Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 3, 2026, 6:08 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
191391	9.8	緊急 Network	Apache Software Foundation	-	Apache Pony Mail における認証に関する脆弱性	CWE-287 不適切な認証	CVE-2016-4460	2017-09-19 19:08	2016-08-2	Show	GitHub Exploit DB Packet Storm

191392	7.8	重要 Local	Linux	-	Linux Kernel における NULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2017-13686	2017-09-19 18:05	2017-08-17	Show	GitHub Exploit DB Packet Storm

191393	8.8	重要 Network	Orion Soft	-	Bitrix 用 orion.extfeedbackform モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2015-8355	2017-09-19 18:04	2015-12-16	Show	GitHub Exploit DB Packet Storm

191394	6.5	警告 Network	libgig0	-	libgig における境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2017-12954	2017-09-19 17:51	2017-08-23	Show	GitHub Exploit DB Packet Storm

191395	6.5	警告 Network	libgig0	-	libgig における境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2017-12953	2017-09-19 17:51	2017-08-23	Show	GitHub Exploit DB Packet Storm

191396	6.5	警告 Network	libgig0	-	libgig における NULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2017-12952	2017-09-19 17:51	2017-08-23	Show	GitHub Exploit DB Packet Storm

191397	6.5	警告 Network	libgig0	-	libgig におけるバッファエラーの脆弱性	CWE-119 バッファエラー	CVE-2017-12951	2017-09-19 17:50	2017-08-23	Show	GitHub Exploit DB Packet Storm

191398	6.5	警告 Network	libgig0	-	libgig における NULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2017-12950	2017-09-19 17:50	2017-08-23	Show	GitHub Exploit DB Packet Storm

191399	7.5	重要 Network	GNU Project Canonical Fedora Project	-	GNU patch におけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2015-1395	2017-09-19 17:40	2015-01-21	Show	GitHub Exploit DB Packet Storm

191400	5.5	警告 Local	GNU Project Canonical Fedora Project Mageia.Org	-	GNU patch におけるリソース管理に関する脆弱性	CWE-399 リソース管理の問題	CVE-2014-9637	2017-09-19 17:40	2017-08-25	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2131	4.3	MEDIUM Network	-	-	Missing Authorization vulnerability in Wpmet ElementsKit Elementor addons Lite allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects ElementsKit Elementor addon…	CWE-862 Missing Authorization	CVE-2026-49052	2026-05-28 00:16	2026-05-28	Show	GitHub Exploit DB Packet Storm

2132	4.3	MEDIUM Network	-	-	Missing Authorization vulnerability in Prasad Kirpekar WP Meta and Date Remover allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects WP Meta and Date Remover: …	CWE-862 Missing Authorization	CVE-2026-49051	2026-05-28 00:16	2026-05-28	Show	GitHub Exploit DB Packet Storm

2133	4.3	MEDIUM Network	-	-	Missing Authorization vulnerability in DearHive DearFlip allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects DearFlip: from n/a through 2.4.27.	CWE-862 Missing Authorization	CVE-2026-49047	2026-05-28 00:16	2026-05-28	Show	GitHub Exploit DB Packet Storm

2134	8.5	HIGH Network	-	-	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Arjun Thakur Duplicate Page and Post allows Blind SQL Injection. This issue affects Duplicate Pa…	CWE-89 SQL Injection	CVE-2026-49046	2026-05-28 00:16	2026-05-28	Show	GitHub Exploit DB Packet Storm

2135	4.3	MEDIUM Network	-	-	Missing Authorization vulnerability in WP Media Adminimize allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Adminimize: from n/a through 1.11.11.	CWE-862 Missing Authorization	CVE-2026-49045	2026-05-28 00:16	2026-05-28	Show	GitHub Exploit DB Packet Storm

2136	6.5	MEDIUM Network	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Justin Kruit Advanced Custom Fields: Font Awesome Field allows Stored XSS. This issue affects Ad…	CWE-79 Cross-site Scripting	CVE-2026-49044	2026-05-28 00:16	2026-05-28	Show	GitHub Exploit DB Packet Storm

2137	4.3	MEDIUM Network	-	-	Missing Authorization vulnerability in Benbodhi SVG Support allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects SVG Support: from n/a through 2.5.14.	CWE-862 Missing Authorization	CVE-2026-48973	2026-05-28 00:16	2026-05-28	Show	GitHub Exploit DB Packet Storm

2138	6.1	MEDIUM Network	-	-	Agent Zero before version 1.15 contains a stored cross-site scripting vulnerability that allows attackers to execute arbitrary JavaScript in the application origin by serving SVG files through the im…	CWE-79 Cross-site Scripting	CVE-2026-47119	2026-05-28 00:16	2026-05-28	Show	GitHub Exploit DB Packet Storm

2139	6.5	MEDIUM Network	-	-	Agent Zero before version 1.15 contains a path traversal vulnerability that allows unauthenticated attackers to read arbitrary files by supplying crafted paths to the image file serving endpoint, whi…	CWE-22 Path Traversal	CVE-2026-47118	2026-05-28 00:16	2026-05-28	Show	GitHub Exploit DB Packet Storm

2140	9.8	CRITICAL Network	-	-	FACTION is a PenTesting Report Generation and Collaboration Framework. Prior to 1.8.3, AccessControlInterceptor, the authentication gate for all Struts2 actions, unconditionally calls invocation.invo…	CWE-306 Missing Authentication for Critical Function	CVE-2026-44668	2026-05-28 00:16	2026-05-27	Show	GitHub Exploit DB Packet Storm