Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 15, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
4841 8.8 重要
Adjacent 		Quantum Networks QN-I-470 Firmware Quantum NetworksのQN-I-470 Firmwareにおける過度な認証試行の不適切な制限に関する脆弱性 CWE-307
過度な認証試行の不適切な制限 		CVE-2026-41037 2026-05-8 12:11 2026-04-21 Show GitHub Exploit DB Packet Storm
4842 8.8 重要
Adjacent 		Quantum Networks QN-I-470 Firmware Quantum NetworksのQN-I-470 Firmwareにおける脆弱なパスワードの要求に関する脆弱性 CWE-521
脆弱なパスワードポリシー 		CVE-2026-41038 2026-05-8 12:11 2026-04-21 Show GitHub Exploit DB Packet Storm
4843 7.5 重要
Network 		Quantum Networks QN-I-470 Firmware Quantum NetworksのQN-I-470 Firmwareにおける重要な機能に対する認証の欠如に関する脆弱性 CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2026-41039 2026-05-8 12:11 2026-04-21 Show GitHub Exploit DB Packet Storm
4844 8.8 重要
Adjacent 		D-Link Systems, Inc. DIR-605L ファームウェア D-Link CorporationのDIR-605L ファームウェアにおけるハードコードされた認証情報の使用に関する脆弱性 CWE-798
ハードコードされた認証情報の使用 		CVE-2026-42372 2026-05-8 12:11 2026-05-4 Show GitHub Exploit DB Packet Storm
4845 8.8 重要
Adjacent 		D-Link Systems, Inc. DIR-605L ファームウェア D-Link CorporationのDIR-605L ファームウェアにおけるハードコードされた認証情報の使用に関する脆弱性 CWE-798
ハードコードされた認証情報の使用 		CVE-2026-42373 2026-05-8 12:11 2026-05-4 Show GitHub Exploit DB Packet Storm
4846 8.8 重要
Adjacent 		D-Link Systems, Inc. DIR-600L ファームウェア D-Link CorporationのDIR-600L ファームウェアにおけるハードコードされた認証情報の使用に関する脆弱性 CWE-798
ハードコードされた認証情報の使用 		CVE-2026-42374 2026-05-8 12:11 2026-05-4 Show GitHub Exploit DB Packet Storm
4847 8.8 重要
Adjacent 		D-Link Systems, Inc. DIR-600L ファームウェア D-Link CorporationのDIR-600L ファームウェアにおけるハードコードされた認証情報の使用に関する脆弱性 CWE-798
ハードコードされた認証情報の使用 		CVE-2026-42375 2026-05-8 12:11 2026-05-4 Show GitHub Exploit DB Packet Storm
4848 9.8 緊急
Network 		MIYAGAWA (Tatsuhiko Miyagawa) Plack::Middleware::Session::Cookie MIYAGAWA (Tatsuhiko Miyagawa)のPlack::Middleware::Session::Cookieにおける検証および完全性チェックを行っていない Cookie への依存に関する脆弱性 CWE-565
検証および完全性チェックを行っていない Cookie への依存 		CVE-2014-125112 2026-05-8 12:11 2026-03-26 Show GitHub Exploit DB Packet Storm
4849 7.5 重要
Network 		Lobster DATA GmbH Lobster_pro Lobster DATA GmbHのLobster_proにおけるXML 外部エンティティの脆弱性 CWE-611
XML 外部エンティティ参照の不適切な制限 		CVE-2024-13971 2026-05-8 12:11 2026-04-30 Show GitHub Exploit DB Packet Storm
4850 9.8 緊急
Network 		D-Link Systems, Inc. DIR-1253 Firmware D-Link CorporationのDIR-1253 Firmwareにおける権限管理に関する脆弱性 CWE-269
不適切な権限管理 		CVE-2025-29165 2026-05-8 12:11 2026-03-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2181 7.3 HIGH
Network 		- - A vulnerability was identified in Chanjet CRM 1.0. This affects an unknown part of the file /tools/jxf_dump_systable.php of the component HTTP GET Request Handler. Such manipulation of the argument g… CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-11456 2026-06-8 23:57 2026-06-7 Show GitHub Exploit DB Packet Storm
2182 7.3 HIGH
Network 		- - A vulnerability has been found in GL.iNet GL-MT3000 up to 4.4.5. Affected is the function FUN_0042e200 of the file /cgi-bin/glc of the component SET_USER_PWD Handler. The manipulation of the argument… CWE-74
CWE-77
Injection
Command Injection 		CVE-2026-11452 2026-06-8 23:57 2026-06-7 Show GitHub Exploit DB Packet Storm
2183 5.0 MEDIUM
Network 		- - A vulnerability was determined in FoundationAgents MetaGPT up to 0.8.2. Affected by this issue is the function check_cmd_exists of the file metagpt/utils/common.py. This manipulation of the argument … CWE-74
CWE-77
Injection
Command Injection 		CVE-2026-11455 2026-06-8 23:57 2026-06-7 Show GitHub Exploit DB Packet Storm
2184 7.3 HIGH
Network 		- - A security flaw has been discovered in erzhongxmu JeeWMS up to 141740afb2ba14d441c82a833d0a418d07ca2d69. This vulnerability affects unknown code of the file /base-boot/jmreport/testConnection of the … CWE-74
CWE-707
Injection
 Improper Enforcement of Message or Data Structure 		CVE-2026-11457 2026-06-8 23:57 2026-06-7 Show GitHub Exploit DB Packet Storm
2185 5.3 MEDIUM
Network 		- - A weakness has been identified in erzhongxmu JeeWMS up to 141740afb2ba14d441c82a833d0a418d07ca2d69. This issue affects some unknown processing of the file /base-boot/actuator of the component Boot Ac… CWE-200
CWE-284
Information Exposure
Improper Access Control 		CVE-2026-11458 2026-06-8 23:57 2026-06-7 Show GitHub Exploit DB Packet Storm
2186 7.3 HIGH
Network 		- - A flaw has been found in Boost Serialization up to 1.91. The impacted element is an unknown function. This manipulation causes improper validation of specified type of input. It is possible to initia… CWE-20
CWE-1287
 Improper Input Validation 
 Improper Validation of Specified Type of Input 		CVE-2026-11460 2026-06-8 23:57 2026-06-8 Show GitHub Exploit DB Packet Storm
2187 7.3 HIGH
Network 		- - A vulnerability was determined in USCiLab Cereal up to 1.3.2. Affected is an unknown function of the component Shared Pointer Handler. Executing a manipulation can lead to type confusion. The attack … CWE-843
Type Confusion 		CVE-2026-11463 2026-06-8 23:57 2026-06-8 Show GitHub Exploit DB Packet Storm
2188 3.1 LOW
Network 		- - A security flaw has been discovered in songquanpeng one-api up to 0.6.11-preview.7. Affected by this issue is the function Redeem of the file model/redemption.go of the component Redemption Code Top-… CWE-840
 Business Logic Errors 		CVE-2026-11465 2026-06-8 23:57 2026-06-8 Show GitHub Exploit DB Packet Storm
2189 5.4 MEDIUM
Network 		- - A weakness has been identified in zilliztech deep-searcher up to 0.0.2. This affects the function CollectionRouter.invoke of the file deepsearcher/agent/collection_router.py. This manipulation of the… CWE-266
CWE-284
 Incorrect Privilege Assignment
Improper Access Control 		CVE-2026-11466 2026-06-8 23:57 2026-06-8 Show GitHub Exploit DB Packet Storm
2190 7.3 HIGH
Network 		- - A vulnerability was found in Chengdu Everbrite Network Technology BeikeShop up to 1.6.0.22. This impacts the function callback of the file plugins/Stripe/Controllers/StripeController.php of the compo… CWE-266
CWE-285
 Incorrect Privilege Assignment
Improper Authorization 		CVE-2026-11462 2026-06-8 23:57 2026-06-8 Show GitHub Exploit DB Packet Storm