Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 18, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
220621	3.5	注意	IBM	-	IBM Tivoli Business Service Manager におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-3031	2014-08-13 15:24	2014-08-1	Show	GitHub Exploit DB Packet Storm

220622	4	警告	IBM	-	IBM InfoSphere Optim Data Growth Solution for JD Edwards EnterpriseOne における重要な情報を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2013-5433	2014-08-13 15:23	2013-11-18	Show	GitHub Exploit DB Packet Storm

220623	5.8	警告	IBM	-	IBM WebSphere Portal におけるオープンリダイレクトの脆弱性	CWE-Other その他	CVE-2014-4760	2014-08-13 14:43	2014-07-30	Show	GitHub Exploit DB Packet Storm

220624	5	警告	IBM	-	IBM WebSphere Portal におけるイントラネットのネットワークをマッピングされる脆弱性	CWE-200 情報漏えい	CVE-2014-4746	2014-08-13 14:42	2014-07-30	Show	GitHub Exploit DB Packet Storm

220625	3.5	注意	IBM	-	IBM WebSphere Portal におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-3102	2014-08-13 14:42	2014-07-30	Show	GitHub Exploit DB Packet Storm

220626	4.3	警告	IBM	-	IBM WebSphere Portal におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-0953	2014-08-13 14:40	2014-07-30	Show	GitHub Exploit DB Packet Storm

220627	6.8	警告	Nmap Novell	-	NMap の http-domino-enum-passwords.nse スクリプトにおける任意の名前のファイルをアップロードされる脆弱性	CWE-Other その他	CVE-2013-4885	2014-08-11 18:37	2013-07-29	Show	GitHub Exploit DB Packet Storm

220628	4.3	警告	ProcessOne	-	ejabberd の TLS ドライバにおける重要な情報を取得される脆弱性	CWE-310 暗号の問題	CVE-2013-6169	2014-08-11 18:36	2013-02-5	Show	GitHub Exploit DB Packet Storm

220629	2.1	注意	Fredrik Lundh Python Software Foundation	-	Python Image Library および Pillow におけるシンボリックリンク攻撃を実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-1933	2014-08-11 18:34	2014-03-15	Show	GitHub Exploit DB Packet Storm

220630	4.4	警告	Fredrik Lundh Python Software Foundation	-	Python Image Library および Pillow における任意のファイルを上書きされる脆弱性	CWE-59 リンク解釈の問題	CVE-2014-1932	2014-08-11 18:33	2014-03-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 19, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
381	8.8	HIGH Network	-	-	Contributor Privilege Escalation in B Blocks <= 2.0.31 versions. New	CWE-266 Incorrect Privilege Assignment	CVE-2026-39579	2026-06-16 06:24	2026-06-16	Show	GitHub Exploit DB Packet Storm

382	9.8	CRITICAL Network	-	-	Unauthenticated Privilege Escalation in Datalogics Ecommerce Delivery <= 2.6.62 versions. New	CWE-266 Incorrect Privilege Assignment	CVE-2026-39583	2026-06-16 06:24	2026-06-16	Show	GitHub Exploit DB Packet Storm

383	6.5	MEDIUM Network	-	-	Subscriber Broken Access Control in RepairBuddy <= 4.1132 versions. New	CWE-862 Missing Authorization	CVE-2026-39584	2026-06-16 06:24	2026-06-16	Show	GitHub Exploit DB Packet Storm

384	8.1	HIGH Network	-	-	Unauthenticated Privilege Escalation in WP BASE Booking <= 5.9.0 versions. New	CWE-266 Incorrect Privilege Assignment	CVE-2026-39587	2026-06-16 06:24	2026-06-16	Show	GitHub Exploit DB Packet Storm

385	9.9	CRITICAL Network	-	-	Subscriber Arbitrary File Upload in WP-BusinessDirectory <= 4.0.0 versions. New	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2026-39591	2026-06-16 06:24	2026-06-16	Show	GitHub Exploit DB Packet Storm

386	6.4	MEDIUM Network	-	-	Subscriber Broken Access Control in Ultra Addons for WPForms <= 1.0.11 versions. New	CWE-862 Missing Authorization	CVE-2026-39594	2026-06-16 06:24	2026-06-16	Show	GitHub Exploit DB Packet Storm

387	7.7	HIGH Network	-	-	Sales Representative Arbitrary File Deletion in Groundhogg <= 4.4 versions. New	CWE-22 Path Traversal	CVE-2026-40727	2026-06-16 06:24	2026-06-16	Show	GitHub Exploit DB Packet Storm

388	7.1	HIGH Network	-	-	Unauthenticated Cross Site Scripting (XSS) in Notification for Telegram <= 3.5 versions. New	CWE-79 Cross-site Scripting	CVE-2026-40732	2026-06-16 06:24	2026-06-16	Show	GitHub Exploit DB Packet Storm

389	7.5	HIGH Network	-	-	Unauthenticated Broken Access Control in Redsys for WooCommerce Light <= 7.0.0 versions. New	CWE-862 Missing Authorization	CVE-2026-40741	2026-06-16 06:24	2026-06-16	Show	GitHub Exploit DB Packet Storm

390	6.5	MEDIUM Network	-	-	Unauthenticated Broken Access Control in Tutor LMS <= 3.9.7 versions. New	CWE-862 Missing Authorization	CVE-2026-40743	2026-06-16 06:24	2026-06-16	Show	GitHub Exploit DB Packet Storm