Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 11, 2026, 6:13 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
221631 4.3 警告 Moxiecode Systems AB - TinyMCE の bbcode プラグインにおけるクロスサイトスクリプティング攻撃を実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-4230 2014-04-28 15:49 2012-08-9 Show GitHub Exploit DB Packet Storm
221632 9.3 危険 3S-Smart Software Solutions
SoftMotion3D
Festo		 - Festo Modular controllers CECX-X-C1 および CECX-X-M1 における設定を変更される脆弱性 CWE-287
不適切な認証 		CVE-2014-0769 2014-04-28 15:40 2014-04-24 Show GitHub Exploit DB Packet Storm
221633 9.3 危険 3S-Smart Software Solutions
SoftMotion3D
Festo		 - Festo Modular controllers CECX-X-C1 および CECX-X-M1 における任意のコードを実行される脆弱性 CWE-287
不適切な認証 		CVE-2014-0760 2014-04-28 15:40 2014-04-24 Show GitHub Exploit DB Packet Storm
221634 4.3 警告 Open-Xchange - Open-Xchange AppSuite におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-2393 2014-04-28 15:07 2014-04-8 Show GitHub Exploit DB Packet Storm
221635 4.3 警告 Open-Xchange - Open-Xchange AppSuite の電子メール自動設定機能における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2014-2392 2014-04-28 15:06 2014-04-8 Show GitHub Exploit DB Packet Storm
221636 4.3 警告 Open-Xchange - Open-Xchange AppSuite のパスワードリカバリサービスにおける潜在的に有用なパスワードパターンの情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2014-2391 2014-04-28 15:06 2014-04-8 Show GitHub Exploit DB Packet Storm
221637 5.5 警告 Xen プロジェクト - Xen におけるサービス運用妨害 (DoS) の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-2915 2014-04-28 14:56 2014-04-22 Show GitHub Exploit DB Packet Storm
221638 7.5 危険 MODX - MODX Revolution における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-2736 2014-04-28 14:43 2014-04-4 Show GitHub Exploit DB Packet Storm
221639 7.5 危険 レッドハット - Red Hat OpenShift Enterprise の openshift-origin-broker における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2014-0188 2014-04-28 14:36 2014-04-23 Show GitHub Exploit DB Packet Storm
221640 5 警告 Sixnet - Sixnet SixView Manager におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-2976 2014-04-28 14:24 2014-04-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 11, 2026, 5:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
391 - - - QTS, QuTS hero, QuTScloud are not affected. We have already fixed the vulnerability in the following version: New CWE-472
 External Control of Assumed-Immutable Web Parameter 		CVE-2025-59382 2026-06-10 12:16 2026-06-10 Show GitHub Exploit DB Packet Storm
392 - - - A cross-site request forgery (CSRF) vulnerability has been reported to affect Notification Center. The remote attackers can then exploit the vulnerability to gain privileges or hijack user identities… New CWE-352
 Origin Validation Error 		CVE-2025-58468 2026-06-10 12:16 2026-06-10 Show GitHub Exploit DB Packet Storm
393 4.6 MEDIUM
Adjacent 		- - ESF-IDF is the Espressif Internet of Things (IOT) Development Framework. In versions 5.2.6, 5.3.5, 5.4.4, 5.5.3, and 6.0, an out-of-bounds read exists in the BlueDroid AVRCP vendor-command parser (av… New CWE-125
Out-of-bounds Read 		CVE-2026-46532 2026-06-10 11:16 2026-06-10 Show GitHub Exploit DB Packet Storm
394 7.1 HIGH
Adjacent 		- - ESF-IDF is the Espressif Internet of Things (IOT) Development Framework. In versions 5.2.6, 5.3.5, 5.4.4, 5.5.4, and 6.0, a heap buffer overflow exists in the Security Scheme 2 (SRP6a) session-setup … New CWE-122
Heap-based Buffer Overflow 		CVE-2026-45542 2026-06-10 11:16 2026-06-10 Show GitHub Exploit DB Packet Storm
395 7.5 HIGH
Network 		- - ESF-IDF is the Espressif Internet of Things (IOT) Development Framework. In versions 5.2.6, 5.3.5, 5.4.4, 5.5.4, and 6.0, a NULL-pointer dereference exists in the WebSocket subprotocol-negotiation pa… New CWE-476
 NULL Pointer Dereference 		CVE-2026-45541 2026-06-10 11:16 2026-06-10 Show GitHub Exploit DB Packet Storm
396 7.1 HIGH
Local 		- - ESF-IDF is the Espressif Internet of Things (IOT) Development Framework. In versions 5.5.4 and 6.0, several ESP-TEE secure-service wrappers in esp_secure_services.c and esp_secure_services_iram.c val… New CWE-20
CWE-125
CWE-200
 Improper Input Validation 
Out-of-bounds Read
Information Exposure 		CVE-2026-45329 2026-06-10 11:16 2026-06-10 Show GitHub Exploit DB Packet Storm
397 9.3 CRITICAL
Local 		- - ESF-IDF is the Espressif Internet of Things (IOT) Development Framework. In versions 5.5.4 and 6.0, the esp_tee component exposes secure-service wrappers in esp_secure_services.c and esp_secure_servi… New CWE-20
CWE-787
 Improper Input Validation 
 Out-of-bounds Write 		CVE-2026-45328 2026-06-10 11:16 2026-06-10 Show GitHub Exploit DB Packet Storm
398 6.5 MEDIUM
Adjacent 		- - ESF-IDF is the Espressif Internet of Things (IOT) Development Framework. In versions 5.2.7, 5.3.5, 5.4.4, 5.5.4, and 6.0.1, an out-of-bounds read flaw exists in the DHCP server option parser (parse_o… New CWE-125
Out-of-bounds Read 		CVE-2026-45160 2026-06-10 11:16 2026-06-10 Show GitHub Exploit DB Packet Storm
399 5.4 MEDIUM
Network 		- - WordPress Popup Builder 3.49 contains a persistent cross-site scripting vulnerability that allows authenticated attackers to inject malicious scripts by breaking out of option tags in the post_title … Update CWE-79
Cross-site Scripting 		CVE-2019-25744 2026-06-10 11:16 2026-06-4 Show GitHub Exploit DB Packet Storm
400 5.4 MEDIUM
Network 		- - WordPress Soliloquy Lite 2.5.6 contains a persistent cross-site scripting vulnerability that allows authenticated attackers to inject malicious scripts by inserting script tags in the post title fiel… Update CWE-79
Cross-site Scripting 		CVE-2019-25743 2026-06-10 11:16 2026-06-4 Show GitHub Exploit DB Packet Storm