Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 28, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
651 8.4 重要
Network 		オラクル Oracle WebCenter Content オラクルのOracle WebCenter Contentにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-46788 2026-06-22 11:54 2026-06-17 Show GitHub Exploit DB Packet Storm
652 9.6 緊急
Network 		オラクル Oracle WebCenter Content オラクルのOracle WebCenter Contentにおける重要な機能に対する認証の欠如に関する脆弱性 CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2026-46789 2026-06-22 11:54 2026-06-17 Show GitHub Exploit DB Packet Storm
653 5.3 警告
Network 		オラクル Oracle WebCenter Content オラクルのOracle WebCenter Contentにおける情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2026-46790 2026-06-22 11:54 2026-06-17 Show GitHub Exploit DB Packet Storm
654 7.5 重要
Network 		オラクル Oracle WebCenter Content オラクルのOracle WebCenter Contentにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-46791 2026-06-22 11:54 2026-06-17 Show GitHub Exploit DB Packet Storm
655 9.9 緊急
Network 		オラクル Oracle Identity Manager Connector オラクルのOracle Identity Manager Connectorにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-46792 2026-06-22 11:54 2026-06-17 Show GitHub Exploit DB Packet Storm
656 9.9 緊急
Network 		オラクル Oracle Identity Manager Connector オラクルのOracle Identity Manager Connectorにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-46793 2026-06-22 11:54 2026-06-17 Show GitHub Exploit DB Packet Storm
657 9.9 緊急
Network 		オラクル Oracle Identity Manager Connector オラクルのOracle Identity Manager Connectorにおける権限管理に関する脆弱性 CWE-269
不適切な権限管理 		CVE-2026-46794 2026-06-22 11:54 2026-06-17 Show GitHub Exploit DB Packet Storm
658 9.3 緊急
Network 		オラクル Oracle WebCenter Content オラクルのOracle WebCenter Contentにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-46795 2026-06-22 11:54 2026-06-17 Show GitHub Exploit DB Packet Storm
659 8 重要
Network 		- オラクルのOracle WebCenter Sites Support Toolsにおけるオープンリダイレクトの脆弱性 CWE-601
CWE-noinfo
CVE-2026-46796 2026-06-22 11:54 2026-06-17 Show GitHub Exploit DB Packet Storm
660 9.8 緊急
Network 		- オラクルのOracle WebCenter Sites Support Toolsにおけるアクセス制御に関する脆弱性 CWE-284
CWE-noinfo
CVE-2026-46797 2026-06-22 11:54 2026-06-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 28, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
191251 4.3 MEDIUM
Network 		sap business_one SAP Business One version - 10, due to improper input validation, allows an authenticated User to gain access to directory and view the contents of index in the directory, which would otherwise be res… CWE-22
Path Traversal 		CVE-2021-37532 2024-11-21 15:15 2021-09-14 Show GitHub Exploit DB Packet Storm
191252 8.8 HIGH
Network 		sap netweaver_knowledge_management_xml_forms SAP NetWeaver Knowledge Management XML Forms versions - 7.10, 7.11, 7.30, 7.31, 7.40, 7.50, contains an XSLT vulnerability which allows a non-administrative authenticated attacker to craft a maliciou… CWE-78
OS Command  		CVE-2021-37531 2024-11-21 15:15 2021-09-14 Show GitHub Exploit DB Packet Storm
191253 9.8 CRITICAL
Network 		zohocorp manageengine_adselfservice_plus Zoho ManageEngine ADSelfService Plus 6111 and prior is vulnerable to SQL Injection while linking the databases. CWE-89
SQL Injection 		CVE-2021-37422 2024-11-21 15:15 2021-09-11 Show GitHub Exploit DB Packet Storm
191254 9.8 CRITICAL
Network 		zohocorp manageengine_adselfservice_plus Zoho ManageEngine ADSelfService Plus 6111 and prior is vulnerable to linked applications takeover. NVD-CWE-noinfo
CVE-2021-37423 2024-11-21 15:15 2021-09-11 Show GitHub Exploit DB Packet Storm
191255 7.5 HIGH
Network 		zohocorp manageengine_desktop_central Zoho ManageEngine DesktopCentral before 10.0.709 allows anyone to get a valid user's APIKEY without authentication. CWE-287
Improper Authentication 		CVE-2021-37414 2024-11-21 15:15 2021-09-11 Show GitHub Exploit DB Packet Storm
191256 9.8 CRITICAL
Network 		apache dubbo The Dubbo Provider will check the incoming request and the corresponding serialization type of this request meet the configuration set by the server. But there's an exception that the attacker can us… CWE-502
 Deserialization of Untrusted Data 		CVE-2021-37579 2024-11-21 15:15 2021-09-9 Show GitHub Exploit DB Packet Storm
191257 5.3 MEDIUM
Network 		nextcloud richdocuments Nextcloud Richdocuments is an open source collaborative office suite. In affected versions there is a lack of rate limiting on the Richdocuments OCS endpoint. This may have allowed an attacker to enu… CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2021-37629 2024-11-21 15:15 2021-09-8 Show GitHub Exploit DB Packet Storm
191258 7.5 HIGH
Network 		nextcloud richdocuments Nextcloud Richdocuments is an open source collaborative office suite. In affected versions the File Drop features ("Upload Only" public link shares in Nextcloud) can be bypassed using the Nextcloud R… CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2021-37628 2024-11-21 15:15 2021-09-8 Show GitHub Exploit DB Packet Storm
191259 6.5 MEDIUM
Network 		nextcloud deck Deck is an open source kanban style organization tool aimed at personal planning and project organization for teams integrated with Nextcloud. In affected versions the Deck application didn't properl… CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2021-37631 2024-11-21 15:15 2021-09-8 Show GitHub Exploit DB Packet Storm
191260 6.5 MEDIUM
Network 		nextcloud circles Nextcloud Circles is an open source social network built for the nextcloud ecosystem. In affected versions the Nextcloud Circles application allowed any user to join any "Secret Circle" without appro… CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2021-37630 2024-11-21 15:15 2021-09-8 Show GitHub Exploit DB Packet Storm