Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
205611 8.1 重要
Network 		Drupal
Debian		 - Drupal の User モジュールにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-3169 2016-04-15 10:44 2016-02-24 Show GitHub Exploit DB Packet Storm
205612 7.4 重要
Network 		Drupal
Debian		 - Drupal の drupal_goto 関数におけるオープンリダイレクトの脆弱性 CWE-Other
その他 		CVE-2016-3167 2016-04-15 10:44 2016-02-24 Show GitHub Exploit DB Packet Storm
205613 5.9 警告
Network 		Drupal
Debian		 - Drupal の drupal_set_header 関数における CRLF インジェクションの脆弱性 CWE-Other
その他 		CVE-2016-3166 2016-04-15 10:44 2016-02-24 Show GitHub Exploit DB Packet Storm
205614 7.5 重要
Network 		Drupal - Drupal の Form API におけるアクセス制限を回避される脆弱性 CWE-Other
その他 		CVE-2016-3165 2016-04-15 10:44 2016-02-24 Show GitHub Exploit DB Packet Storm
205615 7.4 重要
Network 		Drupal
Debian		 - Drupal におけるオープンリダイレクト攻撃を実行される脆弱性 CWE-Other
その他 		CVE-2016-3164 2016-04-15 10:44 2016-02-24 Show GitHub Exploit DB Packet Storm
205616 6.1 警告
Network 		SilverStripe - SilverStripe CMS & Framework におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2015-8606 2016-04-14 17:48 2015-11-16 Show GitHub Exploit DB Packet Storm
205617 7.3 重要
Network 		Claws Mail - Claws Mail の codeconv.c の conv_euctojis 関数におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2015-8708 2016-04-14 17:21 2015-12-21 Show GitHub Exploit DB Packet Storm
205618 6.1 警告
Network 		Atlassian - Atlassian Confluence におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2015-8398 2016-04-14 16:04 2015-11-16 Show GitHub Exploit DB Packet Storm
205619 6.1 警告
Network 		Apache Software Foundation - Apache Wicket の RadioGroup および CheckBoxMultipleChoice クラスにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2015-7520 2016-04-14 16:03 2015-09-29 Show GitHub Exploit DB Packet Storm
205620 6.1 警告
Network 		Apache Software Foundation - Apache Wicket の org.apache.wicket.extensions.ajax.markup.html.modal.ModalWindow におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2015-5347 2016-04-14 16:03 2015-11-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
161 10.0 CRITICAL
Network 		- - CloudPirates Open Source Helm Charts is a collection of Helm charts. Prior to commit fcf9302, a GitHub Actions workflow (pull-request.yaml) executes attacker-controlled code from fork pull requests i… New CWE-94
Code Injection 		CVE-2026-45131 2026-06-2 03:14 2026-06-2 Show GitHub Exploit DB Packet Storm
162 10.0 CRITICAL
Network 		- - CloudPirates Open Source Helm Charts is a collection of Helm charts. Prior to commit fcf9302, a GitHub Actions workflow (generate-schema.yaml) exposes sensitive credentials (Personal Access Token and… New CWE-94
Code Injection 		CVE-2026-45132 2026-06-2 03:14 2026-06-2 Show GitHub Exploit DB Packet Storm
163 4.6 MEDIUM
Physics 		- - Nextcloud is an open source content collaboration platform. From version 33.0.0 to before version 33.1.0, after unlocking a locked Android phone the back-button could be used to bypass the Nextcloud … New CWE-287
Improper Authentication 		CVE-2026-45153 2026-06-2 03:14 2026-06-2 Show GitHub Exploit DB Packet Storm
164 2.6 LOW
Network 		- - Nextcloud is an open source content collaboration platform. From version 2.6.0 to before version 4.3.0, when a previous collective pages was deleted and the collective was shared view-only, guests wi… New CWE-284
Improper Access Control 		CVE-2026-45154 2026-06-2 03:14 2026-06-2 Show GitHub Exploit DB Packet Storm
165 2.6 LOW
Network 		- - Nextcloud is an open source content collaboration platform. In Nextcloud Server from versions 32.0.0 to before 32.0.7 and 33.0.0 to before 33.0.1, a missing access check on API level allowed to add u… New CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2026-45155 2026-06-2 03:14 2026-06-2 Show GitHub Exploit DB Packet Storm
166 8.1 HIGH
Network 		- - Nextcloud is an open source content collaboration platform. From versions 0.3.0 to before 3.1.0, 5.0.0 to before 5.1.0, and 6.0.0 to before 6.4.0, a missing signature verification in User OIDC allowe… New CWE-287
Improper Authentication 		CVE-2026-45156 2026-06-2 03:14 2026-06-2 Show GitHub Exploit DB Packet Storm
167 6.3 MEDIUM
Network 		- - Nextcloud is an open source content collaboration platform. In Nextcloud Server from versions 32.0.0 to before 32.0.9, and 33.0.0 to before 33.0.3, when a malicious user has access to a file share of… New CWE-284
Improper Access Control 		CVE-2026-45157 2026-06-2 03:14 2026-06-2 Show GitHub Exploit DB Packet Storm
168 3.5 LOW
Network 		- - Nextcloud is an open source content collaboration platform. From versions 1.15.0 to before 1.15.4, 1.16.0 to before 1.16.3, 1.17.0 to before 1.17.1, and 1.18.0 to before 1.18.1, a malicious user with… New CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2026-45159 2026-06-2 03:14 2026-06-2 Show GitHub Exploit DB Packet Storm
169 4.3 MEDIUM
Network 		- - Nextcloud is an open source content collaboration platform. From versions 17.0.0 to before 17.0.15, 18.0.0 to before 18.1.12, 19.0.0 to before 19.1.16, 20.0.0 to before 20.1.11, and 21.0.0 to before … New CWE-284
Improper Access Control 		CVE-2026-45264 2026-06-2 03:14 2026-06-2 Show GitHub Exploit DB Packet Storm
170 3.5 LOW
Network 		- - Nextcloud is an open source content collaboration platform. Prior to versions 21.1.10, 22.0.11, and 23.0.3, a low-privileged user can force other user's microphones to be muted in calls when no High-… New CWE-284
Improper Access Control 		CVE-2026-45266 2026-06-2 03:14 2026-06-2 Show GitHub Exploit DB Packet Storm