Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 22, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
521	3.7	低 Network	OpenSSL Project	OpenSSL	OpenSSL ProjectのOpenSSLにおける暗号化処理の不備に関する脆弱性	CWE-325 暗号化処理の不備	CVE-2026-42770	2026-06-17 15:46	2026-06-9	Show	GitHub Exploit DB Packet Storm

522	6.2	警告 Local	OpenSSL Project	OpenSSL	OpenSSL ProjectのOpenSSLにおける境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2026-42771	2026-06-17 15:46	2026-06-9	Show	GitHub Exploit DB Packet Storm

523	8.8	重要 Network	Kovidgoyal	Kitty	KovidgoyalのKittyにおけるコマンドインジェクションの脆弱性	CWE-77 コマンドインジェクション	CVE-2026-42850	2026-06-17 15:46	2026-06-12	Show	GitHub Exploit DB Packet Storm

524	7.8	重要 Local	Kovidgoyal	Kitty	KovidgoyalのKittyにおける複数の脆弱性	CWE-862 CWE-94	CVE-2026-42851	2026-06-17 15:46	2026-06-12	Show	GitHub Exploit DB Packet Storm

525	9.8	緊急 Network	MariaDB Corporation Ab.	MariaDB	MariaDB Corporation Ab.のMariaDBにおけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-44170	2026-06-17 15:46	2026-06-12	Show	GitHub Exploit DB Packet Storm

526	7.8	重要 Local	MariaDB Corporation Ab.	MariaDB	MariaDB Corporation Ab.のMariaDBにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-44171	2026-06-17 15:45	2026-06-12	Show	GitHub Exploit DB Packet Storm

527	9.8	緊急 Network	MariaDB Corporation Ab.	MariaDB	MariaDB Corporation Ab.のMariaDBにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2026-44172	2026-06-17 15:45	2026-06-12	Show	GitHub Exploit DB Packet Storm

528	5.3	警告 Network	MariaDB Corporation Ab.	MariaDB	MariaDB Corporation Ab.のMariaDBにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-44173	2026-06-17 15:45	2026-06-12	Show	GitHub Exploit DB Packet Storm

529	5.3	警告 Adjacent	opentelemetry	opentelemetry	opentelemetryにおける過剰なサイズ値のメモリ割り当てに関する脆弱性	CWE-789 過剰なサイズ値のメモリ割り当て	CVE-2026-44967	2026-06-17 15:45	2026-06-12	Show	GitHub Exploit DB Packet Storm

530	7.5	重要 Network	OpenSSL Project	OpenSSL	OpenSSL ProjectのOpenSSLにおける暗号化処理の不備に関する脆弱性	CWE-325 暗号化処理の不備	CVE-2026-45445	2026-06-17 15:45	2026-06-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 22, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
259271	8.8	HIGH Network	vendavo	pricepoint	A vulnerability was found in Navetti PricePoint 4.6.0.0. It has been declared as critical. This vulnerability affects unknown code. The manipulation leads to cross-site request forgery. The attack ca…	CWE-352 Origin Validation Error	CVE-2017-20045	2024-11-21 12:22	2022-06-13	Show	GitHub Exploit DB Packet Storm

259272	5.4	MEDIUM Network	vendavo	pricepoint	A vulnerability was found in Navetti PricePoint 4.6.0.0. It has been classified as problematic. This affects an unknown part. The manipulation leads to basic cross site scripting (Reflected). It is p…	CWE-79 Cross-site Scripting	CVE-2017-20044	2024-11-21 12:22	2022-06-13	Show	GitHub Exploit DB Packet Storm

259273	5.4	MEDIUM Network	vendavo	pricepoint	A vulnerability was found in Navetti PricePoint 4.6.0.0 and classified as problematic. Affected by this issue is some unknown functionality. The manipulation leads to basic cross site scripting (Pers…	CWE-79 Cross-site Scripting	CVE-2017-20043	2024-11-21 12:22	2022-06-13	Show	GitHub Exploit DB Packet Storm

259274	8.8	HIGH Network	vendavo	pricepoint	A vulnerability has been found in Navetti PricePoint 4.6.0.0 and classified as critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to sql injection (Blind). T…	CWE-89 SQL Injection	CVE-2017-20042	2024-11-21 12:22	2022-06-13	Show	GitHub Exploit DB Packet Storm

259275	6.5	MEDIUM Network	ucweb	uc_browser	A vulnerability was found in Ucweb UC Browser 11.2.5.932. It has been classified as critical. Affected is an unknown function of the component HTML Handler. The manipulation of the argument title lea…	CWE-1021 Improper Restriction of Rendered UI Layers or Frames	CVE-2017-20041	2024-11-21 12:22	2022-06-13	Show	GitHub Exploit DB Packet Storm

259276	5.5	MEDIUM Local	sicunet	access_control	A vulnerability was found in SICUNET Access Controller 0.32-05z. It has been declared as problematic. This vulnerability affects unknown code of the component Password Storage. The manipulation leads…	CWE-312 Cleartext Storage of Sensitive Information	CVE-2017-20040	2024-11-21 12:22	2022-06-11	Show	GitHub Exploit DB Packet Storm

259277	9.8	CRITICAL Network	sicunet	access_control	A vulnerability was found in SICUNET Access Controller 0.32-05z. It has been classified as very critical. This affects an unknown part. The manipulation leads to weak authentication. It is possible t…	CWE-798 Use of Hard-coded Credentials	CVE-2017-20039	2024-11-21 12:22	2022-06-11	Show	GitHub Exploit DB Packet Storm

259278	8.8	HIGH Network	sicunet	access_control	A vulnerability was found in SICUNET Access Controller 0.32-05z and classified as critical. Affected by this issue is some unknown functionality of the file card_scan_decoder.php. The manipulation of…	NVD-CWE-noinfo	CVE-2017-20038	2024-11-21 12:22	2022-06-11	Show	GitHub Exploit DB Packet Storm

259279	8.8	HIGH Network	sicunet	access_control	A vulnerability has been found in SICUNET Access Controller 0.32-05z and classified as critical. Affected by this vulnerability is an unknown functionality. The manipulation of the argument c leads t…	NVD-CWE-noinfo	CVE-2017-20037	2024-11-21 12:22	2022-06-11	Show	GitHub Exploit DB Packet Storm

259280	5.4	MEDIUM Network	phplist	phplist	A vulnerability, which was classified as problematic, was found in PHPList 3.2.6. Affected is an unknown function of the file /lists/admin/ of the component Bounce Rule. The manipulation leads to cro…	CWE-79 Cross-site Scripting	CVE-2017-20036	2024-11-21 12:22	2022-06-10	Show	GitHub Exploit DB Packet Storm