Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 11, 2026, 6:13 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
208821 10 危険 Schneider Electric - Schneider Electric Modicon M340 PLC BMXNOx および BMXPx デバイスにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2015-7937 2015-12-22 11:58 2015-12-10 Show GitHub Exploit DB Packet Storm
208822 7.5 危険 Moxa Inc. - Moxa OnCell Central Manager の MessageBrokerServlet サーブレットにおける管理アクセス権を取得される脆弱性 CWE-287
不適切な認証 		CVE-2015-6480 2015-12-22 11:47 2015-11-24 Show GitHub Exploit DB Packet Storm
208823 6.4 警告 SearchBlox Software - SearchBlox における設定ファイルに書き込まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2015-7919 2015-12-22 11:34 2015-12-3 Show GitHub Exploit DB Packet Storm
208824 5 警告 シスコシステムズ - Cisco IOS および IOS XE の IKEv1 ステートマシンにおけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2015-6429 2015-12-22 11:29 2015-12-18 Show GitHub Exploit DB Packet Storm
208825 6.8 警告 アドビシステムズ - Windows および Mac OS X 上で稼働する Adobe Reader および Acrobat の AGM.dll におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2015-8458 2015-12-22 11:22 2015-10-13 Show GitHub Exploit DB Packet Storm
208826 6.9 警告 セイコーエプソン株式会社 - EPSON Network Utility に権限昇格の脆弱性 CWE-264
CWE-Other
CVE-2015-6034 2015-12-22 10:40 2015-10-27 Show GitHub Exploit DB Packet Storm
208827 9.3 危険 マイクロソフト - Microsoft Windows Server 2008 および 2012 の DNS サーバにおける任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2015-6125 2015-12-22 10:20 2015-12-8 Show GitHub Exploit DB Packet Storm
208828 4.3 警告 Apache Software Foundation - Apache Cordova プラグイン cordova-plugin-file-transfer における HTTP ヘッダインジェクションの脆弱性 CWE-20
不適切な入力確認 		CVE-2015-5204 2015-12-21 17:45 2015-09-29 Show GitHub Exploit DB Packet Storm
208829 3.5 注意 Token Insert Entity project - Drupal 用 Token Insert Entity モジュールにおけるアクセス制限を回避される脆弱性 CWE-200
情報漏えい 		CVE-2015-8602 2015-12-21 17:41 2015-12-2 Show GitHub Exploit DB Packet Storm
208830 5 警告 Chat Room project - Drupal 用 Chat Room モジュールにおけるアクセス制限を回避される脆弱性 CWE-200
情報漏えい 		CVE-2015-8601 2015-12-21 17:41 2015-12-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 11, 2026, 5:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
3521 7.8 HIGH
Local 		- - In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Fix double free in rxe_srq_from_init In rxe_srq_from_init(), the queue pointer 'q' is assigned to 'srq->rq.queue' befor… - CVE-2026-45852 2026-05-30 20:17 2026-05-27 Show GitHub Exploit DB Packet Storm
3522 8.8 HIGH
Local 		- - In the Linux kernel, the following vulnerability has been resolved: net: skbuff: propagate shared-frag marker through frag-transfer helpers Two frag-transfer helpers (__pskb_copy_fclone() and skb_s… - CVE-2026-43503 2026-05-30 20:17 2026-05-23 Show GitHub Exploit DB Packet Storm
3523 8.8 HIGH
Network 		mintplexlabs anythingllm AnythingLLM is an application that turns pieces of content into context that any LLM can use as references during chatting. Prior to 1.13.0, the filesystem-search-files agent skill passes its LLM-con… CWE-77
CWE-88
Command Injection
Argument Injection 		CVE-2026-48116 2026-05-30 13:17 2026-05-29 Show GitHub Exploit DB Packet Storm
3524 9.6 CRITICAL
Network 		- - CodeWhale is a DeepSeek + MiMo coding agent in terminal. Prior to 0.8.26, the task_create tool spawns durable sub-agents that inherit two insecure defaults, allow_shell defaults to true (config.rs:14… CWE-94
Code Injection 		CVE-2026-45374 2026-05-30 13:17 2026-05-29 Show GitHub Exploit DB Packet Storm
3525 7.4 HIGH
Network 		- - CodeWhale is a DeepSeek + MiMo coding agent in terminal. Prior to 0.8.26, although SSRF is validated against hostnames that resolve to private IPv6 addresses, when providing the IPV6 in‌‌ URL‌ as htt… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-45373 2026-05-30 13:17 2026-05-29 Show GitHub Exploit DB Packet Storm
3526 - - - LinkAce is a self-hosted archive to collect website links. Prior to 2.5.6, LinkAce contains a stored cross-site scripting vulnerability that allows a low-privilege user to execute arbitrary JavaScrip… CWE-79
Cross-site Scripting 		CVE-2026-45343 2026-05-30 13:17 2026-05-29 Show GitHub Exploit DB Packet Storm
3527 7.4 HIGH
Network 		- - CodeWhale is a DeepSeek + MiMo coding agent in terminal. Prior to 0.8.22, the fetch_url tool validates the initial URL's resolved IP address against a restricted-IP blocklist (is_restricted_ip()) to … CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-45310 2026-05-30 13:17 2026-05-29 Show GitHub Exploit DB Packet Storm
3528 8.1 HIGH
Network 		- - Microsoft UFO open-source framework for intelligent automation across devices and platforms. In 3.0.1-4-ge2626659, Microsoft UFO uses the user-controlled task_name value directly when constructing se… CWE-22
CWE-73
Path Traversal
 External Control of File Name or Path 		CVE-2026-46402 2026-05-30 11:16 2026-05-28 Show GitHub Exploit DB Packet Storm
3529 8.8 HIGH
Network 		- - phpMyFAQ before 4.1.3 contains an insecure direct object reference vulnerability in the admin API user password endpoint that allows authenticated administrators to change any user's password without… CWE-266
 Incorrect Privilege Assignment 		CVE-2026-35671 2026-05-30 11:16 2026-05-29 Show GitHub Exploit DB Packet Storm
3530 4.5 MEDIUM
Local 		- - NanoMQ MQTT Broker (NanoMQ) is an all-around Edge Messaging Platform. Prior to 0.24.14, aio->prov_data is stored as nni_quic_conn* during dialing, but read as ex_quic_conn* during dialer close. This … CWE-843
Type Confusion 		CVE-2026-44640 2026-05-30 07:16 2026-05-30 Show GitHub Exploit DB Packet Storm