Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 7, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
194461	6.5	警告 Network	シスコシステムズ	-	Cisco FirePOWER Management Center におけるユーザの情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2017-6673	2017-07-7 14:34	2017-06-7	Show	GitHub Exploit DB Packet Storm

194462	7.5	重要 Network	シスコシステムズ	-	Cisco Email Security Appliance 用 Cisco AsyncOS ソフトウェアにおけるデバイス上で設定されたフィルタを回避される脆弱性	CWE-20 不適切な入力確認	CVE-2017-6671	2017-07-7 14:34	2017-06-7	Show	GitHub Exploit DB Packet Storm

194463	7.8	重要 Local	マイクロソフト	-	Microsoft IME における任意の DLL 読み込みに関する脆弱性	CWE-Other その他	CVE-2016-7221	2017-07-7 14:19	2016-11-8	Show	GitHub Exploit DB Packet Storm

194464	6.5	警告 Network	シスコシステムズ	-	Cisco Elastic Services Controller の Web インターフェースにおけるシステム資格情報にアクセスされる脆弱性	CWE-200 情報漏えい	CVE-2017-6697	2017-07-7 11:51	2017-06-7	Show	GitHub Exploit DB Packet Storm

194465	5.5	警告 Local	シスコシステムズ	-	Cisco Elastic Services Controller のファイルシステムにおけるユーザの資格情報へのアクセス権を取得される脆弱性	CWE-200 情報漏えい	CVE-2017-6696	2017-07-7 11:51	2017-06-7	Show	GitHub Exploit DB Packet Storm

194466	5.5	警告 Local	シスコシステムズ	-	Cisco Elastic Services Controller の ConfD サーバコンポーネントにおけるファイルシステムに格納された情報にアクセスされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2017-6693	2017-07-7 11:51	2017-06-7	Show	GitHub Exploit DB Packet Storm

194467	6.5	警告 Network	シスコシステムズ	-	Cisco Elastic Services Controller の ConfD CLI における重要な情報にアクセスされる脆弱性	CWE-200 情報漏えい	CVE-2017-6691	2017-07-7 11:50	2017-06-7	Show	GitHub Exploit DB Packet Storm

194468	8.8	重要 Network	シスコシステムズ	-	Cisco Elastic Services Controller の ConfD CLI における管理者としてログインされる脆弱性	CWE-255 証明書・パスワード管理	CVE-2017-6689	2017-07-7 11:50	2017-06-7	Show	GitHub Exploit DB Packet Storm

194469	8.8	重要 Network	シスコシステムズ	-	Cisco Elastic Services Controller における Linux root ユーザとしてログインされる脆弱性	CWE-255 証明書・パスワード管理	CVE-2017-6688	2017-07-7 11:50	2017-06-7	Show	GitHub Exploit DB Packet Storm

194470	7.8	重要 Local	Google	-	Linux Kernel を使用している CAF リリースの Android における二重解放に関する脆弱性	CWE-415 二重解放	CVE-2017-7373	2017-07-6 17:14	2017-06-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2751	10.0	CRITICAL Network	free5gc	free5gc	free5GC is an open-source implementation of the 5G core network. Prior to 4.2.2, free5GC's SMF mounts the UPI management route group without OAuth2/bearer-token authorization middleware. A network at…	CWE-306 CWE-862 Missing Authentication for Critical Function Missing Authorization	CVE-2026-44329	2026-05-29 01:23	2026-05-28	Show	GitHub Exploit DB Packet Storm

2752	8.8	HIGH Network	-	-	A weakness has been identified in UTT HiPER 1200GW up to 2.5.3-170306. Affected is an unknown function of the file /goform/formPptpClientConfig of the component Web Management Interface. This manipul…	CWE-119 CWE-121 Incorrect Access of Indexable Resource ('Range Error') Stack-based Buffer Overflow	CVE-2026-9628	2026-05-29 01:16	2026-05-27	Show	GitHub Exploit DB Packet Storm

2753	6.3	MEDIUM Network	-	-	A vulnerability was found in itsourcecode Courier Management System 1.0. The affected element is an unknown function of the file /parcel_list.php. Performing a manipulation of the argument s results …	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-9607	2026-05-29 01:16	2026-05-27	Show	GitHub Exploit DB Packet Storm

2754	4.3	MEDIUM Network	-	-	A weakness has been identified in SourceCodester CET Automated Grading System with AI Predictive Analytics 1.0. This impacts an unknown function of the file /index.php of the component SQL Handler. E…	CWE-200 CWE-209 Information Exposure Information Exposure Through an Error Message	CVE-2026-9583	2026-05-29 01:16	2026-05-27	Show	GitHub Exploit DB Packet Storm

2755	7.3	HIGH Network	-	-	A vulnerability has been found in sambitraj STUDENT-MANAGEMENT-SYSTEM up to 56ba287f2e9031523ccb4244cb6e3fe530e4e5d5. The affected element is an unknown function of the component Dashboard. Such mani…	CWE-266 CWE-284 Incorrect Privilege Assignment Improper Access Control	CVE-2026-9562	2026-05-29 01:16	2026-05-27	Show	GitHub Exploit DB Packet Storm

2756	6.3	MEDIUM Network	-	-	A vulnerability was identified in Totolink CA750-PoE 6.2c.510. This affects the function setWebWlanIdx of the file /cgi-bin/cstecgi.cgi of the component Setting Handler. Such manipulation of the argu…	CWE-77 CWE-78 Command Injection OS Command	CVE-2026-9511	2026-05-29 01:16	2026-05-26	Show	GitHub Exploit DB Packet Storm

2757	4.8	MEDIUM Network	-	-	Crypt::ScryptKDF versions through 0.010 for Perl uses insecure random number source when no CSPRNG module is available. The random_bytes function fell back to using the built-in rand() function when…	CWE-338 Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)	CVE-2026-8647	2026-05-29 01:16	2026-05-27	Show	GitHub Exploit DB Packet Storm

2758	7.5	HIGH Network	-	-	Budibase is an open-source low-code platform. Prior to 3.39.0, the webhook schema-building endpoint is registered under builderRoutes, but the generic authorization middleware skips authorization for…	CWE-862 Missing Authorization	CVE-2026-48151	2026-05-29 01:16	2026-05-28	Show	GitHub Exploit DB Packet Storm

2759	8.1	HIGH Network	-	-	Budibase is an open-source low-code platform. Prior to 3.39.0, the Budibase Text component renders markdown by assigning marked.parse(markdown) straight to innerHTML with no sanitizer (packages/bbui/…	CWE-79 Cross-site Scripting	CVE-2026-48149	2026-05-29 01:16	2026-05-28	Show	GitHub Exploit DB Packet Storm

2760	7.7	HIGH Network	-	-	Budibase is an open-source low-code platform. Prior to 3.39.0, the OAuth2 token fetch function in packages/server/src/sdk/workspace/oauth2/utils.ts uses raw fetch(config.url) with no SSRF protection.…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-48146	2026-05-29 01:16	2026-05-28	Show	GitHub Exploit DB Packet Storm