Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
204051 2.7
Network 		IBM - IBM Security QRadar SIEM における任意のファイルを読まれる脆弱性 CWE-Other
その他 		CVE-2016-2868 2016-07-8 16:04 2016-06-21 Show GitHub Exploit DB Packet Storm
204052 7 重要
Local 		IBM - IBM InfoSphere Streams および IBM Streams における root のグループ権限を取得される脆弱性 CWE-Other
その他 		CVE-2016-2867 2016-07-8 16:04 2016-05-20 Show GitHub Exploit DB Packet Storm
204053 8 重要
Network 		IBM - IBM WebSphere Commerce におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2016-2863 2016-07-8 16:04 2016-06-28 Show GitHub Exploit DB Packet Storm
204054 3.7
Network 		IBM - IBM WebSphere eXtreme Scale における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2016-2861 2016-07-8 16:04 2016-05-27 Show GitHub Exploit DB Packet Storm
204055 6.1 警告
Network 		IBM - IBM WebSphere eXtreme Scale における CRLF インジェクションの脆弱性 CWE-Other
その他 		CVE-2016-0400 2016-07-8 16:04 2016-05-27 Show GitHub Exploit DB Packet Storm
204056 5.4 警告
Network 		IBM - IBM Maximo Asset Management におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-0399 2016-07-8 16:04 2016-06-17 Show GitHub Exploit DB Packet Storm
204057 5.4 警告
Network 		IBM - IBM TRIRIGA Application Platform におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-0387 2016-07-8 16:04 2016-05-13 Show GitHub Exploit DB Packet Storm
204058 8 重要
Network 		IBM - IBM TRIRIGA Application Platform におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2016-0386 2016-07-8 16:04 2016-04-20 Show GitHub Exploit DB Packet Storm
204059 6.1 警告
Network 		IBM - IBM WebSphere Application Server における CRLF インジェクションの脆弱性 CWE-Other
その他 		CVE-2016-0359 2016-07-8 16:04 2016-06-23 Show GitHub Exploit DB Packet Storm
204060 5.4 警告
Network 		IBM - IBM Cognos Business Intelligence におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-0346 2016-07-8 16:04 2016-06-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1741 4.3 MEDIUM
Network 		- - The PDF Embedder plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 4.9.3 via the enqueue_block_assets. This makes it possible for authenticate… CWE-200
Information Exposure 		CVE-2026-7526 2026-05-28 22:45 2026-05-28 Show GitHub Exploit DB Packet Storm
1742 5.3 MEDIUM
Network 		- - The Appointment Booking Calendar — Simply Schedule Appointments Booking Plugin plugin for WordPress is vulnerable to Missing Authorization in all versions up to, and including, 1.6.11.8 due to the pl… CWE-862
 Missing Authorization 		CVE-2026-6937 2026-05-28 22:45 2026-05-28 Show GitHub Exploit DB Packet Storm
1743 6.5 MEDIUM
Network 		- - The Photo Gallery by 10Web – Mobile-Friendly Image Gallery plugin for WordPress is vulnerable to time-based blind SQL Injection via the 'order_by' parameter in all versions up to, and including, 1.8.… CWE-89
SQL Injection 		CVE-2026-7048 2026-05-28 22:45 2026-05-28 Show GitHub Exploit DB Packet Storm
1744 4.3 MEDIUM
Network 		- - The Visualizer: Tables and Charts Manager for WordPress plugin for WordPress is vulnerable to Missing Authorization in all versions up to, and including, 3.11.14. This is due to a missing capability … CWE-862
 Missing Authorization 		CVE-2026-8689 2026-05-28 22:45 2026-05-28 Show GitHub Exploit DB Packet Storm
1745 4.3 MEDIUM
Network 		- - The Equalize Digital Accessibility Checker – WCAG, ADA, EAA and Section 508 compliance plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 1.42.0. This is… CWE-862
 Missing Authorization 		CVE-2026-9015 2026-05-28 22:45 2026-05-28 Show GitHub Exploit DB Packet Storm
1746 4.3 MEDIUM
Network 		- - A flaw was found in Keycloak. An authenticated user with existing organization membership can exploit this flaw by accessing user-facing APIs, such as the account API or by requesting an OpenID Conne… CWE-863
 Incorrect Authorization 		CVE-2026-9791 2026-05-28 22:44 2026-05-28 Show GitHub Exploit DB Packet Storm
1747 6.5 MEDIUM
Network 		- - A flaw was found in Keycloak's Client Policies, specifically within the `org.keycloak.protocol.oidc` component. When certain condition providers (client-type, client-roles, client-attributes, client-… CWE-280
Improper Handling of Insufficient Permissions or Privileges  		CVE-2026-9792 2026-05-28 22:44 2026-05-28 Show GitHub Exploit DB Packet Storm
1748 5.9 MEDIUM
Network 		- - A flaw was found in Keycloak. When a JSON Web Encryption (JWE) encrypted request object is submitted, Keycloak may incorrectly process unsigned claims if the decrypted content is raw JSON, bypassing … CWE-347
 Improper Verification of Cryptographic Signature 		CVE-2026-9793 2026-05-28 22:44 2026-05-28 Show GitHub Exploit DB Packet Storm
1749 5.3 MEDIUM
Network 		- - A flaw was found in Keycloak. A remote, unauthenticated attacker can exploit this vulnerability by sending specially crafted SOAP requests to the SAML ECP (Security Assertion Markup Language Enhanced… CWE-209
Information Exposure Through an Error Message 		CVE-2026-9794 2026-05-28 22:44 2026-05-28 Show GitHub Exploit DB Packet Storm
1750 7.3 HIGH
Network 		- - A flaw was found in Keycloak's Fine-Grained Admin Permissions (FGAPv2) feature. An administrator with limited client management permissions can exploit this vulnerability to assign any realm role, in… CWE-266
 Incorrect Privilege Assignment 		CVE-2026-9795 2026-05-28 22:44 2026-05-28 Show GitHub Exploit DB Packet Storm