Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 15, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
631	5.3	警告 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける不変と仮定される Web パラメータの外部制御に関する脆弱性	CWE-472 不変と仮定される Web パラメータの外部制御	CVE-2026-11669	2026-06-11 16:13	2026-06-9	Show	GitHub Exploit DB Packet Storm

632	8.3	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2026-11672	2026-06-11 16:13	2026-06-9	Show	GitHub Exploit DB Packet Storm

633	8.3	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける入力確認に関する脆弱性	CWE-20 CWE-noinfo	CVE-2026-11676	2026-06-11 16:13	2026-06-9	Show	GitHub Exploit DB Packet Storm

634	8.8	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-11681	2026-06-11 16:13	2026-06-9	Show	GitHub Exploit DB Packet Storm

635	8.3	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける入力確認に関する脆弱性	CWE-20 CWE-noinfo	CVE-2026-11682	2026-06-11 16:13	2026-06-9	Show	GitHub Exploit DB Packet Storm

636	8.1	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける入力確認に関する脆弱性	CWE-20 CWE-noinfo	CVE-2026-11689	2026-06-11 16:13	2026-06-9	Show	GitHub Exploit DB Packet Storm

637	7.8	重要 Local	シスコシステムズ	Cisco SD-WAN vSmart Controller	シスコシステムズのCisco Catalyst SD-WAN Manager等の複数製品におけるエンコードおよびエスケープに関する脆弱性	CWE-116 不適切なエンコード、または出力のエスケープ	CVE-2026-20245	2026-06-11 16:13	2026-06-4	Show	GitHub Exploit DB Packet Storm

638	6.1	警告 Network	Apache Software Foundation	answer	Apache Software Foundationのanswerにおける代替 XSS 構文の不適切な無効化に関する脆弱性	CWE-87 代替 XSS 構文の不適切な無効化	CVE-2026-25688	2026-06-11 16:12	2026-06-9	Show	GitHub Exploit DB Packet Storm

639	6.1	警告 Network	Apache Software Foundation	answer	Apache Software Foundationのanswerにおける認可されていない行為者への個人情報の漏えいに関する脆弱性	CWE-359 認可されていないアクターへの個人情報の漏えい	CVE-2026-25699	2026-06-11 16:12	2026-06-9	Show	GitHub Exploit DB Packet Storm

640	6.5	警告 Network	Apache Software Foundation	answer	Apache Software Foundationのanswerにおける危険なタイプのファイルの無制限アップロードに関する脆弱性	CWE-434 危険なタイプのファイルの無制限アップロード	CVE-2026-33582	2026-06-11 16:12	2026-06-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
319771	7.5	HIGH Network	utarit	soliclub	Authorization Bypass Through User-Controlled Key vulnerability in Utarit Information SoliClub allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects SoliClub: befo…	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2024-3306	2024-09-19 23:43	2024-09-12	Show	GitHub Exploit DB Packet Storm

319772	5.3	MEDIUM Network	emilyploszaj	emi	EMI v.1.1.10 and before, fixed in v.1.1.11, contains an Improper Validation of Specified Index, Position, or Offset in Input vulnerability. The specific issue is a failure to validate slot index and …	CWE-129 Improper Validation of Array Index	CVE-2024-41564	2024-09-19 23:40	2024-08-29	Show	GitHub Exploit DB Packet Storm

319773	8.8	HIGH Network	zohocorp	manageengine_pam360 manageengine_password_manager_pro	Zohocorp ManageEngine Password Manager Pro versions before 12431 and ManageEngine PAM360 versions before 7001 are affected by authenticated SQL Injection vulnerability via a global search option.	CWE-89 SQL Injection	CVE-2024-5546	2024-09-19 23:39	2024-08-28	Show	GitHub Exploit DB Packet Storm

319774	5.4	MEDIUM Network	connx	esp_hr_management	Improper Neutralization of Input During Web Page Generation vulnerability in "Update of Personal Details" form in ConnX ESP HR Management allows Stored XSS attack. An attacker might inject a script t…	CWE-79 Cross-site Scripting	CVE-2024-7269	2024-09-19 23:37	2024-08-28	Show	GitHub Exploit DB Packet Storm

319775	7.5	HIGH Network	rockwellautomation	compactlogix_5380_firmware compact_guardlogix_5380_sil_2_firmware compact_guardlogix_5380_sil_3_firmware compactlogix_5480_firmware controllogix_5580_firmware guardlogix_5580_firmware<…	A denial-of-service vulnerability exists in the Rockwell Automation affected products when specially crafted packets are sent to the CIP Security Object. If exploited the device will become unavailab…	NVD-CWE-noinfo	CVE-2024-6077	2024-09-19 23:31	2024-09-13	Show	GitHub Exploit DB Packet Storm

319776	9.8	CRITICAL Network	soplanning	soplanning	A unauthenticated Remote Code Execution (RCE) vulnerability is found in the SO Planning online planning tool. If the public view setting is enabled, a attacker can upload a PHP-file that will be avai…	CWE-367 Time-of-check Time-of-use (TOCTOU) Race Condition	CVE-2024-27114	2024-09-19 23:27	2024-09-11	Show	GitHub Exploit DB Packet Storm

319777	6.1	MEDIUM Network	microfocus	edirectory	Possible Improper Neutralization of Input During Web Page Generation Vulnerability in eDirectory has been discovered in OpenText™ eDirectory 9.2.3.0000.	CWE-79 Cross-site Scripting	CVE-2021-22503	2024-09-19 23:25	2024-09-12	Show	GitHub Exploit DB Packet Storm

319778	9.1	CRITICAL Network	microfocus	edirectory	Possible Insertion of Sensitive Information into Log File Vulnerability in eDirectory has been discovered in OpenText™ eDirectory 9.2.4.0000.	CWE-532 Inclusion of Sensitive Information in Log Files	CVE-2021-22533	2024-09-19 23:24	2024-09-12	Show	GitHub Exploit DB Packet Storm

319779	7.5	HIGH Network	microfocus	edirectory	Possible NLDAP Denial of Service attack Vulnerability in eDirectory has been discovered in OpenText™ eDirectory before 9.2.4.0000.	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2021-22532	2024-09-19 23:22	2024-09-12	Show	GitHub Exploit DB Packet Storm

319780	7.5	HIGH Network	cisco	smart_license_utility	A vulnerability in Cisco Smart Licensing Utility could allow an unauthenticated, remote attacker to access sensitive information. This vulnerability is due to excessive verbosity in a debug log fi…	CWE-532 Inclusion of Sensitive Information in Log Files	CVE-2024-20440	2024-09-19 22:42	2024-09-5	Show	GitHub Exploit DB Packet Storm