Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 23, 2026, 10:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
189261 8.8 重要
Network 		Geomview - Geomview におけるインジェクションに関する脆弱性 CWE-74
インジェクション 		CVE-2017-17530 2018-01-17 16:58 2017-12-14 Show GitHub Exploit DB Packet Storm
189262 8.8 重要
Network 		AbiSource - AbiWord におけるインジェクションに関する脆弱性 CWE-74
インジェクション 		CVE-2017-17529 2018-01-17 16:55 2017-12-14 Show GitHub Exploit DB Packet Storm
189263 8.8 重要
Network 		ScummVM - ScummVM におけるインジェクションに関する脆弱性 CWE-74
インジェクション 		CVE-2017-17528 2018-01-17 16:55 2017-12-14 Show GitHub Exploit DB Packet Storm
189264 9.8 緊急
Network 		PHP Scripts Mall Pvt Ltd - Car Rental Script における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2017-17637 2018-01-17 16:52 2017-12-10 Show GitHub Exploit DB Packet Storm
189265 9.8 緊急
Network 		PHP Scripts Mall Pvt Ltd - MLM Forced Matrix における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2017-17636 2018-01-17 16:52 2017-12-10 Show GitHub Exploit DB Packet Storm
189266 9.8 緊急
Network 		PHP Scripts Mall Pvt Ltd - MLM Forex Market Plan Script における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2017-17635 2018-01-17 16:52 2017-12-10 Show GitHub Exploit DB Packet Storm
189267 9.8 緊急
Network 		PHP Scripts Mall Pvt Ltd - Single Theater Booking Script における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2017-17634 2018-01-17 16:52 2017-12-9 Show GitHub Exploit DB Packet Storm
189268 9.8 緊急
Network 		PHP Scripts Mall Pvt Ltd - Multiplex Movie Theater Booking Script における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2017-17633 2018-01-17 16:52 2017-12-9 Show GitHub Exploit DB Packet Storm
189269 9.8 緊急
Network 		PHP Scripts Mall Pvt Ltd - Responsive Events & Movie Ticket Booking Script における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2017-17632 2018-01-17 16:52 2017-12-9 Show GitHub Exploit DB Packet Storm
189270 9.8 緊急
Network 		PHP Scripts Mall Pvt Ltd - Multireligion Responsive Matrimonial における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2017-17631 2018-01-17 16:52 2017-12-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 23, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1691 8.3 HIGH
Network 		- - Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. In versions 8.2.6.4 and prior, there is an authentication bypass vulnerability via 'api' substring in URL + unau… CWE-287
CWE-306
CWE-697
Improper Authentication
Missing Authentication for Critical Function
 Incorrect Comparison 		CVE-2026-45567 2026-06-11 02:16 2026-06-11 Show GitHub Exploit DB Packet Storm
1692 6.1 MEDIUM
Network 		- - Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. In versions 8.2.6.4 and prior, the login flow allow-lists next URLs by rejecting strings containing https:// or … CWE-601
Open Redirect 		CVE-2026-45566 2026-06-11 02:16 2026-06-11 Show GitHub Exploit DB Packet Storm
1693 6.5 MEDIUM
Network 		- - Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. In versions 8.2.6.4 and prior, the /smon/agent/{version,uptime,status,checks}/<server_ip> family of routes takes… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-45561 2026-06-11 02:16 2026-06-11 Show GitHub Exploit DB Packet Storm
1694 6.1 MEDIUM
Network 		- - Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. In versions 8.2.6.4 and prior, wrap_line (app/modules/common/common.py:181-186) and highlight_word (app/modules/… CWE-79
Cross-site Scripting 		CVE-2026-45560 2026-06-11 02:16 2026-06-11 Show GitHub Exploit DB Packet Storm
1695 9.1 CRITICAL
Network 		- - Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. In versions 8.2.6.4 and prior, PUT /smon/check (app/routes/smon/routes.py:117-138) gates only on roxywi_common.c… CWE-639
CWE-862
CWE-863
 Authorization Bypass Through User-Controlled Key
 Missing Authorization
 Incorrect Authorization 		CVE-2026-45550 2026-06-11 02:16 2026-06-11 Show GitHub Exploit DB Packet Storm
1696 8.5 HIGH
Network 		- - Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. In versions 8.2.6.4 and prior, agent_action (app/routes/smon/agent_routes.py:166-179) has decorators @bp.post('/… CWE-862
CWE-863
 Missing Authorization
 Incorrect Authorization 		CVE-2026-45549 2026-06-11 02:16 2026-06-11 Show GitHub Exploit DB Packet Storm
1697 7.5 HIGH
Network 		- - Shenzhen Tenda Technology Co., Ltd Tenda W15E v15.11.0.10 was discovered to contain a buffer overflow in the picCropName parameter of the formCropAndSetWewifiPic function. This vulnerability allows a… CWE-121
Stack-based Buffer Overflow 		CVE-2026-36813 2026-06-11 02:16 2026-06-10 Show GitHub Exploit DB Packet Storm
1698 7.5 HIGH
Network 		- - Shenzhen Tenda Technology Co., Ltd Tenda W15E v15.11.0.10 was discovered to contain a buffer overflow in the webAuthUserPwd parameter of the formModifyWebAuthUser function. This vulnerability allows … CWE-121
Stack-based Buffer Overflow 		CVE-2026-36806 2026-06-11 02:16 2026-06-10 Show GitHub Exploit DB Packet Storm
1699 7.5 HIGH
Network 		- - Shenzhen Tenda Technology Co., Ltd Tenda G0 v15.11.0.5 was discovered to contain multiple buffer overflows in the Saveqqlist function via the qqStr and markStr parameters. These vulnerabilities allow… CWE-121
Stack-based Buffer Overflow 		CVE-2026-36805 2026-06-11 02:16 2026-06-10 Show GitHub Exploit DB Packet Storm
1700 - - - Insufficient input validation in NETGEAR JR6150 (AC750 WiFi Router 802.11ac Dual Band Gigabit released in 2014) allows users connected to the local WiFi Networks to execute operating system commands.… CWE-20
 Improper Input Validation  		CVE-2026-0419 2026-06-11 02:16 2026-06-10 Show GitHub Exploit DB Packet Storm