Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 15, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
5301 3.3
Local 		Uutils uutils coreutils Uutilsのuutils coreutilsにおける常に不適切な制御フローの実装に関する脆弱性 CWE-670
常に不適切な制御フローの実装 		CVE-2026-35343 2026-05-7 11:27 2026-04-22 Show GitHub Exploit DB Packet Storm
5302 3.3
Local 		Uutils uutils coreutils Uutilsのuutils coreutilsにおける未チェックの戻り値に関する脆弱性 CWE-252
未チェックの戻り値 		CVE-2026-35344 2026-05-7 11:26 2026-04-22 Show GitHub Exploit DB Packet Storm
5303 5.3 警告
Local 		Uutils uutils coreutils Uutilsのuutils coreutilsにおける複数の脆弱性 CWE-367
CWE-59
CVE-2026-35345 2026-05-7 11:26 2026-04-22 Show GitHub Exploit DB Packet Storm
5304 5.5 警告
Local 		Uutils uutils coreutils Uutilsのuutils coreutilsにおける誤って解決された名前や参照の使用に関する脆弱性 CWE-706
誤って解決された名前や参照の使用 		CVE-2026-35358 2026-05-7 11:26 2026-04-22 Show GitHub Exploit DB Packet Storm
5305 6.6 警告
Local 		Uutils uutils coreutils Uutilsのuutils coreutilsにおけるリンク解釈に関する脆弱性 CWE-59
リンク解釈の問題 		CVE-2026-35365 2026-05-7 11:26 2026-04-22 Show GitHub Exploit DB Packet Storm
5306 4.4 警告
Local 		Uutils uutils coreutils Uutilsのuutils coreutilsにおける例外的な状態のチェックに関する脆弱性 CWE-754
例外的な状態における不適切なチェック 		CVE-2026-35366 2026-05-7 11:26 2026-04-22 Show GitHub Exploit DB Packet Storm
5307 5.5 警告
Local 		Uutils uutils coreutils Uutilsのuutils coreutilsにおける入力確認に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2026-35369 2026-05-7 11:26 2026-04-22 Show GitHub Exploit DB Packet Storm
5308 4.4 警告
Local 		Uutils uutils coreutils Uutilsのuutils coreutilsにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-35370 2026-05-7 11:26 2026-04-22 Show GitHub Exploit DB Packet Storm
5309 3.3
Local 		Uutils uutils coreutils Uutilsのuutils coreutilsにおけるユーザインターフェースにおける重要情報の誤った表示に関する脆弱性 CWE-451
ユーザインターフェースにおける重要情報の誤った表示 		CVE-2026-35371 2026-05-7 11:26 2026-04-22 Show GitHub Exploit DB Packet Storm
5310 5 警告
Local 		Uutils uutils coreutils Uutilsのuutils coreutilsにおけるUNIX Symbolic Link のフォローに関する脆弱性 CWE-61
UNIX Symbolic Link のフォロー 		CVE-2026-35372 2026-05-7 11:26 2026-04-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 15, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1821 8.8 HIGH
Network 		- - A security flaw has been discovered in Tenda F451 1.0.0.7/1.0.0.9. Impacted is the function formWriteFacMac of the file /goform/WriteFacMac of the component Web Management Interface. Performing a man… CWE-77
CWE-78
Command Injection
OS Command  		CVE-2026-11556 2026-06-9 10:32 2026-06-9 Show GitHub Exploit DB Packet Storm
1822 8.8 HIGH
Network 		- - A weakness has been identified in Tenda F451 1.0.0.7/1.0.0.9. The affected element is the function fromNatlimit of the file /goform/Natlimit of the component Web Management Interface. Executing a man… CWE-119
CWE-121
Incorrect Access of Indexable Resource ('Range Error') 
Stack-based Buffer Overflow 		CVE-2026-11557 2026-06-9 10:32 2026-06-9 Show GitHub Exploit DB Packet Storm
1823 6.3 MEDIUM
Network 		- - A security vulnerability has been detected in CodeAstro Payroll System 1.0. The impacted element is an unknown function of the file /home_salary.php. The manipulation of the argument rate/salary_rate… CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-11558 2026-06-9 10:32 2026-06-9 Show GitHub Exploit DB Packet Storm
1824 6.3 MEDIUM
Network 		- - A vulnerability was detected in CodeAstro Payroll System 1.0. This affects an unknown function of the file /view_account.php. The manipulation of the argument ID results in sql injection. The attack … CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-11559 2026-06-9 10:32 2026-06-9 Show GitHub Exploit DB Packet Storm
1825 7.3 HIGH
Network 		- - A flaw has been found in CodeAstro Student Attendance Management System 1.0. The impacted element is an unknown function of the file /attendance-php/index.php. Executing a manipulation of the argumen… CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-11582 2026-06-9 10:32 2026-06-9 Show GitHub Exploit DB Packet Storm
1826 6.3 MEDIUM
Network 		- - A vulnerability has been found in CodeAstro Student Attendance Management System 1.0. This affects an unknown function of the file /attendance-php/Admin/createClass.php. The manipulation of the argum… CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-11583 2026-06-9 10:32 2026-06-9 Show GitHub Exploit DB Packet Storm
1827 6.3 MEDIUM
Network 		- - A vulnerability was found in CodeAstro Student Attendance Management System 1.0. This impacts an unknown function of the file /attendance-php/Admin/createClass.php?action=edit. The manipulation of th… CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-11584 2026-06-9 10:32 2026-06-9 Show GitHub Exploit DB Packet Storm
1828 6.3 MEDIUM
Network 		- - A vulnerability was determined in CodeAstro Student Attendance Management System 1.0. Affected is an unknown function of the file /attendance-php/Admin/createClassArms.php. This manipulation of the a… CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-11585 2026-06-9 10:32 2026-06-9 Show GitHub Exploit DB Packet Storm
1829 - - - HAX CMS helps manage microsite universe with PHP or NodeJs backends. Versions prior to 26.0.0 suffer from an improper session termination vulnerability where authentication tokens remain valid after … CWE-613
 Insufficient Session Expiration 		CVE-2026-46401 2026-06-9 05:17 2026-06-6 Show GitHub Exploit DB Packet Storm
1830 8.2 HIGH
Network 		- - CoreShop is a Pimcore enhanced eCommerce solution. In versions 5.0.1 through 5.1.0-beta.1,, the GitHub Actions workflow (`.github/workflows/static.yml`) uses the `pull_request_target` trigger but dan… CWE-94
Code Injection 		CVE-2026-41249 2026-06-9 05:17 2026-06-5 Show GitHub Exploit DB Packet Storm