NVD脆弱性情報トップ
検索メニュー表示
ベンダー名
プロダクト・サービス名
タイトル
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
公表日降順
更新日降順
表示数

NVD(National Vulnerability Database)で管理されている脆弱性の一覧を検索することが出来ます。
JVN(Japan Vulnerability Note)より先に脆弱性情報が更新される事が多いため、JVNに未記載の脆弱性が更新されている場合があります。

JVN(Japan Vulnerability Note)に関連した脆弱性がある場合は詳細画面で情報を表示します。

CWEで検索する場合は、CWE概要を参照して、CWE番号を確認してください。

  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW

更新日:2026年6月11日5:13

No CVSS レベル
攻撃区分		 ベンダー名 プロダクト名 タイトル CWE CVE 更新日 公表日 影響表示 Exploit
PoC
検索
301 6.1 MEDIUM
ネットワーク 		apache answer Improper Neutralization of Alternate XSS Syntax vulnerability in Apache Answer. This issue affects Apache Answer: through 2.0.0. AI-generated response content was rendered in the browser without pr… New CWE-87
代替 XSS 構文の不適切な無効化 		CVE-2026-25688 2026-06-10 22:12 2026-06-9 表示 GitHub Exploit DB Packet Storm
302 5.4 MEDIUM
ネットワーク 		adobe experience_manager Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a DOM-based Cross-Site Scripting (XSS) vulnerability. An attacker could exploit this issue by manipulating the D… New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-47989 2026-06-10 22:08 2026-06-10 表示 GitHub Exploit DB Packet Storm
303 5.4 MEDIUM
ネットワーク 		adobe experience_manager Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a DOM-based Cross-Site Scripting (XSS) vulnerability. An attacker could exploit this issue by manipulating the D… New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-47987 2026-06-10 22:08 2026-06-10 表示 GitHub Exploit DB Packet Storm
304 5.4 MEDIUM
ネットワーク 		adobe experience_manager Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a DOM-based Cross-Site Scripting (XSS) vulnerability. An attacker could exploit this issue by manipulating the D… New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-47986 2026-06-10 22:08 2026-06-10 表示 GitHub Exploit DB Packet Storm
305 5.4 MEDIUM
ネットワーク 		adobe experience_manager Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a DOM-based Cross-Site Scripting (XSS) vulnerability. An attacker could exploit this issue by manipulating the D… New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-47985 2026-06-10 22:08 2026-06-10 表示 GitHub Exploit DB Packet Storm
306 5.4 MEDIUM
ネットワーク 		adobe experience_manager Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a DOM-based Cross-Site Scripting (XSS) vulnerability. An attacker could exploit this issue by manipulating the D… New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-47983 2026-06-10 22:08 2026-06-10 表示 GitHub Exploit DB Packet Storm
307 5.4 MEDIUM
ネットワーク 		adobe experience_manager Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a DOM-based Cross-Site Scripting (XSS) vulnerability. An attacker could exploit this issue by manipulating the D… New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-47982 2026-06-10 22:08 2026-06-10 表示 GitHub Exploit DB Packet Storm
308 5.4 MEDIUM
ネットワーク 		adobe experience_manager Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject ma… New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-47981 2026-06-10 22:08 2026-06-10 表示 GitHub Exploit DB Packet Storm
309 5.4 MEDIUM
ネットワーク 		adobe experience_manager Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject ma… New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-47980 2026-06-10 22:08 2026-06-10 表示 GitHub Exploit DB Packet Storm
310 5.4 MEDIUM
ネットワーク 		adobe experience_manager Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject ma… New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-47978 2026-06-10 22:08 2026-06-10 表示 GitHub Exploit DB Packet Storm
311 5.4 MEDIUM
ネットワーク 		adobe experience_manager Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject ma… New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-47977 2026-06-10 22:08 2026-06-10 表示 GitHub Exploit DB Packet Storm
312 5.4 MEDIUM
ネットワーク 		adobe experience_manager Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject ma… New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-47975 2026-06-10 22:07 2026-06-10 表示 GitHub Exploit DB Packet Storm
313 5.4 MEDIUM
ネットワーク 		adobe experience_manager Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject ma… New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-47973 2026-06-10 22:07 2026-06-10 表示 GitHub Exploit DB Packet Storm
314 5.4 MEDIUM
ネットワーク 		adobe experience_manager Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject ma… New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-47972 2026-06-10 22:07 2026-06-10 表示 GitHub Exploit DB Packet Storm
315 5.4 MEDIUM
ネットワーク 		adobe experience_manager Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject ma… New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-47970 2026-06-10 22:06 2026-06-10 表示 GitHub Exploit DB Packet Storm
316 5.4 MEDIUM
ネットワーク 		adobe experience_manager Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject ma… New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-47966 2026-06-10 22:06 2026-06-10 表示 GitHub Exploit DB Packet Storm
317 5.4 MEDIUM
ネットワーク 		adobe experience_manager Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject ma… New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-47962 2026-06-10 22:06 2026-06-10 表示 GitHub Exploit DB Packet Storm
318 5.4 MEDIUM
ネットワーク 		adobe experience_manager Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject ma… New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-47958 2026-06-10 22:05 2026-06-10 表示 GitHub Exploit DB Packet Storm
319 5.4 MEDIUM
ネットワーク 		adobe experience_manager Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject ma… New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-47957 2026-06-10 22:04 2026-06-10 表示 GitHub Exploit DB Packet Storm
320 5.4 MEDIUM
ネットワーク 		adobe experience_manager Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject ma… New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-47956 2026-06-10 22:04 2026-06-10 表示 GitHub Exploit DB Packet Storm
321 5.4 MEDIUM
ネットワーク 		adobe experience_manager Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject ma… New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-47954 2026-06-10 22:04 2026-06-10 表示 GitHub Exploit DB Packet Storm
322 5.4 MEDIUM
ネットワーク 		adobe experience_manager Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject ma… New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-47953 2026-06-10 22:04 2026-06-10 表示 GitHub Exploit DB Packet Storm
323 7.8 HIGH
ローカル 		adobe incopy InCopy versions 21.3, 20.5.3 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of t… New CWE-122
ヒープオーバーフロー 		CVE-2026-34707 2026-06-10 22:01 2026-06-10 表示 GitHub Exploit DB Packet Storm
324 7.8 HIGH
ローカル 		adobe incopy InCopy versions 21.3, 20.5.3 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this is… New CWE-787
境界外書き込み 		CVE-2026-34706 2026-06-10 22:01 2026-06-10 表示 GitHub Exploit DB Packet Storm
325 5.5 MEDIUM
ローカル 		adobe indesign InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability… New CWE-125
境界外読み取り 		CVE-2026-34705 2026-06-10 22:01 2026-06-10 表示 GitHub Exploit DB Packet Storm
326 5.5 MEDIUM
ローカル 		adobe indesign InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by a NULL Pointer Dereference vulnerability that could result in an application denial-of-service. An attacker could exploit this vulne… New CWE-476
NULL ポインタデリファレンス 		CVE-2026-34704 2026-06-10 22:01 2026-06-10 表示 GitHub Exploit DB Packet Storm
327 5.5 MEDIUM
ローカル 		adobe indesign InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by a NULL Pointer Dereference vulnerability that could result in an application denial-of-service. An attacker could exploit this vulne… New CWE-476
NULL ポインタデリファレンス 		CVE-2026-34703 2026-06-10 22:01 2026-06-10 表示 GitHub Exploit DB Packet Storm
328 7.8 HIGH
ローカル 		adobe indesign InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploi… New CWE-121
スタックオーバーフロー 		CVE-2026-34702 2026-06-10 22:01 2026-06-10 表示 GitHub Exploit DB Packet Storm
329 7.8 HIGH
ローカル 		adobe indesign InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploit… New CWE-122
ヒープオーバーフロー 		CVE-2026-34701 2026-06-10 22:01 2026-06-10 表示 GitHub Exploit DB Packet Storm
330 7.8 HIGH
ローカル 		adobe indesign InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation … New CWE-787
境界外書き込み 		CVE-2026-34700 2026-06-10 22:01 2026-06-10 表示 GitHub Exploit DB Packet Storm
331 7.8 HIGH
ローカル 		adobe indesign InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploit… New CWE-122
ヒープオーバーフロー 		CVE-2026-34699 2026-06-10 22:01 2026-06-10 表示 GitHub Exploit DB Packet Storm
332 7.8 HIGH
ローカル 		adobe indesign InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploit… New CWE-122
ヒープオーバーフロー 		CVE-2026-34698 2026-06-10 22:01 2026-06-10 表示 GitHub Exploit DB Packet Storm
333 7.8 HIGH
ローカル 		adobe indesign InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploi… New CWE-121
スタックオーバーフロー 		CVE-2026-34697 2026-06-10 22:01 2026-06-10 表示 GitHub Exploit DB Packet Storm
334 7.8 HIGH
ローカル 		adobe indesign InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of thi… New CWE-416
解放済みメモリの使用 		CVE-2026-34696 2026-06-10 22:01 2026-06-10 表示 GitHub Exploit DB Packet Storm
335 7.8 HIGH
ローカル 		adobe indesign InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploi… New CWE-121
スタックオーバーフロー 		CVE-2026-34695 2026-06-10 22:00 2026-06-10 表示 GitHub Exploit DB Packet Storm
336 7.8 HIGH
ローカル 		adobe incopy InCopy versions 21.3, 20.5.3 and earlier are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of … New CWE-121
スタックオーバーフロー 		CVE-2026-34708 2026-06-10 22:00 2026-06-10 表示 GitHub Exploit DB Packet Storm
337 7.8 HIGH
ローカル 		cisco catalyst_sd-wan_manager
sd-wan_vsmart_controller 		A vulnerability in the CLI of Cisco Catalyst SD-WAN Controller, formerly SD-WAN vSmart, Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, and Cisco Catalyst SD-WAN Validator, formerly SD-WAN vB… Update CWE-116
不適切なエンコード、または出力のエスケープ 		CVE-2026-20245 2026-06-10 21:59 2026-06-5 表示 GitHub Exploit DB Packet Storm
338 6.5 MEDIUM
ネットワーク 		google chrome Inappropriate implementation in MHTML in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to leak cross-origin data via a crafted … Update CWE-346
CWE-352
同一生成元ポリシー違反
同一生成元ポリシー違反 		CVE-2026-11195 2026-06-10 21:32 2026-06-5 表示 GitHub Exploit DB Packet Storm
339 6.5 MEDIUM
ネットワーク 		google chrome Inappropriate implementation in Network in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium) Update CWE-346
CWE-352
同一生成元ポリシー違反
同一生成元ポリシー違反 		CVE-2026-11194 2026-06-10 21:31 2026-06-5 表示 GitHub Exploit DB Packet Storm
340 6.5 MEDIUM
ネットワーク 		google chrome Inappropriate implementation in SVG in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium) Update CWE-200
情報漏えい 		CVE-2026-11182 2026-06-10 21:29 2026-06-5 表示 GitHub Exploit DB Packet Storm
341 5.3 MEDIUM
ネットワーク 		google chrome Out of bounds read in ANGLE in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from proc… Update CWE-125
境界外読み取り 		CVE-2026-11005 2026-06-10 21:26 2026-06-5 表示 GitHub Exploit DB Packet Storm
342 - -
- - An HTML injection vulnerability in the "fetch links" email sent by Thinkst Applied Research Canarytokens, enabling Interface Manipulation, Cross-Site Scripting (XSS) in emails clients that render HTM… New CWE-74
インジェクション 		CVE-2026-11859 2026-06-10 21:16 2026-06-10 表示 GitHub Exploit DB Packet Storm
343 - -
- - NLnet Labs ldns 1.2.0 up to and including versions 1.9.0, when used in applications as (stub) resolver over UDP, lacks matching the query destination address and port with the response source address… New CWE-346
同一生成元ポリシー違反 		CVE-2026-10846 2026-06-10 21:16 2026-06-10 表示 GitHub Exploit DB Packet Storm
344 - -
- - A NETGEAR security issue that could allow an attacker with ability to intercept and tamper with traffic between the router and the Internet to run commands on your device when the device administrato… New CWE-119
バッファエラー 		CVE-2026-0409 2026-06-10 21:16 2026-06-10 表示 GitHub Exploit DB Packet Storm
345 9.1 CRITICAL
ネットワーク 		- - The Schema & Structured Data for WP & AMP WordPress plugin before 1.60 does not check user capabilities on its frontend AJAX file-upload handlers and does not validate the actual content of uploaded … New CWE-434
危険なタイプのファイルの無制限アップロード 		CVE-2026-9067 2026-06-10 20:17 2026-06-10 表示 GitHub Exploit DB Packet Storm
346 3.5 LOW
ネットワーク 		- - The Store Locator WordPress plugin before 1.6.6 does not sanitize and escape one of its settings before storing it and outputting it on the Store Locator WordPress plugin before 1.6.6 admin page, all… New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-9060 2026-06-10 20:17 2026-06-10 表示 GitHub Exploit DB Packet Storm
347 8.8 HIGH
ネットワーク 		- - The Anti-Spam by CleanTalk. Spam protection WordPress plugin before 6.79 does not properly sanitize content within a custom shortcode used in its email-encoding feature, allowing unauthenticated atta… New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-8071 2026-06-10 20:17 2026-06-10 表示 GitHub Exploit DB Packet Storm
348 8.6 HIGH
ネットワーク 		- - The Xstore WordPress theme before 9.7.3 does not properly sanitise and escape a parameter before using it in a SQL statement via an AJAX action available to unauthenticated users, leading to a SQL in… New CWE-89
SQLインジェクション 		CVE-2026-3326 2026-06-10 20:16 2026-06-10 表示 GitHub Exploit DB Packet Storm
349 4.3 MEDIUM
ネットワーク 		7-zip 7-zip 7-Zip is a file archiver with a high compression ratio. Versions 9.11 through 26.00 contain a heap out-of-bounds read of up to 3 bytes in the UDF disc image handler's File Identifier Descriptor parse… Update CWE-125
境界外読み取り 		CVE-2026-48102 2026-06-10 19:45 2026-06-6 表示 GitHub Exploit DB Packet Storm
350 - -
- - Debusine is an integrated solution to build, distribute and maintain a Debian-based distribution. Debian source packages (.dsc) and upload artifacts (.changes) are manifest files that name the files … New - CVE-2026-11853 2026-06-10 19:16 2026-06-10 表示 GitHub Exploit DB Packet Storm