network	wago	750-8100_firmware 750-8101_firmware 750-8101\/025-000_firmware 750-8102_firmware 750-8102\/025-000_firmware 750-8202_firmware 750-8202\/000-011_firmware 750-8202\/000-012_firmwar…	In WAGO I/O-Check Service in multiple products an attacker can send a specially crafted packet containing OS commands to crash the diagnostic tool and write memory.	-	CVE-2021-34569	2024-11-21 15:10	2022-11-10	Show	GitHub Exploit DB Packet Storm