Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 16, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
194661 8.2 重要
Network 		オラクル - Oracle E-Business Suite の Oracle CRM Technical Foundation における Preferences に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2017-10143 2017-08-21 15:06 2017-07-18 Show GitHub Exploit DB Packet Storm
194662 7.6 重要
Network 		オラクル - Oracle E-Business Suite の Oracle iStore における User Management に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2017-10130 2017-08-21 15:06 2017-07-18 Show GitHub Exploit DB Packet Storm
194663 8.2 重要
Network 		オラクル - Oracle E-Business Suite の Oracle Common Applications における CRM User Management Framework に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2017-10113 2017-08-21 15:06 2017-07-18 Show GitHub Exploit DB Packet Storm
194664 8.2 重要
Network 		オラクル - Oracle E-Business Suite の Oracle iStore における User Registration に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2017-10112 2017-08-21 15:06 2017-07-18 Show GitHub Exploit DB Packet Storm
194665 7.7 重要
Network 		オラクル - Oracle Enterprise Manager Grid Control の Enterprise Manager Base Platform における UI Framework に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2017-10091 2017-08-21 15:05 2017-07-18 Show GitHub Exploit DB Packet Storm
194666 9.9 緊急
Network 		オラクル - Oracle Database Server の OJVM における脆弱性 CWE-284
不適切なアクセス制御 		CVE-2017-10202 2017-08-21 14:29 2017-07-18 Show GitHub Exploit DB Packet Storm
194667 1.9
Local 		オラクル - Oracle Database Server の RDBMS Security における脆弱性 CWE-284
不適切なアクセス制御 		CVE-2017-10120 2017-08-21 14:29 2017-07-18 Show GitHub Exploit DB Packet Storm
194668 8.2 重要
Network 		オラクル - Oracle Fusion Middleware の Oracle WebCenter Content における Content Server に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2017-10075 2017-08-21 14:14 2017-07-18 Show GitHub Exploit DB Packet Storm
194669 4.8 警告
Network 		オラクル - Oracle Fusion Middleware の Oracle WebLogic Server における Web Services に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2017-10063 2017-08-21 14:14 2017-07-18 Show GitHub Exploit DB Packet Storm
194670 7.6 重要
Network 		オラクル - Oracle Fusion Middleware の BI Publisher における Mobile Service に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2017-10059 2017-08-21 14:14 2017-07-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
651 8.8 HIGH
Network 		- - OpenClaw before 2026.5.27 contains an arbitrary code execution vulnerability in skill install flows where workspace .env files can override the Homebrew executable selection. Attackers with access to… CWE-426
 Untrusted Search Path 		CVE-2026-53819 2026-06-13 00:58 2026-06-12 Show GitHub Exploit DB Packet Storm
652 8.8 HIGH
Network 		microsoft sharepoint_server Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to elevate privileges over a network. CWE-502
 Deserialization of Untrusted Data 		CVE-2026-45484 2026-06-13 00:57 2026-06-10 Show GitHub Exploit DB Packet Storm
653 3.5 LOW
Network 		- - The Secure Copy Content Protection and Content Locking WordPress plugin before 5.1.5 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform… - CVE-2026-9269 2026-06-13 00:57 2026-06-12 Show GitHub Exploit DB Packet Storm
654 9.8 CRITICAL
Network 		- - ClipBucket v5 is an open source video sharing platform. Prior to version 5.5.3 - #140, ClipBucket's Remote Play feature allows any authenticated user to add a video by importing an external URL as th… CWE-78
OS Command  		CVE-2026-42846 2026-06-13 00:56 2026-06-12 Show GitHub Exploit DB Packet Storm
655 9.8 CRITICAL
Network 		- - ClipBucket v5 is an open source video sharing platform. Prior to version 5.5.3 - #129, the actions/progress_video.php endpoint is vulnerable to blind SQL injection. Any unauthenticated user can explo… CWE-89
SQL Injection 		CVE-2026-45060 2026-06-13 00:56 2026-06-12 Show GitHub Exploit DB Packet Storm
656 4.3 MEDIUM
Network 		- - ClipBucket v5 is an open source video sharing platform. Prior to version 5.5.3 - #141, ClipBucket v5 contains an improper neutralization of SQL wildcard characters in the subtitle editing endpoint. A… CWE-155
CWE-943
CVE-2026-49482 2026-06-13 00:56 2026-06-12 Show GitHub Exploit DB Packet Storm
657 - - - Quest Bot is an opensource Discord Bot. Prior to version 1.1.6, the purge and slowmode commands check only guild-level permissions on the invoking member. They do not check the member’s effective per… CWE-863
 Incorrect Authorization 		CVE-2026-47195 2026-06-13 00:56 2026-06-12 Show GitHub Exploit DB Packet Storm
658 - - - Quest Bot is an opensource Discord Bot. Prior to version 1.1.6, the latest release suppresses mentions when creating, unbanning, unwarning, kicking, muting, and unmuting, but stored warning reasons a… CWE-116
 Improper Encoding or Escaping of Output 		CVE-2026-48485 2026-06-13 00:56 2026-06-12 Show GitHub Exploit DB Packet Storm
659 - - - Quest Bot is an opensource Discord Bot. Prior to version 1.1.8, any user who can access the ticket panel can repeatedly create new ticket channels. The latest release still creates a new database tic… CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2026-49347 2026-06-13 00:56 2026-06-12 Show GitHub Exploit DB Packet Storm
660 - - - Frappe is a full-stack web application framework. Prior to versions 15.106.0 and 16.16.0, there is a possible SQL Injection via get_blog_list. This issue has been patched in versions 15.106.0 and 16.… CWE-89
SQL Injection 		CVE-2026-41581 2026-06-13 00:56 2026-06-13 Show GitHub Exploit DB Packet Storm