Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
651 8.4 重要
Network 		オラクル Oracle WebCenter Content オラクルのOracle WebCenter Contentにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-46788 2026-06-22 11:54 2026-06-17 Show GitHub Exploit DB Packet Storm
652 9.6 緊急
Network 		オラクル Oracle WebCenter Content オラクルのOracle WebCenter Contentにおける重要な機能に対する認証の欠如に関する脆弱性 CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2026-46789 2026-06-22 11:54 2026-06-17 Show GitHub Exploit DB Packet Storm
653 5.3 警告
Network 		オラクル Oracle WebCenter Content オラクルのOracle WebCenter Contentにおける情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2026-46790 2026-06-22 11:54 2026-06-17 Show GitHub Exploit DB Packet Storm
654 7.5 重要
Network 		オラクル Oracle WebCenter Content オラクルのOracle WebCenter Contentにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-46791 2026-06-22 11:54 2026-06-17 Show GitHub Exploit DB Packet Storm
655 9.9 緊急
Network 		オラクル Oracle Identity Manager Connector オラクルのOracle Identity Manager Connectorにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-46792 2026-06-22 11:54 2026-06-17 Show GitHub Exploit DB Packet Storm
656 9.9 緊急
Network 		オラクル Oracle Identity Manager Connector オラクルのOracle Identity Manager Connectorにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-46793 2026-06-22 11:54 2026-06-17 Show GitHub Exploit DB Packet Storm
657 9.9 緊急
Network 		オラクル Oracle Identity Manager Connector オラクルのOracle Identity Manager Connectorにおける権限管理に関する脆弱性 CWE-269
不適切な権限管理 		CVE-2026-46794 2026-06-22 11:54 2026-06-17 Show GitHub Exploit DB Packet Storm
658 9.3 緊急
Network 		オラクル Oracle WebCenter Content オラクルのOracle WebCenter Contentにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-46795 2026-06-22 11:54 2026-06-17 Show GitHub Exploit DB Packet Storm
659 8 重要
Network 		- オラクルのOracle WebCenter Sites Support Toolsにおけるオープンリダイレクトの脆弱性 CWE-601
CWE-noinfo
CVE-2026-46796 2026-06-22 11:54 2026-06-17 Show GitHub Exploit DB Packet Storm
660 9.8 緊急
Network 		- オラクルのOracle WebCenter Sites Support Toolsにおけるアクセス制御に関する脆弱性 CWE-284
CWE-noinfo
CVE-2026-46797 2026-06-22 11:54 2026-06-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 28, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
191241 9.8 CRITICAL
Network 		zohocorp manageengine_admanager_plus Zoho ManageEngine ADManager Plus version 7110 and prior is vulnerable to unrestricted file upload, leading to remote code execution. CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2021-37761 2024-11-21 15:15 2021-09-28 Show GitHub Exploit DB Packet Storm
191242 9.8 CRITICAL
Network 		zohocorp manageengine_admanager_plus Zoho ManageEngine ADManager Plus before 7111 is vulnerable to unrestricted file which leads to Remote code execution. CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2021-37539 2024-11-21 15:15 2021-09-28 Show GitHub Exploit DB Packet Storm
191243 4.6 MEDIUM
Physics 		bag covid_certificate Certain Federal Office of Information Technology Systems and Telecommunication FOITT products are affected by improper handling of exceptional conditions. This affects COVID Certificate App IOS 2.2.0… CWE-755
 Improper Handling of Exceptional Conditions 		CVE-2021-37786 2024-11-21 15:15 2021-09-27 Show GitHub Exploit DB Packet Storm
191244 6.1 MEDIUM
Network 		mattermost mattermost Mattermost 5.38 and earlier fails to sufficiently sanitize clipboard contents, which allows a user-assisted attacker to inject arbitrary web script in product deployments that explicitly disable the … CWE-79
Cross-site Scripting 		CVE-2021-37860 2024-11-21 15:15 2021-09-23 Show GitHub Exploit DB Packet Storm
191245 8.8 HIGH
Network 		zohocorp manageengine_admanager_plus ManageEngine ADManager Plus before 7111 has Pre-authentication RCE vulnerabilities. CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2021-37741 2024-11-21 15:15 2021-09-21 Show GitHub Exploit DB Packet Storm
191246 9.8 CRITICAL
Network 		zohocorp manageengine_admanager_plus ManageEngine ADSelfService Plus before 6112 is vulnerable to domain user account takeover. NVD-CWE-noinfo
CVE-2021-37424 2024-11-21 15:15 2021-09-21 Show GitHub Exploit DB Packet Storm
191247 6.5 MEDIUM
Network 		zohocorp manageengine_admanager_plus Zoho ManageEngine ADSelfService Plus before 6112 is vulnerable to mail spoofing. CWE-306
Missing Authentication for Critical Function 		CVE-2021-37420 2024-11-21 15:15 2021-09-21 Show GitHub Exploit DB Packet Storm
191248 7.5 HIGH
Network 		zohocorp manageengine_admanager_plus Zoho ManageEngine ADSelfService Plus before 6112 is vulnerable to SSRF. CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2021-37419 2024-11-21 15:15 2021-09-21 Show GitHub Exploit DB Packet Storm
191249 6.1 MEDIUM
Network 		it-economics techradar The TechRadar app 1.1 for Confluence Server allows XSS via the Title field of a Radar. CWE-79
Cross-site Scripting 		CVE-2021-37412 2024-11-21 15:15 2021-09-16 Show GitHub Exploit DB Packet Storm
191250 9.8 CRITICAL
Network 		sap netweaver_application_server_java SAP NetWeaver Application Server Java (JMS Connector Service) - versions 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, does not perform necessary authorization checks for user privileges. CWE-862
 Missing Authorization 		CVE-2021-37535 2024-11-21 15:15 2021-09-14 Show GitHub Exploit DB Packet Storm