Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 15, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1631	6.5	警告 Network	Gitlawb	OpenClaude	GitlawbのOpenClaudeにおける複数の脆弱性	CWE-352 CWE-400	CVE-2026-42073	2026-06-5 10:46	2026-06-2	Show	GitHub Exploit DB Packet Storm

1632	9.8	緊急 Network	Gitlawb	OpenClaude	GitlawbのOpenClaudeにおける複数の脆弱性	CWE-284 CWE-306	CVE-2026-42074	2026-06-5 10:46	2026-06-2	Show	GitHub Exploit DB Packet Storm

1633	9.6	緊急 Network	Cline	Cline	Clineにおける複数の脆弱性	CWE-1385 CWE-306	CVE-2026-44211	2026-06-5 10:46	2026-06-1	Show	GitHub Exploit DB Packet Storm

1634	7.5	重要 Network	Julian Gruber (juliangruber)	brace-expansion	Julian Gruber (juliangruber)のbrace-expansionにおけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-45149	2026-06-5 10:46	2026-05-29	Show	GitHub Exploit DB Packet Storm

1635	6.5	警告 Network	Nextcloud	Approval	NextcloudのApprovalにおける認可に関する脆弱性	CWE-285 不適切な認可	CVE-2026-45275	2026-06-5 10:46	2026-06-1	Show	GitHub Exploit DB Packet Storm

1636	3.3	低 Local	Nextcloud	Approval	NextcloudのApprovalにおける情報漏えいに関する脆弱性	CWE-200 CWE-noinfo	CVE-2026-45277	2026-06-5 10:46	2026-06-1	Show	GitHub Exploit DB Packet Storm

1637	6.1	警告 Network	Nextcloud	user oidc	Nextcloudのuser oidcにおけるオープンリダイレクトの脆弱性	CWE-601 オープンリダイレクト	CVE-2026-45278	2026-06-5 10:46	2026-06-1	Show	GitHub Exploit DB Packet Storm

1638	6.5	警告 Network	Nextcloud	Nextcloud Server	NextcloudのNextcloud Serverにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-45279	2026-06-5 10:46	2026-06-1	Show	GitHub Exploit DB Packet Storm

1639	8.1	重要 Network	Nextcloud	Nextcloud Server	NextcloudのNextcloud Serverにおけるユーザ制御の鍵による認証回避に関する脆弱性	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-45281	2026-06-5 10:46	2026-06-1	Show	GitHub Exploit DB Packet Storm

1640	6.5	警告 Network	Nextcloud	Nextcloud Server	NextcloudのNextcloud Serverにおけるアクセス制御に関する脆弱性	CWE-284 CWE-noinfo	CVE-2026-45282	2026-06-5 10:46	2026-06-1	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 15, 2026, 4:10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2691	5.3	MEDIUM Network	-	-	Impact: The morgan logging middleware's :remote-user token extracts the Basic auth username from the Authorization request header and writes it to the log stream without neutralizing control characte…	CWE-117 Improper Output Neutralization for Logs	CVE-2026-5078	2026-06-5 01:40	2026-06-3	Show	GitHub Exploit DB Packet Storm

2692	-		-	-	SWUpdate before 2026.05 is affected by a time-of-check time-of-use (TOCTOU) race condition that allows local unprivileged attackers to escalate privileges to root or install untrusted contents using …	CWE-367 Time-of-check Time-of-use (TOCTOU) Race Condition	CVE-2025-41259	2026-06-5 01:40	2026-06-3	Show	GitHub Exploit DB Packet Storm

2693	7.2	HIGH Network	-	-	There is a vulnerability in the Supermicro BMC SMTP service at Supermicro AS-2115HS-TNR. An attacker may obtain administrator privileges and inject specially crafted characters into the SMTP servic…	CWE-78 OS Command	CVE-2026-3820	2026-06-5 01:40	2026-06-4	Show	GitHub Exploit DB Packet Storm

2694	6.3	MEDIUM Network	-	-	A vulnerability was identified in wonderwhy-er DesktopCommanderMCP 0.2.37. This affects the function readFileFromUrl of the file src/tools/filesystem.ts of the component read_file. Such manipulation …	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-10690	2026-06-5 01:37	2026-06-3	Show	GitHub Exploit DB Packet Storm

2695	-		-	-	An HTML injection vulnerability in the notification email for "Slow Redirect" and "Cloned Website" Canarytokens exists in Thinkst Applied Research Canarytokens, enabling Interface Manipulation, Cross…	CWE-74 Injection	CVE-2026-10729	2026-06-5 01:37	2026-06-3	Show	GitHub Exploit DB Packet Storm

2696	7.3	HIGH Network	-	-	A vulnerability was found in crmeb crmeb_java 1.4. Affected is the function RestTemplate.getForEntity of the file crmeb-common/src/main/java/com/zbkj/common/utils/RestTemplateUtil.java of the compone…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-10771	2026-06-5 01:37	2026-06-4	Show	GitHub Exploit DB Packet Storm

2697	6.3	MEDIUM Network	-	-	A security vulnerability has been detected in EIPStackGroup OpENer up to 2.3.0. Affected is the function CreateMessageRouterRequestStructure of the file cipmessagerouter.c of the component SendRRData…	CWE-119 CWE-416 Incorrect Access of Indexable Resource ('Range Error') Use After Free	CVE-2026-10703	2026-06-5 01:35	2026-06-3	Show	GitHub Exploit DB Packet Storm

2698	4.3	MEDIUM Network	-	-	A security flaw has been discovered in wonderwhy-er DesktopCommanderMCP up to 0.2.38. This impacts an unknown function of the file src/search-manager.ts of the component start_search. Performing a ma…	CWE-400 CWE-1333 Uncontrolled Resource Consumption Inefficient Regular Expression Complexity	CVE-2026-10691	2026-06-5 01:35	2026-06-3	Show	GitHub Exploit DB Packet Storm

2699	3.1	LOW Network	-	-	A flaw has been found in dask up to 3.0. Affected by this issue is the function nunique_approx of the file dask/dataframe/hyperloglog.py of the component HLL Handler. This manipulation causes resourc…	CWE-400 CWE-404 Uncontrolled Resource Consumption Improper Resource Shutdown or Release	CVE-2026-10705	2026-06-5 01:35	2026-06-3	Show	GitHub Exploit DB Packet Storm

2700	3.6	LOW Local	-	-	A weakness has been identified in PaddlePaddle FastDeploy up to 2.4.1. Affected by this issue is the function hash_features of the file fastdeploy/multimodal/hasher.py of the component MultimodalHash…	CWE-327 CWE-328 Use of a Broken or Risky Cryptographic Algorithm Use of Weak Hash	CVE-2026-10800	2026-06-5 01:35	2026-06-4	Show	GitHub Exploit DB Packet Storm