Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 28, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
791 8.1 重要
Network 		OpenClaw OpenClaw OpenClawにおける複数の脆弱性 CWE-184
CWE-863
CVE-2026-53855 2026-06-22 11:47 2026-06-16 Show GitHub Exploit DB Packet Storm
792 5.5 警告
Local 		OpenClaw OpenClaw OpenClawにおける重要なリソースに対する不適切なパーミッションの割り当てに関する脆弱性 CWE-732
重要なリソースに対する不適切なパーミッションの割り当て 		CVE-2026-53856 2026-06-22 11:47 2026-06-16 Show GitHub Exploit DB Packet Storm
793 8.1 重要
Network 		OpenClaw OpenClaw OpenClawにおけるスプーフィングによる認証回避に関する脆弱性 CWE-290
スプーフィングによる認証回避 		CVE-2026-53857 2026-06-22 11:47 2026-06-16 Show GitHub Exploit DB Packet Storm
794 7.1 重要
Local 		OpenClaw OpenClaw OpenClawにおける信頼できない検索パスに関する脆弱性 CWE-426
信頼性のない検索パス 		CVE-2026-53858 2026-06-22 11:47 2026-06-16 Show GitHub Exploit DB Packet Storm
795 6.5 警告
Network 		OpenClaw OpenClaw OpenClawにおける複数の脆弱性 CWE-1023
CWE-918
CVE-2026-53859 2026-06-22 11:47 2026-06-16 Show GitHub Exploit DB Packet Storm
796 5.4 警告
Network 		OpenClaw OpenClaw OpenClawにおける複数の脆弱性 CWE-807
CWE-863
CVE-2026-53860 2026-06-22 11:47 2026-06-16 Show GitHub Exploit DB Packet Storm
797 9.8 緊急
Network 		OpenClaw OpenClaw OpenClawにおける不完全なブラックリストに関する脆弱性 CWE-184
不完全なブラックリスト 		CVE-2026-53861 2026-06-22 11:47 2026-06-16 Show GitHub Exploit DB Packet Storm
798 5.4 警告
Network 		OpenClaw OpenClaw OpenClawにおける複数の脆弱性 CWE-266
CWE-345
CVE-2026-53862 2026-06-22 11:47 2026-06-16 Show GitHub Exploit DB Packet Storm
799 6.5 警告
Network 		OpenClaw OpenClaw OpenClawにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-53863 2026-06-22 11:47 2026-06-16 Show GitHub Exploit DB Packet Storm
800 8.1 重要
Network 		OpenClaw OpenClaw OpenClawにおける不完全なブラックリストに関する脆弱性 CWE-184
不完全なブラックリスト 		CVE-2026-53864 2026-06-22 11:47 2026-06-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 28, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
191131 8.1 HIGH
Network 		corero securewatch_managed_services Corero SecureWatch Managed Services 9.7.2.0020 does not correctly check swa-monitor and cns-monitor user’s privileges, allowing a user to perform actions not belonging to his role. CWE-863
 Incorrect Authorization 		CVE-2021-38137 2024-11-21 15:16 2021-08-7 Show GitHub Exploit DB Packet Storm
191132 6.5 MEDIUM
Network 		corero securewatch_managed_services Corero SecureWatch Managed Services 9.7.2.0020 is affected by a Path Traversal vulnerability via the snap_file parameter in the /it-IT/splunkd/__raw/services/get_snapshot HTTP API endpoint. A ‘low pr… CWE-22
Path Traversal 		CVE-2021-38136 2024-11-21 15:16 2021-08-7 Show GitHub Exploit DB Packet Storm
191133 5.4 MEDIUM
Network 		chikitsa patient_management_system index.php/appointment/insert_patient_add_appointment in Chikitsa Patient Management System 2.0.0 allows XSS. CWE-79
Cross-site Scripting 		CVE-2021-38152 2024-11-21 15:16 2021-08-6 Show GitHub Exploit DB Packet Storm
191134 5.4 MEDIUM
Network 		chikitsa patient_management_system index.php/appointment/todos in Chikitsa Patient Management System 2.0.0 allows XSS. CWE-79
Cross-site Scripting 		CVE-2021-38151 2024-11-21 15:16 2021-08-6 Show GitHub Exploit DB Packet Storm
191135 5.4 MEDIUM
Network 		chikitsa patient_management_system index.php/admin/add_user in Chikitsa Patient Management System 2.0.0 allows XSS. CWE-79
Cross-site Scripting 		CVE-2021-38149 2024-11-21 15:16 2021-08-6 Show GitHub Exploit DB Packet Storm
191136 5.4 MEDIUM
Network 		onenav onenav OneNav beta 0.9.12 allows XSS via the Add Link feature. NOTE: the vendor's position is that there intentionally is not any XSS protection at present, because the attack risk is largely limited to a c… CWE-79
Cross-site Scripting 		CVE-2021-38138 2024-11-21 15:16 2021-08-6 Show GitHub Exploit DB Packet Storm
191137 7.5 HIGH
Network 		planview spigit The REST API in Planview Spigit 4.5.3 allows remote unauthenticated attackers to query sensitive user accounts data, as demonstrated by an api/v1/users/1 request. NVD-CWE-noinfo
CVE-2021-38095 2024-11-21 15:16 2021-08-5 Show GitHub Exploit DB Packet Storm
191138 6.5 MEDIUM
Network 		libgd libgd read_header_tga in gd_tga.c in the GD Graphics Library (aka LibGD) through 2.3.2 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted TGA file. CWE-125
Out-of-bounds Read 		CVE-2021-38115 2024-11-21 15:16 2021-08-5 Show GitHub Exploit DB Packet Storm
191139 5.5 MEDIUM
Local 		ffmpeg
debian 		ffmpeg
debian_linux 		libavcodec/dnxhddec.c in FFmpeg 4.4 does not check the return value of the init_vlc function, a similar issue to CVE-2013-0868. CWE-252
 Unchecked Return Value 		CVE-2021-38114 2024-11-21 15:16 2021-08-5 Show GitHub Exploit DB Packet Storm
191140 5.4 MEDIUM
Network 		openwebif_project openwebif In addBouquet in js/bqe.js in OpenWebif (aka e2openplugin-OpenWebif) through 1.4.7, inserting JavaScript into the Add Bouquet feature of the Bouquet Editor (i.e., bouqueteditor/api/addbouquet?name=) … CWE-79
Cross-site Scripting 		CVE-2021-38113 2024-11-21 15:16 2021-08-5 Show GitHub Exploit DB Packet Storm