Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 8, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
210671	4.9	警告	pimcore	-	pimcore におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2015-4425	2015-08-24 15:20	2015-04-20	Show	GitHub Exploit DB Packet Storm

210672	6.5	警告	cygnux.org	-	cygnux.org sysPass における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2015-6516	2015-08-24 14:51	2015-07-13	Show	GitHub Exploit DB Packet Storm

210673	4.3	警告	Splunk	-	Splunk Enterprise および Splunk Light の Splunk Web におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2015-6515	2015-08-24 14:40	2015-07-7	Show	GitHub Exploit DB Packet Storm

210674	4.3	警告	Splunk	-	Splunk Enterprise および Splunk Light の Dashboard におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2015-6514	2015-08-24 14:40	2015-07-7	Show	GitHub Exploit DB Packet Storm

210675	7.5	危険	J2Store	-	Joomla! 用 J2Store エクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2015-6513	2015-08-24 14:10	2015-07-7	Show	GitHub Exploit DB Packet Storm

210676	5	警告	Codologic.com	-	FreiChat の server/plugins/chatroom/chatroom.php の get_messages 関数における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2015-6512	2015-08-24 14:03	2015-07-13	Show	GitHub Exploit DB Packet Storm

210677	7.5	危険	Powerplay Gallery project	-	WordPress 用 Powerplay Gallery プラグインの upload.php における任意のコードを実行される脆弱性	CWE-Other その他	CVE-2015-5681	2015-08-24 13:55	2015-06-27	Show	GitHub Exploit DB Packet Storm

210678	7.5	危険	Powerplay Gallery project	-	WordPress 用 Powerplay Gallery プラグインの upload.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2015-5599	2015-08-24 13:55	2015-06-27	Show	GitHub Exploit DB Packet Storm

210679	4.3	警告	Modern Tribe Inc.	-	WordPress 用 Modern Tribe Eventbrite Tickets プラグインの Event Import ページにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2015-5485	2015-08-24 13:55	2015-07-9	Show	GitHub Exploit DB Packet Storm

210680	10	危険	Dedicated Micros	-	Dedicated Micros のデジタルビデオレコーダが、平文で通信し、パスワード認証をしていない問題	CWE-Other その他	CVE-2015-2909	2015-08-24 13:53	2015-08-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
351	7.3	HIGH Network	-	-	A vulnerability has been found in GL.iNet GL-MT3000 up to 4.4.5. Affected is the function FUN_0042e200 of the file /cgi-bin/glc of the component SET_USER_PWD Handler. The manipulation of the argument… New	CWE-74 CWE-77 Injection Command Injection	CVE-2026-11452	2026-06-8 23:57	2026-06-7	Show	GitHub Exploit DB Packet Storm

352	5.0	MEDIUM Network	-	-	A vulnerability was determined in FoundationAgents MetaGPT up to 0.8.2. Affected by this issue is the function check_cmd_exists of the file metagpt/utils/common.py. This manipulation of the argument … New	CWE-74 CWE-77 Injection Command Injection	CVE-2026-11455	2026-06-8 23:57	2026-06-7	Show	GitHub Exploit DB Packet Storm

353	7.3	HIGH Network	-	-	A security flaw has been discovered in erzhongxmu JeeWMS up to 141740afb2ba14d441c82a833d0a418d07ca2d69. This vulnerability affects unknown code of the file /base-boot/jmreport/testConnection of the … New	CWE-74 CWE-707 Injection Improper Enforcement of Message or Data Structure	CVE-2026-11457	2026-06-8 23:57	2026-06-7	Show	GitHub Exploit DB Packet Storm

354	6.3	MEDIUM Network	-	-	A vulnerability has been found in NousResearch hermes-agent up to 0.12.0. This affects the function resolve_session_by_title of the file hermes_state.py of the component resume Endpoint. Such manipul… New	CWE-285 CWE-639 Improper Authorization Authorization Bypass Through User-Controlled Key	CVE-2026-11461	2026-06-8 23:57	2026-06-8	Show	GitHub Exploit DB Packet Storm

355	7.3	HIGH Network	-	-	A vulnerability was determined in USCiLab Cereal up to 1.3.2. Affected is an unknown function of the component Shared Pointer Handler. Executing a manipulation can lead to type confusion. The attack … New	CWE-843 Type Confusion	CVE-2026-11463	2026-06-8 23:57	2026-06-8	Show	GitHub Exploit DB Packet Storm

356	3.1	LOW Network	-	-	A security flaw has been discovered in songquanpeng one-api up to 0.6.11-preview.7. Affected by this issue is the function Redeem of the file model/redemption.go of the component Redemption Code Top-… New	CWE-840 Business Logic Errors	CVE-2026-11465	2026-06-8 23:57	2026-06-8	Show	GitHub Exploit DB Packet Storm

357	5.3	MEDIUM Network	-	-	A weakness has been identified in erzhongxmu JeeWMS up to 141740afb2ba14d441c82a833d0a418d07ca2d69. This issue affects some unknown processing of the file /base-boot/actuator of the component Boot Ac… New	CWE-200 CWE-284 Information Exposure Improper Access Control	CVE-2026-11458	2026-06-8 23:57	2026-06-7	Show	GitHub Exploit DB Packet Storm

358	7.3	HIGH Network	-	-	A flaw has been found in Boost Serialization up to 1.91. The impacted element is an unknown function. This manipulation causes improper validation of specified type of input. It is possible to initia… New	CWE-20 CWE-1287 Improper Input Validation Improper Validation of Specified Type of Input	CVE-2026-11460	2026-06-8 23:57	2026-06-8	Show	GitHub Exploit DB Packet Storm

359	7.3	HIGH Network	-	-	A vulnerability was found in Chengdu Everbrite Network Technology BeikeShop up to 1.6.0.22. This impacts the function callback of the file plugins/Stripe/Controllers/StripeController.php of the compo… New	CWE-266 CWE-285 Incorrect Privilege Assignment Improper Authorization	CVE-2026-11462	2026-06-8 23:57	2026-06-8	Show	GitHub Exploit DB Packet Storm

360	3.1	LOW Network	-	-	A vulnerability was identified in JeecgBoot up to 3.9.2. Affected by this vulnerability is the function queryPageList of the file src\main\java\org\jeecg\modules\system\controller\SysUserController.j… New	CWE-200 CWE-284 Information Exposure Improper Access Control	CVE-2026-11464	2026-06-8 23:57	2026-06-8	Show	GitHub Exploit DB Packet Storm