Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 15, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
234321 7.5 危険 shaffer solutions corp - SSC DiskAccess NFS Client の EnumPrintersA 関数におけるバッファオーバーフローの脆弱性 - CVE-2007-0641 2012-12-20 18:19 2007-01-31 Show GitHub Exploit DB Packet Storm
234322 10 危険 Zabbix - ZABBIX におけるバッファオーバーフローの脆弱性 - CVE-2007-0640 2012-12-20 18:19 2007-01-31 Show GitHub Exploit DB Packet Storm
234323 5 警告 vlad alexa mancini - Vlad Alexa Mancini PHPFootball の show.php における重要な情報を取得される脆弱性 - CVE-2007-0638 2012-12-20 18:19 2007-01-31 Show GitHub Exploit DB Packet Storm
234324 7.5 危険 t-systems solutions for research gmbh - MyNews の include/themes/themefunc.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-0633 2012-12-20 18:19 2007-01-31 Show GitHub Exploit DB Packet Storm
234325 7.5 危険 x-dev - X-dev xNews の classes/class.news.php における SQL インジェクションの脆弱性 - CVE-2007-0630 2012-12-20 18:19 2007-01-31 Show GitHub Exploit DB Packet Storm
234326 6.4 警告 plain black - Plain Black WebGUI の www_purgeList メソッドにおける許可されていないアセットを削除される脆弱性 - CVE-2007-0629 2012-12-20 18:19 2007-01-31 Show GitHub Exploit DB Packet Storm
234327 4.3 警告 サン・マイクロシステムズ - Sun Java System Access Manager におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-0628 2012-12-20 18:19 2007-01-29 Show GitHub Exploit DB Packet Storm
234328 5 警告 vlad leont - FD Script の download.php における特定の拡張子を伴う Web 文書ルート配下のファイルのソースを読み取られる脆弱性 - CVE-2007-0620 2012-12-20 18:19 2007-01-31 Show GitHub Exploit DB Packet Storm
234329 7.8 危険 Zenphoto - zenphoto の zen/template-functions.php におけるディレクトリトラバーサルの脆弱性 - CVE-2007-0616 2012-12-20 18:19 2007-01-31 Show GitHub Exploit DB Packet Storm
234330 4.3 警告 W-Agora - Web-Agora におけるアプリケーションのパス情報を取得される脆弱性 - CVE-2007-0607 2012-12-20 18:19 2007-03-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 15, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
441 8.3 HIGH
Network 		- - OpenClaw before 2026.5.20 contains a privilege escalation vulnerability where hook-triggered agent runs incorrectly receive owner-scoped MCP loopback authority instead of hook-appropriate scope. Atta… New CWE-266
 Incorrect Privilege Assignment 		CVE-2026-53814 2026-06-13 00:58 2026-06-12 Show GitHub Exploit DB Packet Storm
442 6.5 MEDIUM
Network 		- - OpenClaw before 2026.5.19 contains an authorization bypass vulnerability in message read actions that skips channel allowlist checks. Lower-trust callers can request messages from channels not intend… New CWE-862
 Missing Authorization 		CVE-2026-53815 2026-06-13 00:58 2026-06-12 Show GitHub Exploit DB Packet Storm
443 7.2 HIGH
Network 		- - OpenClaw before 2026.5.18 contains an insufficient provenance validation vulnerability in node event handling that allows paired nodes to forge exec lifecycle events without system.run authorization.… New CWE-862
 Missing Authorization 		CVE-2026-53816 2026-06-13 00:58 2026-06-12 Show GitHub Exploit DB Packet Storm
444 8.8 HIGH
Network 		- - OpenClaw before 2026.5.22 contains a locality validation vulnerability in Control UI pairing that allows attackers with network access to spoof locality information and obtain durable admin-capable d… New CWE-290
 Authentication Bypass by Spoofing 		CVE-2026-53817 2026-06-13 00:58 2026-06-12 Show GitHub Exploit DB Packet Storm
445 6.6 MEDIUM
Local 		- - OpenClaw before 2026.4.24 contains an authorization bypass vulnerability in the MCP loopback feature that allows non-owner callers to skip owner-only tool policies and before-tool-call hooks. Attacke… New CWE-862
 Missing Authorization 		CVE-2026-53818 2026-06-13 00:58 2026-06-12 Show GitHub Exploit DB Packet Storm
446 8.8 HIGH
Network 		- - OpenClaw before 2026.5.27 contains an arbitrary code execution vulnerability in skill install flows where workspace .env files can override the Homebrew executable selection. Attackers with access to… New CWE-426
 Untrusted Search Path 		CVE-2026-53819 2026-06-13 00:58 2026-06-12 Show GitHub Exploit DB Packet Storm
447 8.8 HIGH
Network 		microsoft sharepoint_server Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to elevate privileges over a network. Update CWE-502
 Deserialization of Untrusted Data 		CVE-2026-45484 2026-06-13 00:57 2026-06-10 Show GitHub Exploit DB Packet Storm
448 3.5 LOW
Network 		- - The Secure Copy Content Protection and Content Locking WordPress plugin before 5.1.5 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform… New - CVE-2026-9269 2026-06-13 00:57 2026-06-12 Show GitHub Exploit DB Packet Storm
449 9.8 CRITICAL
Network 		- - ClipBucket v5 is an open source video sharing platform. Prior to version 5.5.3 - #140, ClipBucket's Remote Play feature allows any authenticated user to add a video by importing an external URL as th… New CWE-78
OS Command  		CVE-2026-42846 2026-06-13 00:56 2026-06-12 Show GitHub Exploit DB Packet Storm
450 9.8 CRITICAL
Network 		- - ClipBucket v5 is an open source video sharing platform. Prior to version 5.5.3 - #129, the actions/progress_video.php endpoint is vulnerable to blind SQL injection. Any unauthenticated user can explo… New CWE-89
SQL Injection 		CVE-2026-45060 2026-06-13 00:56 2026-06-12 Show GitHub Exploit DB Packet Storm