Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 10, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1431	7.1	重要 Local	FastNetMon	FastNetMon	Pavel OdintsovのFastNetMonにおける複数の脆弱性	CWE-122 CWE-190	CVE-2026-48690	2026-05-29 11:16	2026-05-26	Show	GitHub Exploit DB Packet Storm

1432	9.8	緊急 Network	FastNetMon	FastNetMon	Pavel OdintsovのFastNetMonにおける複数の脆弱性	CWE-122 CWE-190 CWE-190	CVE-2026-48691	2026-05-29 11:16	2026-05-26	Show	GitHub Exploit DB Packet Storm

1433	8.1	重要 Adjacent	FastNetMon	FastNetMon	Pavel OdintsovのFastNetMonにおける重要な機能に対する認証の欠如に関する脆弱性	CWE-306 重要な機能に対する認証の欠如解説	CVE-2026-48692	2026-05-29 11:16	2026-05-26	Show	GitHub Exploit DB Packet Storm

1434	5.5	警告 Local	FastNetMon	FastNetMon	Pavel OdintsovのFastNetMonにおけるリンク解釈に関する脆弱性	CWE-59 リンク解釈の問題	CVE-2026-48693	2026-05-29 11:16	2026-05-26	Show	GitHub Exploit DB Packet Storm

1435	8.1	重要 Network	FastNetMon	FastNetMon	Pavel OdintsovのFastNetMonにおける複数の脆弱性	CWE-77 CWE-78	CVE-2026-48694	2026-05-29 11:16	2026-05-26	Show	GitHub Exploit DB Packet Storm

1436	8.1	重要 Network	FastNetMon	FastNetMon	Pavel OdintsovのFastNetMonにおけるOS コマンドインジェクションの脆弱性	CWE-78 CWE-78	CVE-2026-48695	2026-05-29 11:16	2026-05-26	Show	GitHub Exploit DB Packet Storm

1437	6.2	警告 Local	FastNetMon	FastNetMon	Pavel OdintsovのFastNetMonにおける複数の脆弱性	CWE-120 CWE-120 CWE-676	CVE-2026-48696	2026-05-29 11:16	2026-05-26	Show	GitHub Exploit DB Packet Storm

1438	7.4	重要 Network	FastNetMon	FastNetMon	Pavel OdintsovのFastNetMonにおける証明書検証に関する脆弱性	CWE-295 不正な証明書検証	CVE-2026-48697	2026-05-29 11:16	2026-05-26	Show	GitHub Exploit DB Packet Storm

1439	5.9	警告 Network	PuTTY	PuTTY	PuTTYにおける二重解放に関する脆弱性	CWE-415 二重解放	CVE-2026-48850	2026-05-29 11:15	2026-05-25	Show	GitHub Exploit DB Packet Storm

1440	3.1	低 Network	PuTTY	PuTTY	PuTTYにおけるユーザインターフェースにおける重要情報の誤った表示に関する脆弱性	CWE-451 ユーザインターフェースにおける重要情報の誤った表示	CVE-2026-48851	2026-05-29 11:15	2026-05-25	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2451	9.8	CRITICAL Network	-	-	Incorrect Privilege Assignment vulnerability in Themeisle Masteriyo LMS PRO allows Privilege Escalation. This issue affects Masteriyo LMS PRO: from n/a through 2.20.0.	CWE-266 Incorrect Privilege Assignment	CVE-2025-53209	2026-06-2 22:03	2026-06-2	Show	GitHub Exploit DB Packet Storm

2452	5.3	MEDIUM Network	-	-	Missing Authorization vulnerability in Anton Shevchuk Constructor allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects Constructor: from n/a through 1.6.5.	CWE-862 Missing Authorization	CVE-2025-53302	2026-06-2 22:03	2026-06-2	Show	GitHub Exploit DB Packet Storm

2453	8.8	HIGH Network	-	-	Missing Authorization vulnerability leading to code execution after installing malicious vulnerable plugin in ThimPress Thim Core. This issue affects Thim Core: from n/a through 2.3.3.	CWE-862 Missing Authorization	CVE-2025-53345	2026-06-2 22:03	2026-06-2	Show	GitHub Exploit DB Packet Storm

2454	4.3	MEDIUM Network	-	-	Missing Authorization vulnerability in ThimPress Thim Core allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Thim Core: from n/a through 2.3.3.	CWE-862 Missing Authorization	CVE-2025-53346	2026-06-2 22:03	2026-06-2	Show	GitHub Exploit DB Packet Storm

2455	5.4	MEDIUM Network	-	-	The Tiled Gallery Carousel Without JetPack plugin for WordPress is vulnerable to stored cross-site scripting via the 'data-image-title' parameter in all versions up to, and including, 3.1 due to insu…	CWE-79 Cross-site Scripting	CVE-2026-5191	2026-06-2 22:03	2026-06-2	Show	GitHub Exploit DB Packet Storm

2456	8.1	HIGH Network	-	-	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Axiomthemes Confidant allows PHP Local File Inclusion. This issue affects Con…	CWE-98 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')	CVE-2025-53440	2026-06-2 22:03	2026-06-2	Show	GitHub Exploit DB Packet Storm

2457	7.5	HIGH Network	-	-	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in UnboundStudio Accordion FAQ allows PHP Local File Inclusion. This issue affec…	CWE-98 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')	CVE-2025-58024	2026-06-2 22:03	2026-06-2	Show	GitHub Exploit DB Packet Storm

2458	8.1	HIGH Network	-	-	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Axiomthemes Crafti allows PHP Local File Inclusion. This issue affects Crafti…	CWE-98 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')	CVE-2025-58705	2026-06-2 22:03	2026-06-2	Show	GitHub Exploit DB Packet Storm

2459	8.1	HIGH Network	-	-	Deserialization of Untrusted Data vulnerability in Elated-Themes Aperitif allows Object Injection. This issue affects Aperitif: from n/a through 1.6.	CWE-502 Deserialization of Untrusted Data	CVE-2026-39550	2026-06-2 22:03	2026-06-2	Show	GitHub Exploit DB Packet Storm

2460	8.1	HIGH Network	-	-	Deserialization of Untrusted Data vulnerability in Elated-Themes Töbel allows Object Injection. This issue affects Töbel: from n/a through 1.8.1.	CWE-502 Deserialization of Untrusted Data	CVE-2026-39551	2026-06-2 22:03	2026-06-2	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed