Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 28, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
701 7.2 重要
Network 		- オラクルのEnterprise Manager Base Platformにおけるアクセス制御に関する脆弱性 CWE-284
CWE-noinfo
CVE-2026-46868 2026-06-22 11:52 2026-06-17 Show GitHub Exploit DB Packet Storm
702 6.5 警告
Network 		オラクル MySQL Shell オラクルのMySQL Shellにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2026-46869 2026-06-22 11:52 2026-06-17 Show GitHub Exploit DB Packet Storm
703 9 緊急
Network 		- オラクルのEnterprise Manager Base Platformにおけるアクセス制御に関する脆弱性 CWE-284
CWE-noinfo
CVE-2026-46872 2026-06-22 11:52 2026-06-17 Show GitHub Exploit DB Packet Storm
704 7.5 重要
Local 		オラクル Oracle VM VirtualBox オラクルのOracle VM VirtualBoxにおける権限管理に関する脆弱性 CWE-269
不適切な権限管理 		CVE-2026-46873 2026-06-22 11:52 2026-06-17 Show GitHub Exploit DB Packet Storm
705 3.2
Local 		オラクル Oracle VM VirtualBox オラクルのOracle VM VirtualBoxにおける情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2026-46874 2026-06-22 11:52 2026-06-17 Show GitHub Exploit DB Packet Storm
706 9.1 緊急
Network 		- オラクルのEnterprise Manager Base Platformにおけるアクセス制御に関する脆弱性 CWE-284
CWE-noinfo
CVE-2026-46875 2026-06-22 11:52 2026-06-17 Show GitHub Exploit DB Packet Storm
707 6 警告
Local 		オラクル Oracle VM VirtualBox オラクルのOracle VM VirtualBoxにおける権限管理に関する脆弱性 CWE-269
不適切な権限管理 		CVE-2026-46877 2026-06-22 11:52 2026-06-17 Show GitHub Exploit DB Packet Storm
708 9.8 緊急
Network 		オラクル JD Edwards EnterpriseOne Tools オラクルのJD Edwards EnterpriseOne Toolsにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-46878 2026-06-22 11:52 2026-06-17 Show GitHub Exploit DB Packet Storm
709 9.8 緊急
Network 		オラクル JD Edwards EnterpriseOne Tools オラクルのJD Edwards EnterpriseOne Toolsにおける重要な機能に対する認証の欠如に関する脆弱性 CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2026-46879 2026-06-22 11:52 2026-06-17 Show GitHub Exploit DB Packet Storm
710 9.8 緊急
Network 		オラクル JD Edwards EnterpriseOne Tools オラクルのJD Edwards EnterpriseOne Toolsにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-46880 2026-06-22 11:51 2026-06-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 28, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
191241 9.8 CRITICAL
Network 		zohocorp manageengine_admanager_plus Zoho ManageEngine ADManager Plus version 7110 and prior is vulnerable to unrestricted file upload, leading to remote code execution. CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2021-37761 2024-11-21 15:15 2021-09-28 Show GitHub Exploit DB Packet Storm
191242 9.8 CRITICAL
Network 		zohocorp manageengine_admanager_plus Zoho ManageEngine ADManager Plus before 7111 is vulnerable to unrestricted file which leads to Remote code execution. CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2021-37539 2024-11-21 15:15 2021-09-28 Show GitHub Exploit DB Packet Storm
191243 4.6 MEDIUM
Physics 		bag covid_certificate Certain Federal Office of Information Technology Systems and Telecommunication FOITT products are affected by improper handling of exceptional conditions. This affects COVID Certificate App IOS 2.2.0… CWE-755
 Improper Handling of Exceptional Conditions 		CVE-2021-37786 2024-11-21 15:15 2021-09-27 Show GitHub Exploit DB Packet Storm
191244 6.1 MEDIUM
Network 		mattermost mattermost Mattermost 5.38 and earlier fails to sufficiently sanitize clipboard contents, which allows a user-assisted attacker to inject arbitrary web script in product deployments that explicitly disable the … CWE-79
Cross-site Scripting 		CVE-2021-37860 2024-11-21 15:15 2021-09-23 Show GitHub Exploit DB Packet Storm
191245 8.8 HIGH
Network 		zohocorp manageengine_admanager_plus ManageEngine ADManager Plus before 7111 has Pre-authentication RCE vulnerabilities. CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2021-37741 2024-11-21 15:15 2021-09-21 Show GitHub Exploit DB Packet Storm
191246 9.8 CRITICAL
Network 		zohocorp manageengine_admanager_plus ManageEngine ADSelfService Plus before 6112 is vulnerable to domain user account takeover. NVD-CWE-noinfo
CVE-2021-37424 2024-11-21 15:15 2021-09-21 Show GitHub Exploit DB Packet Storm
191247 6.5 MEDIUM
Network 		zohocorp manageengine_admanager_plus Zoho ManageEngine ADSelfService Plus before 6112 is vulnerable to mail spoofing. CWE-306
Missing Authentication for Critical Function 		CVE-2021-37420 2024-11-21 15:15 2021-09-21 Show GitHub Exploit DB Packet Storm
191248 7.5 HIGH
Network 		zohocorp manageengine_admanager_plus Zoho ManageEngine ADSelfService Plus before 6112 is vulnerable to SSRF. CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2021-37419 2024-11-21 15:15 2021-09-21 Show GitHub Exploit DB Packet Storm
191249 6.1 MEDIUM
Network 		it-economics techradar The TechRadar app 1.1 for Confluence Server allows XSS via the Title field of a Radar. CWE-79
Cross-site Scripting 		CVE-2021-37412 2024-11-21 15:15 2021-09-16 Show GitHub Exploit DB Packet Storm
191250 9.8 CRITICAL
Network 		sap netweaver_application_server_java SAP NetWeaver Application Server Java (JMS Connector Service) - versions 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, does not perform necessary authorization checks for user privileges. CWE-862
 Missing Authorization 		CVE-2021-37535 2024-11-21 15:15 2021-09-14 Show GitHub Exploit DB Packet Storm