Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 16, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1671	7.5	重要 Network	Progress Software Corporation	Sitefinity	Progress Software CorporationのSitefinityにおける認証情報の不十分な保護に関する脆弱性	CWE-522 認証情報の不十分な保護	CVE-2026-7312	2026-06-8 11:44	2026-06-2	Show	GitHub Exploit DB Packet Storm

1672	4.9	警告 Network	Progress Software Corporation	Sitefinity	Progress Software CorporationのSitefinityにおける認証情報の不十分な保護に関する脆弱性	CWE-522 認証情報の不十分な保護	CVE-2026-7313	2026-06-8 11:44	2026-06-2	Show	GitHub Exploit DB Packet Storm

1673	8.8	重要 Network	SmarterTools Inc.	SmarterMail	SmarterTools Inc.のSmarterMailにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-7807	2026-06-8 11:44	2026-05-8	Show	GitHub Exploit DB Packet Storm

1674	5.5	警告 Local	Python Packaging Authority	pip	Python Packaging Authorityのpipにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-8643	2026-06-8 11:44	2026-06-1	Show	GitHub Exploit DB Packet Storm

1675	9.1	緊急 Network	IBM	IBM WebSphere Application Server	IBMのIBM WebSphere Application Serverにおけるスプーフィングによる認証回避に関する脆弱性	CWE-290 スプーフィングによる認証回避	CVE-2026-8644	2026-06-8 11:44	2026-06-1	Show	GitHub Exploit DB Packet Storm

1676	9.8	緊急 Network	F5 Networks	njs	F5 Networksのnjsにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-8711	2026-06-8 11:44	2026-05-19	Show	GitHub Exploit DB Packet Storm

1677	9	緊急 Network	IBM	IBM WebSphere Application Server	IBMのIBM WebSphere Application Serverにおけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2026-9311	2026-06-8 11:44	2026-06-1	Show	GitHub Exploit DB Packet Storm

1678	9	緊急 Network	IBM	IBM WebSphere Application Server	IBMのIBM WebSphere Application Serverにおける信頼できないデータのデシリアライゼーションに関する脆弱性	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2026-9319	2026-06-8 11:44	2026-06-1	Show	GitHub Exploit DB Packet Storm

1679	8.5	重要 Network	IBM	IBM WebSphere Application Server	IBMのIBM WebSphere Application Serverにおける信頼できないデータのデシリアライゼーションに関する脆弱性	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2026-9330	2026-06-8 11:44	2026-06-1	Show	GitHub Exploit DB Packet Storm

1680	-	-	（複数のベンダ）	（複数の製品）	Securly Chrome Extensionにおける複数の脆弱性	-	-	2026-06-5 13:34	2026-06-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2791	8.2	HIGH Network	nextcloud	tables	Nextcloud is an open source content collaboration platform. From versions 0.7.0 to before 0.7.7, 0.8.0 to before 0.8.10, 0.9.0 to before 0.9.8, and 1.0.0 to before 1.0.4, an authenticated attacker wi…	CWE-89 SQL Injection	CVE-2026-45545	2026-06-5 01:50	2026-06-2	Show	GitHub Exploit DB Packet Storm

2792	4.3	MEDIUM Network	nextcloud	tables	Nextcloud is an open source content collaboration platform. From version 0.8.0 to before version 1.0.4, the view filter criteria is exposed to users with read-only permissions in Nextcloud Tables. Th…	CWE-1230 Exposure of Sensitive Information Through Metadata	CVE-2026-45544	2026-06-5 01:47	2026-06-2	Show	GitHub Exploit DB Packet Storm

2793	5.3	MEDIUM Network	nextcloud	forms	Nextcloud is an open source content collaboration platform. From version 4.3.0 to before version 5.2.7, a removed collaborator retains unauthorized read access to uploaded respondent files for the af…	CWE-552 Files or Directories Accessible to External Parties	CVE-2026-45543	2026-06-5 01:43	2026-06-2	Show	GitHub Exploit DB Packet Storm

2794	5.3	MEDIUM Network	-	-	Impact: The morgan logging middleware's :remote-user token extracts the Basic auth username from the Authorization request header and writes it to the log stream without neutralizing control characte…	CWE-117 Improper Output Neutralization for Logs	CVE-2026-5078	2026-06-5 01:40	2026-06-3	Show	GitHub Exploit DB Packet Storm

2795	-		-	-	SWUpdate before 2026.05 is affected by a time-of-check time-of-use (TOCTOU) race condition that allows local unprivileged attackers to escalate privileges to root or install untrusted contents using …	CWE-367 Time-of-check Time-of-use (TOCTOU) Race Condition	CVE-2025-41259	2026-06-5 01:40	2026-06-3	Show	GitHub Exploit DB Packet Storm

2796	7.2	HIGH Network	-	-	There is a vulnerability in the Supermicro BMC SMTP service at Supermicro AS-2115HS-TNR. An attacker may obtain administrator privileges and inject specially crafted characters into the SMTP servic…	CWE-78 OS Command	CVE-2026-3820	2026-06-5 01:40	2026-06-4	Show	GitHub Exploit DB Packet Storm

2797	6.3	MEDIUM Network	-	-	A vulnerability was identified in wonderwhy-er DesktopCommanderMCP 0.2.37. This affects the function readFileFromUrl of the file src/tools/filesystem.ts of the component read_file. Such manipulation …	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-10690	2026-06-5 01:37	2026-06-3	Show	GitHub Exploit DB Packet Storm

2798	-		-	-	An HTML injection vulnerability in the notification email for "Slow Redirect" and "Cloned Website" Canarytokens exists in Thinkst Applied Research Canarytokens, enabling Interface Manipulation, Cross…	CWE-74 Injection	CVE-2026-10729	2026-06-5 01:37	2026-06-3	Show	GitHub Exploit DB Packet Storm

2799	7.3	HIGH Network	-	-	A vulnerability was found in crmeb crmeb_java 1.4. Affected is the function RestTemplate.getForEntity of the file crmeb-common/src/main/java/com/zbkj/common/utils/RestTemplateUtil.java of the compone…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-10771	2026-06-5 01:37	2026-06-4	Show	GitHub Exploit DB Packet Storm

2800	6.3	MEDIUM Network	-	-	A security vulnerability has been detected in EIPStackGroup OpENer up to 2.3.0. Affected is the function CreateMessageRouterRequestStructure of the file cipmessagerouter.c of the component SendRRData…	CWE-119 CWE-416 Incorrect Access of Indexable Resource ('Range Error') Use After Free	CVE-2026-10703	2026-06-5 01:35	2026-06-3	Show	GitHub Exploit DB Packet Storm