Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 27, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
621	7.8	重要 Local	マイクロソフト	Microsoft Office 2021 Long Term Servicing Channel Edition Microsoft Office 365 Microsoft Office 2024 Long-Term Servicing Ch…	Microsoft Office のリモートコードが実行される脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-45475	2026-06-22 11:56	2026-06-9	Show	GitHub Exploit DB Packet Storm

622	5.4	警告 Network	マイクロソフト	Microsoft SharePoint Server	Microsoft Office Project Server のなりすましの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-45483	2026-06-22 11:56	2026-06-9	Show	GitHub Exploit DB Packet Storm

623	7.8	重要 Local	マイクロソフト	.NET	.NET SDK の特権昇格の脆弱性	CWE-285 CWE-863	CVE-2026-45490	2026-06-22 11:56	2026-06-9	Show	GitHub Exploit DB Packet Storm

624	5.5	警告 Local	マイクロソフト	.NET	.NET の改ざんの脆弱性	CWE-59 リンク解釈の問題	CVE-2026-45491	2026-06-22 11:56	2026-06-9	Show	GitHub Exploit DB Packet Storm

625	6.1	警告 Network	マイクロソフト	Microsoft Exchange Server Subscription Edition (SE) Microsoft Exchange Server	Microsoft Exchange Server のなりすましの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-45500	2026-06-22 11:56	2026-06-9	Show	GitHub Exploit DB Packet Storm

626	8.1	重要 Network	マイクロソフト	Microsoft Exchange Server Subscription Edition (SE) Microsoft Exchange Server	Microsoft Exchange Server のリモートでコードが実行される脆弱性	CWE-94 コード・インジェクション	CVE-2026-45583	2026-06-22 11:56	2026-06-9	Show	GitHub Exploit DB Packet Storm

627	7.5	重要 Network	マイクロソフト	Microsoft Visual Studio 2026 .NET ASP.NET Core	ASP.NET Core のサービス拒否の脆弱性	CWE-400 CWE-noinfo	CVE-2026-45591	2026-06-22 11:56	2026-06-9	Show	GitHub Exploit DB Packet Storm

628	7.5	重要 Network	マイクロソフト	Microsoft Windows 11 26h1 Microsoft Windows Server 2022 Microsoft Windows 10 22h2 Microsoft Windows 10 1607 Microsoft Wind…	Windows リモートデスクトッププロトコル (RDP) の情報漏えいの脆弱性	CWE-125 境界外読み取り	CVE-2026-45639	2026-06-22 11:56	2026-06-9	Show	GitHub Exploit DB Packet Storm

629	7.8	重要 Local	マイクロソフト	Microsoft Office 2021 Long Term Servicing Channel Edition Microsoft Office 365 Microsoft Office 2024 Long-Term Servicing Ch…	Microsoft Office のリモートコードが実行される脆弱性	CWE-787 CWE-822	CVE-2026-45645	2026-06-22 11:56	2026-06-9	Show	GitHub Exploit DB Packet Storm

630	7	重要 Local	マイクロソフト	Microsoft Defender for Endpoint	Microsoft Defender for Endpoint for Mac の特権の昇格の脆弱性	CWE-367 Time-of-check Time-of-use (TOCTOU) 競合状態	CVE-2026-45647	2026-06-22 11:55	2026-06-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 27, 2026, 4:35 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
190771	4.4	MEDIUM Local	cpanel	cpanel	In cPanel before 98.0.1, /scripts/cpan_config performs unsafe operations on files (SEC-589).	NVD-CWE-noinfo	CVE-2021-38586	2024-11-21 15:17	2021-08-12	Show	GitHub Exploit DB Packet Storm

190772	7.2	HIGH Network	cpanel	cpanel	The WHM Locale Upload feature in cPanel before 98.0.1 allows unserialization attacks (SEC-585).	CWE-502 Deserialization of Untrusted Data	CVE-2021-38585	2024-11-21 15:17	2021-08-12	Show	GitHub Exploit DB Packet Storm

190773	7.2	HIGH Network	cpanel	cpanel	The WHM Locale Upload feature in cPanel before 98.0.1 allows XXE attacks (SEC-585).	CWE-611 XXE	CVE-2021-38584	2024-11-21 15:17	2021-08-12	Show	GitHub Exploit DB Packet Storm

190774	9.8	CRITICAL Network	foxitsoftware	foxit_reader phantompdf	An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4. It allows SQL Injection via crafted data at the end of a string.	CWE-89 SQL Injection	CVE-2021-38574	2024-11-21 15:17	2021-08-12	Show	GitHub Exploit DB Packet Storm

190775	9.8	CRITICAL Network	foxitsoftware	foxit_reader phantompdf	An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4. It allows writing to arbitrary files because a CombineFiles pathname is not validated.	NVD-CWE-noinfo	CVE-2021-38573	2024-11-21 15:17	2021-08-12	Show	GitHub Exploit DB Packet Storm

190776	9.8	CRITICAL Network	foxitsoftware	foxit_reader phantompdf	An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4. It allows writing to arbitrary files because the extractPages pathname is not validated.	NVD-CWE-noinfo	CVE-2021-38572	2024-11-21 15:17	2021-08-12	Show	GitHub Exploit DB Packet Storm

190777	7.8	HIGH Local	foxitsoftware	foxit_reader phantompdf	An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4. It allows DLL hijacking, aka CNVD-C-2021-68000 and CNVD-C-2021-68502.	CWE-427 Uncontrolled Search Path Element	CVE-2021-38571	2024-11-21 15:17	2021-08-12	Show	GitHub Exploit DB Packet Storm

190778	9.1	CRITICAL Network	foxitsoftware	foxit_reader phantompdf	An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4. It allows attackers to delete arbitrary files (during uninstallation) via a symlink.	CWE-59 Link Following	CVE-2021-38570	2024-11-21 15:17	2021-08-12	Show	GitHub Exploit DB Packet Storm

190779	7.5	HIGH Network	foxitsoftware	foxit_reader phantompdf	An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4. It allows stack consumption via recursive function calls during the handling of XFA forms or link objects.	CWE-674 Uncontrolled Recursion	CVE-2021-38569	2024-11-21 15:17	2021-08-12	Show	GitHub Exploit DB Packet Storm

190780	9.8	CRITICAL Network	foxitsoftware	foxit_reader phantompdf	An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4. It allows memory corruption during conversion of a PDF document to a different document format.	CWE-787 Out-of-bounds Write	CVE-2021-38568	2024-11-21 15:17	2021-08-12	Show	GitHub Exploit DB Packet Storm