Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 28, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
721	9.9	緊急 Network	オラクル	Oracle Enterprise Command Center Framework	オラクルのOracle Enterprise Command Center Frameworkにおける複数の脆弱性	CWE-269 CWE-284	CVE-2026-46901	2026-06-22 11:51	2026-06-17	Show	GitHub Exploit DB Packet Storm

722	9.8	緊急 Network	オラクル	Oracle Enterprise Command Center Framework	オラクルのOracle Enterprise Command Center Frameworkにおける複数の脆弱性	CWE-284 CWE-306	CVE-2026-46902	2026-06-22 11:51	2026-06-17	Show	GitHub Exploit DB Packet Storm

723	8.8	重要 Network	オラクル	JD Edwards EnterpriseOne Tools	オラクルのJD Edwards EnterpriseOne Toolsにおける複数の脆弱性	CWE-269 CWE-287 CWE-306	CVE-2026-46903	2026-06-22 11:51	2026-06-17	Show	GitHub Exploit DB Packet Storm

724	9.8	緊急 Network	オラクル	JD Edwards EnterpriseOne Tools	オラクルのJD Edwards EnterpriseOne Toolsにおける複数の脆弱性	CWE-284 CWE-306	CVE-2026-46904	2026-06-22 11:51	2026-06-17	Show	GitHub Exploit DB Packet Storm

725	9.8	緊急 Network	オラクル	JD Edwards EnterpriseOne Tools	オラクルのJD Edwards EnterpriseOne Toolsにおける重要な機能に対する認証の欠如に関する脆弱性	CWE-306 重要な機能に対する認証の欠如解説	CVE-2026-46905	2026-06-22 11:51	2026-06-17	Show	GitHub Exploit DB Packet Storm

726	9.6	緊急 Network	オラクル	JD Edwards EnterpriseOne Tools	オラクルのJD Edwards EnterpriseOne Toolsにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-46906	2026-06-22 11:51	2026-06-17	Show	GitHub Exploit DB Packet Storm

727	9.8	緊急 Network	オラクル	JD Edwards EnterpriseOne Tools	オラクルのJD Edwards EnterpriseOne Toolsにおける複数の脆弱性	CWE-284 CWE-306	CVE-2026-46909	2026-06-22 11:51	2026-06-17	Show	GitHub Exploit DB Packet Storm

728	9.1	緊急 Network	オラクル	JD Edwards EnterpriseOne Tools	オラクルのJD Edwards EnterpriseOne Toolsにおける複数の脆弱性	CWE-20 CWE-200 CWE-284 CWE-306 CWE-400	CVE-2026-46910	2026-06-22 11:51	2026-06-17	Show	GitHub Exploit DB Packet Storm

729	9.3	緊急 Network	オラクル	JD Edwards EnterpriseOne Tools	オラクルのJD Edwards EnterpriseOne Toolsにおける複数の脆弱性	CWE-200 CWE-284 CWE-306	CVE-2026-46912	2026-06-22 11:51	2026-06-17	Show	GitHub Exploit DB Packet Storm

730	9.3	緊急 Local	オラクル	JD Edwards EnterpriseOne Tools	オラクルのJD Edwards EnterpriseOne Toolsにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-46913	2026-06-22 11:51	2026-06-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 29, 2026, 4:19 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
191191	9.4	CRITICAL Network	sap	web_dispatcher	SAP Web Dispatcher versions - 7.49, 7.53, 7.77, 7.81, KRNL64NUC - 7.22, 7.22EXT, 7.49, KRNL64UC -7.22, 7.22EXT, 7.49, 7.53, KERNEL - 7.22, 7.49, 7.53, 7.77, 7.81, 7.83 processes allow an unauthentica…	-	CVE-2021-38162	2024-11-21 15:16	2021-09-14	Show	GitHub Exploit DB Packet Storm

191192	9.8	CRITICAL Network	wp-publications_project	wp-publications	The wp-publications WordPress plugin is vulnerable to restrictive local file inclusion via the Q_FILE parameter found in the ~/bibtexbrowser.php file which allows attackers to include local zip files…	CWE-829 Inclusion of Functionality from Untrusted Control Sphere	CVE-2021-38360	2024-11-21 15:16	2021-09-10	Show	GitHub Exploit DB Packet Storm

191193	6.1	MEDIUM Network	invitebox	invitebox	The WordPress InviteBox Plugin for viral Refer-a-Friend Promotions WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the message parameter found in the ~/admin/admin.php file which…	CWE-79 Cross-site Scripting	CVE-2021-38359	2024-11-21 15:16	2021-09-10	Show	GitHub Exploit DB Packet Storm

191194	6.1	MEDIUM Network	kibokolabs	moolamojo	The MoolaMojo WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the classes parameter found in the ~/views/button-generator.html.php file which allows attackers to inject arbitrary…	-	CVE-2021-38358	2024-11-21 15:16	2021-09-10	Show	GitHub Exploit DB Packet Storm

191195	6.1	MEDIUM Network	elyazalee	sms-ovh	The SMS OVH WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the position parameter found in the ~/sms-ovh-sent.php file which allows attackers to inject arbitrary web scripts, in…	-	CVE-2021-38357	2024-11-21 15:16	2021-09-10	Show	GitHub Exploit DB Packet Storm

191196	6.1	MEDIUM Network	bug_library_project	bug_library	The Bug Library WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the successimportcount parameter found in the ~/bug-library.php file which allows attackers to inject arbitrary we…	CWE-79 Cross-site Scripting	CVE-2021-38355	2024-11-21 15:16	2021-09-10	Show	GitHub Exploit DB Packet Storm

191197	6.1	MEDIUM Network	gnu-mailman_integration_project	gnu-mailman_integration	The GNU-Mailman Integration WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the gm_error parameter found in the ~/includes/admin/mailing-lists-page.php file which allows attacker…	CWE-79 Cross-site Scripting	CVE-2021-38354	2024-11-21 15:16	2021-09-10	Show	GitHub Exploit DB Packet Storm

191198	6.1	MEDIUM Network	webodid	dropdown_and_scrollable_text	The Dropdown and scrollable Text WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the content parameter found in the ~/index.php file which allows attackers to inject arbitrary we…	CWE-79 Cross-site Scripting	CVE-2021-38353	2024-11-21 15:16	2021-09-10	Show	GitHub Exploit DB Packet Storm

191199	6.1	MEDIUM Network	feedify	web_push_notifications	The Feedify – Web Push Notifications WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the feedify_msg parameter found in the ~/includes/base.php file which allows attackers to inj…	CWE-79 Cross-site Scripting	CVE-2021-38352	2024-11-21 15:16	2021-09-10	Show	GitHub Exploit DB Packet Storm

191200	6.1	MEDIUM Network	outsidesource	osd_subscribe	The OSD Subscribe WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the osd_subscribe_message parameter found in the ~/options/osd_subscribe_options_subscribers.php file which allo…	CWE-79 Cross-site Scripting	CVE-2021-38351	2024-11-21 15:16	2021-09-10	Show	GitHub Exploit DB Packet Storm