Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
81	9.1	緊急 Network	MessagePack	MessagePack	MessagePackにおけるリソースの安全ではないデフォルト値への初期化に関する脆弱性 New	CWE-1188 リソースの安全ではないデフォルト値への初期化	CVE-2026-48509	2026-06-26 11:57	2026-06-22	Show	GitHub Exploit DB Packet Storm

82	7.5	重要 Network	MessagePack	MessagePack	MessagePackにおける複数の脆弱性 New	CWE-409 CWE-770	CVE-2026-48510	2026-06-26 11:57	2026-06-22	Show	GitHub Exploit DB Packet Storm

83	7.5	重要 Network	MessagePack	MessagePack	MessagePackにおけるアルゴリズムの複雑さに関する脆弱性 New	CWE-407 アルゴリズムの複雑性	CVE-2026-48511	2026-06-26 11:57	2026-06-22	Show	GitHub Exploit DB Packet Storm

84	7.5	重要 Network	MessagePack	MessagePack	MessagePackにおける再帰制御に関する脆弱性 New	CWE-674 不適切な再帰制御	CVE-2026-48512	2026-06-26 11:57	2026-06-22	Show	GitHub Exploit DB Packet Storm

85	7.5	重要 Network	MessagePack	MessagePack	MessagePackにおける再帰制御に関する脆弱性 New	CWE-674 不適切な再帰制御	CVE-2026-48513	2026-06-26 11:57	2026-06-22	Show	GitHub Exploit DB Packet Storm

86	7.5	重要 Network	MessagePack	MessagePack	MessagePackにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 New	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-48514	2026-06-26 11:57	2026-06-22	Show	GitHub Exploit DB Packet Storm

87	7.5	重要 Network	MessagePack	MessagePack	MessagePackにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 New	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-48515	2026-06-26 11:57	2026-06-22	Show	GitHub Exploit DB Packet Storm

88	7.5	重要 Network	MessagePack	MessagePack	MessagePackにおけるアルゴリズムの複雑さに関する脆弱性 New	CWE-407 アルゴリズムの複雑性	CVE-2026-48516	2026-06-26 11:56	2026-06-22	Show	GitHub Exploit DB Packet Storm

89	7.5	重要 Network	MessagePack	MessagePack	MessagePackにおける複数の脆弱性 New	CWE-470 CWE-502	CVE-2026-48517	2026-06-26 11:56	2026-06-22	Show	GitHub Exploit DB Packet Storm

90	9.6	緊急 Network	マイクロソフト	Microsoft Exchange Online	Microsoft Exchange Online Elevation of Privilege Vulnerability New	CWE-862 認証の欠如	CVE-2026-48582	2026-06-26 11:56	2026-06-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 28, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
320781	7.5	HIGH Network	nasa	cryptolib	NASA CryptoLib v1.3.0 was discovered to contain an Out-of-Bounds read via the TC subsystem (crypto_aos.c).	CWE-125 Out-of-bounds Read	CVE-2024-44911	2024-10-8 00:00	2024-09-28	Show	GitHub Exploit DB Packet Storm

320782	7.5	HIGH Network	nasa	cryptolib	NASA CryptoLib v1.3.0 was discovered to contain an Out-of-Bounds read via the AOS subsystem (crypto_aos.c).	CWE-125 Out-of-bounds Read	CVE-2024-44910	2024-10-7 23:27	2024-09-28	Show	GitHub Exploit DB Packet Storm

320783	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix index may exceed array range within fpu_update_bw_bounding_box [Why] Coverity reports OVERRUN warning. soc.n…	CWE-129 Improper Validation of Array Index	CVE-2024-46811	2024-10-7 23:24	2024-09-27	Show	GitHub Exploit DB Packet Storm

320784	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: added NULL check at start of dc_validate_stream [Why] prevent invalid memory access [How] check if dc and strea…	CWE-476 NULL Pointer Dereference	CVE-2024-46802	2024-10-7 23:21	2024-09-27	Show	GitHub Exploit DB Packet Storm

320785	7.5	HIGH Network	ays-pro	chatgpt_assistant	The AI ChatBot with ChatGPT and Content Generator by AYS WordPress plugin before 2.1.0 lacks sufficient access controls allowing an unauthenticated user to disconnect the AI ChatBot with ChatGPT and …	NVD-CWE-noinfo	CVE-2024-7714	2024-10-7 23:21	2024-09-27	Show	GitHub Exploit DB Packet Storm

320786	6.1	MEDIUM Network	honeywell	iq3xcite_firmware	A cross-site scripting (XSS) vulnerability in the component /test/ of iq3xcite v2.31 to v3.05 allows attackers to execute arbitrary web scripts or HTML via a crafted payload.	CWE-79 Cross-site Scripting	CVE-2024-46453	2024-10-7 22:53	2024-09-28	Show	GitHub Exploit DB Packet Storm

320787	6.1	MEDIUM Network	filamentphp	filament	Filament is a collection of full-stack components for Laravel development. Versions of Filament from v3.0.0 through v3.2.114 are affected by a cross-site scripting (XSS) vulnerability. If values pass…	CWE-79 Cross-site Scripting	CVE-2024-47186	2024-10-7 22:30	2024-09-28	Show	GitHub Exploit DB Packet Storm

320788	7.5	HIGH Network	netflix	e2nest	A path traversal issue in E2Nest prior to commit 8a41948e553c89c56b14410c6ed395e9cfb9250a	CWE-22 Path Traversal	CVE-2024-9301	2024-10-7 22:12	2024-09-28	Show	GitHub Exploit DB Packet Storm

320789	5.4	MEDIUM Network	blockspare	blockspare	The Blockspare: Gutenberg Blocks & Patterns for Blogs, Magazines, Business Sites – Post Grids, Sliders, Carousels, Counters, Page Builder & Starter Site Imports, No Coding Needed plugin for WordPress…	CWE-79 Cross-site Scripting	CVE-2024-8325	2024-10-7 21:37	2024-09-4	Show	GitHub Exploit DB Packet Storm

320790	7.5	HIGH Network	pixelyoursite	pixelyoursite	The PixelYourSite – Your smart PIXEL (TAG) & API Manager and the PixelYourSite PRO plugins for WordPress are vulnerable to Sensitive Information Exposure in all versions up to, and including, 9.7.1 a…	CWE-287 Improper Authentication	CVE-2024-7870	2024-10-7 21:29	2024-09-4	Show	GitHub Exploit DB Packet Storm