Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
205601 7.4 重要
Network 		ヒューレット・パッカード・エンタープライズ - HPE Universal CMDB Foundation における重要な情報を取得される脆弱性 CWE-Other
その他 		CVE-2016-2001 2016-04-26 15:42 2016-04-6 Show GitHub Exploit DB Packet Storm
205602 8.6 重要
Network 		オラクル - Oracle Fusion Middleware の Oracle Outside In Technology における Outside In Filters に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-3455 2016-04-26 14:05 2016-04-19 Show GitHub Exploit DB Packet Storm
205603 6.1 警告
Network 		オラクル - Oracle Fusion Middleware の Oracle WebLogic Server における Console に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-3416 2016-04-26 14:05 2016-04-19 Show GitHub Exploit DB Packet Storm
205604 6.1 警告
Network 		オラクル - Oracle Fusion Middleware の Oracle WebLogic Server における Console に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-0700 2016-04-26 14:05 2016-04-19 Show GitHub Exploit DB Packet Storm
205605 5.4 警告
Network 		オラクル - Oracle Fusion Middleware の Oracle WebLogic Server における Console に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-0696 2016-04-26 14:05 2016-04-19 Show GitHub Exploit DB Packet Storm
205606 3.7
Network 		オラクル - Oracle Fusion Middleware の Oracle WebLogic Server における Core Components に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-0688 2016-04-26 14:05 2016-04-19 Show GitHub Exploit DB Packet Storm
205607 6.1 警告
Network 		オラクル - Oracle Fusion Middleware の Oracle WebLogic Server における Console に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-0675 2016-04-26 14:05 2016-04-19 Show GitHub Exploit DB Packet Storm
205608 3.7
Network 		オラクル - Oracle Fusion Middleware の Oracle HTTP Server における OSSL Module に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-0671 2016-04-26 14:05 2016-04-19 Show GitHub Exploit DB Packet Storm
205609 9.8 緊急
Network 		オラクル - Oracle Fusion Middleware の Oracle WebLogic Server における Java Messaging Service に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-0638 2016-04-26 14:05 2016-04-19 Show GitHub Exploit DB Packet Storm
205610 6.1 警告
Network 		オラクル - Oracle Fusion Middleware の Oracle Business Intelligence Enterprise Edition における Analytics Scorecard に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-0479 2016-04-26 14:05 2016-04-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
701 4.3 MEDIUM
Network 		jetbrains teamcity In JetBrains TeamCity before 2026.1 credentials parameters were exposed via parameter autocompletion Update CWE-862
 Missing Authorization 		CVE-2026-49378 2026-06-2 21:38 2026-05-30 Show GitHub Exploit DB Packet Storm
702 6.5 MEDIUM
Network 		jetbrains teamcity In JetBrains TeamCity before 2026.1 credentials could be exposed in thread names Update CWE-522
 Insufficiently Protected Credentials 		CVE-2026-49379 2026-06-2 21:37 2026-05-30 Show GitHub Exploit DB Packet Storm
703 6.1 MEDIUM
Network 		jetbrains teamcity In JetBrains TeamCity before 2026.1 open redirect in the SAML plugin was possible Update CWE-601
Open Redirect 		CVE-2026-49380 2026-06-2 21:37 2026-05-30 Show GitHub Exploit DB Packet Storm
704 4.8 MEDIUM
Network 		jetbrains teamcity In JetBrains TeamCity before 2026.1 stored XSS on the SAML login page was possible Update CWE-79
Cross-site Scripting 		CVE-2026-49381 2026-06-2 21:36 2026-05-30 Show GitHub Exploit DB Packet Storm
705 5.5 MEDIUM
Local 		synology storage_manager A use of get request method with sensitive query strings vulnerability in volume encryption of Synology Storage Manager package before 1.0.1-1100 allows local users on Windows to obtain sensitive inf… Update CWE-598
Information Exposure Through Query Strings in GET Request  		CVE-2026-2237 2026-06-2 19:16 2026-05-27 Show GitHub Exploit DB Packet Storm
706 7.5 HIGH
Network 		jetbrains teamcity In JetBrains TeamCity before 2026.1, 2025.11.5 unauthenticated SSRF via build status was possible Update CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-49372 2026-06-2 13:07 2026-05-30 Show GitHub Exploit DB Packet Storm
707 8.2 HIGH
Network 		jetbrains teamcity In JetBrains TeamCity before 2026.1.1 reflected XSS in the keyword filter was possible Update CWE-79
Cross-site Scripting 		CVE-2026-49371 2026-06-2 13:06 2026-05-30 Show GitHub Exploit DB Packet Storm
708 7.5 HIGH
Network 		- - FreeScout is a free help desk and shared inbox built with PHP's Laravel framework. Prior to 1.8.220, the email processing pipeline in FreeScout's FetchEmails command has two code paths for identifyin… Update CWE-290
CWE-345
 Authentication Bypass by Spoofing
 Insufficient Verification of Data Authenticity 		CVE-2026-47123 2026-06-2 12:16 2026-05-30 Show GitHub Exploit DB Packet Storm
709 8.2 HIGH
Network 		- - form-data-objectizer converts FormData to object. Prior to 1.0.1, form-data-objectizer walks bracket-notation form keys (e.g. name[sub]) into nested objects without filtering __proto__, constructor, … Update CWE-1321
 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') 		CVE-2026-46510 2026-06-2 12:16 2026-05-29 Show GitHub Exploit DB Packet Storm
710 8.8 HIGH
Network 		- - Dokploy is a free, self-hostable Platform as a Service (PaaS). In 0.29.0 and earlier, the deleteRegistry function in Dokploy (packages/server/src/services/registry.ts) executes docker logout ${respon… Update CWE-78
OS Command  		CVE-2026-45662 2026-06-2 12:16 2026-05-30 Show GitHub Exploit DB Packet Storm