Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 25, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
811	8.8	重要 Network	オラクル	Oracle Process Manufacturing Process Planning	オラクルのOracle Process Manufacturing Process Planningにおける複数の脆弱性	CWE-269 CWE-284 CWE-287 CWE-306	CVE-2026-46942	2026-06-22 11:33	2026-06-17	Show	GitHub Exploit DB Packet Storm

812	8.8	重要 Network	オラクル	Oracle Quality	オラクルのOracle Qualityにおける複数の脆弱性	CWE-269 CWE-287 CWE-306	CVE-2026-46951	2026-06-22 11:33	2026-06-17	Show	GitHub Exploit DB Packet Storm

813	8.8	重要 Network	オラクル	Oracle Quality	オラクルのOracle Qualityにおける複数の脆弱性	CWE-269 CWE-287 CWE-306	CVE-2026-46952	2026-06-22 11:33	2026-06-17	Show	GitHub Exploit DB Packet Storm

814	7.2	重要 Network	オラクル	Oracle Human Resource Management Software	オラクルのOracle Human Resource Management Softwareにおける権限管理に関する脆弱性	CWE-269 不適切な権限管理	CVE-2026-46953	2026-06-22 11:33	2026-06-17	Show	GitHub Exploit DB Packet Storm

815	7.2	重要 Network	オラクル	Oracle Property Manager	オラクルのOracle Property Managerにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-46956	2026-06-22 11:33	2026-06-17	Show	GitHub Exploit DB Packet Storm

816	7.2	重要 Network	オラクル	Oracle Project Portfolio Analysis	オラクルのOracle Project Portfolio Analysisにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-46960	2026-06-22 11:33	2026-06-17	Show	GitHub Exploit DB Packet Storm

817	8.8	重要 Network	オラクル	Oracle Project Portfolio Analysis	オラクルのOracle Project Portfolio Analysisにおける複数の脆弱性	CWE-269 CWE-287 CWE-306	CVE-2026-46961	2026-06-22 11:33	2026-06-17	Show	GitHub Exploit DB Packet Storm

818	8.8	重要 Network	オラクル	Oracle Project Portfolio Analysis	オラクルのOracle Project Portfolio Analysisにおける複数の脆弱性	CWE-269 CWE-287 CWE-306	CVE-2026-46962	2026-06-22 11:33	2026-06-17	Show	GitHub Exploit DB Packet Storm

819	7.2	重要 Network	オラクル	Oracle Financials for EMEA	オラクルのOracle Financials for EMEAにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-46969	2026-06-22 11:33	2026-06-17	Show	GitHub Exploit DB Packet Storm

820	7.2	重要 Network	オラクル	Oracle HR Intelligence	オラクルのOracle HR Intelligenceにおける権限管理に関する脆弱性	CWE-269 不適切な権限管理	CVE-2026-46970	2026-06-22 11:33	2026-06-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 25, 2026, 4:04 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
254221	9.8	CRITICAL Network	cohuhd	3960hd_firmware	Missing authentication for the remote configuration port 1236/tcp on the Cohu 3960HD allows an attacker to change configuration parameters such as IP address and username/password via specially craft…	CWE-287 Improper Authentication	CVE-2017-8861	2024-11-21 12:34	2017-11-22	Show	GitHub Exploit DB Packet Storm

254222	6.5	MEDIUM Network	cohuhd	3960hd_firmware	Information disclosure through directory listing on the Cohu 3960HD allows an attacker to view and download source code, log files, and other sensitive device information via a specially crafted web …	CWE-200 Information Exposure	CVE-2017-8860	2024-11-21 12:34	2017-11-22	Show	GitHub Exploit DB Packet Storm

254223	9.1	CRITICAL Network	varnish-cache varnish_cache_project debian	varnish varnish_cache debian_linux	vbf_stp_error in bin/varnishd/cache/cache_fetch.c in Varnish HTTP Cache 4.1.x before 4.1.9 and 5.x before 5.2.1 allows remote attackers to obtain sensitive information from process memory because a V…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-8807	2024-11-21 12:34	2017-11-16	Show	GitHub Exploit DB Packet Storm

254224	7.5	HIGH Network	mediawiki debian	mediawiki debian_linux	The language converter in MediaWiki before 1.27.4, 1.28.x before 1.28.3, and 1.29.x before 1.29.2 allows attribute injection attacks via glossary rules.	CWE-20 Improper Input Validation	CVE-2017-8815	2024-11-21 12:34	2017-11-15	Show	GitHub Exploit DB Packet Storm

254225	7.5	HIGH Network	mediawiki debian	mediawiki debian_linux	The language converter in MediaWiki before 1.27.4, 1.28.x before 1.28.3, and 1.29.x before 1.29.2 allows attackers to replace text inside tags via a rule definition followed by "a lot of junk."	CWE-20 Improper Input Validation	CVE-2017-8814	2024-11-21 12:34	2017-11-15	Show	GitHub Exploit DB Packet Storm

254226	5.3	MEDIUM Network	mediawiki debian	mediawiki debian_linux	MediaWiki before 1.27.4, 1.28.x before 1.28.3, and 1.29.x before 1.29.2 allows remote attackers to inject > (greater than) characters via the id attribute of a headline.	NVD-CWE-noinfo	CVE-2017-8812	2024-11-21 12:34	2017-11-15	Show	GitHub Exploit DB Packet Storm

254227	6.1	MEDIUM Network	mediawiki debian	mediawiki debian_linux	The implementation of raw message parameter expansion in MediaWiki before 1.27.4, 1.28.x before 1.28.3, and 1.29.x before 1.29.2 allows HTML mangling attacks.	CWE-20 Improper Input Validation	CVE-2017-8811	2024-11-21 12:34	2017-11-15	Show	GitHub Exploit DB Packet Storm

254228	7.5	HIGH Network	mediawiki debian	mediawiki debian_linux	MediaWiki before 1.27.4, 1.28.x before 1.28.3, and 1.29.x before 1.29.2, when a private wiki is configured, provides different error messages for failed login attempts depending on whether the userna…	CWE-200 Information Exposure	CVE-2017-8810	2024-11-21 12:34	2017-11-15	Show	GitHub Exploit DB Packet Storm

254229	9.8	CRITICAL Network	mediawiki debian	mediawiki debian_linux	api.php in MediaWiki before 1.27.4, 1.28.x before 1.28.3, and 1.29.x before 1.29.2 has a Reflected File Download vulnerability.	CWE-74 Injection	CVE-2017-8809	2024-11-21 12:34	2017-11-15	Show	GitHub Exploit DB Packet Storm

254230	6.1	MEDIUM Network	mediawiki debian	mediawiki debian_linux	MediaWiki before 1.27.4, 1.28.x before 1.28.3, and 1.29.x before 1.29.2 has XSS when the $wgShowExceptionDetails setting is false and the browser sends non-standard URL escaping.	CWE-79 Cross-site Scripting	CVE-2017-8808	2024-11-21 12:34	2017-11-15	Show	GitHub Exploit DB Packet Storm