Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 29, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
5931	8.8	重要 Network	teamt5	threatsonar anti-ransomware	TeamT5 Inc.のThreatSonar Anti-RansomwareにおけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-5967	2026-05-14 10:15	2026-04-20	Show	GitHub Exploit DB Packet Storm

5932	9.1	緊急 Network	The PHP Group	PHP	The PHP GroupのPHPにおける境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2026-6104	2026-05-14 10:15	2026-05-10	Show	GitHub Exploit DB Packet Storm

5933	8.1	重要 Network	PaperCut Software International Pty	PaperCut NG PaperCut MF	PaperCut Software International PtyのPaperCut MF等の複数製品における複数の脆弱性	CWE-20 CWE-367 CWE-367	CVE-2026-6180	2026-05-14 10:15	2026-05-5	Show	GitHub Exploit DB Packet Storm

5934	4.9	警告 Network	PaperCut Software International Pty	PaperCut NG PaperCut MF	PaperCut Software International PtyのPaperCut MF等の複数製品における複数の脆弱性	CWE-36 CWE-552	CVE-2026-6418	2026-05-14 10:15	2026-05-5	Show	GitHub Exploit DB Packet Storm

5935	9.8	緊急 Network	The PHP Group	PHP	The PHP GroupのPHPにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-6722	2026-05-14 10:15	2026-05-10	Show	GitHub Exploit DB Packet Storm

5936	6.1	警告 Network	The PHP Group	PHP	The PHP GroupのPHPにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-6735	2026-05-14 10:15	2026-05-10	Show	GitHub Exploit DB Packet Storm

5937	5.3	警告 Network	Eclipse Foundation	Vert.x	Eclipse FoundationのVert.xにおける複数の脆弱性	CWE-295 CWE-770	CVE-2026-6860	2026-05-14 10:15	2026-05-6	Show	GitHub Exploit DB Packet Storm

5938	7.5	重要 Network	The PHP Group	PHP	The PHP GroupのPHPにおける境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2026-7258	2026-05-14 10:15	2026-05-10	Show	GitHub Exploit DB Packet Storm

5939	6.5	警告 Network	The PHP Group	PHP	The PHP GroupのPHPにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-7259	2026-05-14 10:15	2026-05-10	Show	GitHub Exploit DB Packet Storm

5940	9.8	緊急 Network	The PHP Group	PHP	The PHP GroupのPHPにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-7261	2026-05-14 10:15	2026-05-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 29, 2026, 4:19 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2661	7.1	HIGH Network	-	-	Subscriber Broken Authentication in AutomatorWP <= 5.6.7 versions.	CWE-288 Authentication Bypass Using an Alternate Path or Channel	CVE-2026-40785	2026-06-16 06:24	2026-06-16	Show	GitHub Exploit DB Packet Storm

2662	7.1	HIGH Network	-	-	Unauthenticated Cross Site Scripting (XSS) in Quiz And Survey Master <= 11.0.0 versions.	CWE-79 Cross-site Scripting	CVE-2026-40787	2026-06-16 06:24	2026-06-16	Show	GitHub Exploit DB Packet Storm

2663	7.1	HIGH Network	-	-	Subscriber Broken Access Control in ChatBot <= 7.9.7 versions.	CWE-862 Missing Authorization	CVE-2026-40788	2026-06-16 06:24	2026-06-16	Show	GitHub Exploit DB Packet Storm

2664	7.5	HIGH Network	-	-	Unauthenticated Sensitive Data Exposure in Amelia <= 2.2 versions.	CWE-201 Insertion of Sensitive Information Into Sent Data	CVE-2026-40789	2026-06-16 06:24	2026-06-16	Show	GitHub Exploit DB Packet Storm

2665	6.5	MEDIUM Network	-	-	Subscriber Sensitive Data Exposure in WP SMS <= 7.2.1 versions.	CWE-288 Authentication Bypass Using an Alternate Path or Channel	CVE-2026-40790	2026-06-16 06:24	2026-06-16	Show	GitHub Exploit DB Packet Storm

2666	7.1	HIGH Network	-	-	Unauthenticated Cross Site Scripting (XSS) in WP Time Slots Booking Form <= 1.2.46 versions.	CWE-79 Cross-site Scripting	CVE-2026-40791	2026-06-16 06:24	2026-06-16	Show	GitHub Exploit DB Packet Storm

2667	6.3	MEDIUM Network	-	-	Subscriber Insecure Direct Object References (IDOR) in KiviCare <= 4.2.1 versions.	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2026-40792	2026-06-16 06:24	2026-06-16	Show	GitHub Exploit DB Packet Storm

2668	6.5	MEDIUM Network	-	-	Subscriber Broken Access Control in Groundhogg < 4.4.1 versions.	CWE-862 Missing Authorization	CVE-2026-40793	2026-06-16 06:24	2026-06-16	Show	GitHub Exploit DB Packet Storm

2669	6.5	MEDIUM Network	-	-	Subscriber Broken Access Control in myCred <= 3.0.3 versions.	CWE-862 Missing Authorization	CVE-2026-40794	2026-06-16 06:24	2026-06-16	Show	GitHub Exploit DB Packet Storm

2670	6.5	MEDIUM Network	-	-	Subscriber Broken Access Control in Amelia <= 2.2 versions.	CWE-862 Missing Authorization	CVE-2026-40795	2026-06-16 06:24	2026-06-16	Show	GitHub Exploit DB Packet Storm