Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 16, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
6151	6.6	警告 Local	Veeam	one	サムスンのOneにおける入力で指定された数量の不適切な検証に関する脆弱性	CWE-1284 入力で指定された数量の不適切な検証	CVE-2026-6839	2026-04-30 12:11	2026-04-22	Show	GitHub Exploit DB Packet Storm

6152	5.3	警告 Network	OpenClaw	OpenClaw	OpenClawにおける不適切な動作順序（早期増幅）に関する脆弱性	CWE-408 不適切な動作順序（早期増幅）	CVE-2026-41331	2026-04-30 12:11	2026-04-21	Show	GitHub Exploit DB Packet Storm

6153	9.8	緊急 Network	thinkphp	thinkphp	thinkphpにおけるユーザ制御の鍵による認証回避に関する脆弱性	CWE-639 ユーザ制御の鍵による認証回避	CVE-2018-25270	2026-04-30 12:11	2026-04-22	Show	GitHub Exploit DB Packet Storm

6154	9.8	緊急 Network	jizhicms	JIZHICMS	jizhicmsのJIZHICMSにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2025-50229	2026-04-30 12:11	2026-04-23	Show	GitHub Exploit DB Packet Storm

6155	9.1	緊急 Network	p2r3	bareiron	p2r3のbareironにおける境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2025-69808	2026-04-30 12:11	2026-03-16	Show	GitHub Exploit DB Packet Storm

6156	9.8	緊急 Network	p2r3	bareiron	p2r3のbareironにおける任意の場所に任意の値を書き込み可能な状態に関する脆弱性	CWE-123 任意の場所に任意の値を書き込み可能な状態	CVE-2025-69809	2026-04-30 12:11	2026-03-16	Show	GitHub Exploit DB Packet Storm

6157	7.5	重要 Network	NLTK	NLTK	NLTKにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-0847	2026-04-30 12:11	2026-03-4	Show	GitHub Exploit DB Packet Storm

6158	9.8	緊急 Network	lollms	lollms	lollmsにおけるアクセス制御に関する脆弱性	CWE-284 CWE-Other	CVE-2026-1114	2026-04-30 12:11	2026-04-7	Show	GitHub Exploit DB Packet Storm

6159	4.3	警告 Network	IBM	IBM Guardium Data Protection	IBMのIBM Guardium Data Protectionにおけるセッション期限に関する脆弱性	CWE-613 不適切なセッション期限	CVE-2026-1272	2026-04-30 12:11	2026-04-23	Show	GitHub Exploit DB Packet Storm

6160	4.9	警告 Network	IBM	IBM Guardium Data Protection	IBMのIBM Guardium Data Protectionにおけるビジネスロジックエラーに関する脆弱性	CWE-840 ビジネスロジックエラー	CVE-2026-1274	2026-04-30 12:11	2026-04-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
181	8.6	HIGH Local	-	-	When the application executes the JavaScript script embedded in the PDF within the sandbox, it fails to intercept some dangerous interfaces, which allows remote scripts to be loaded, resulting in arb… New	CWE-829 Inclusion of Functionality from Untrusted Control Sphere	CVE-2026-12057	2026-06-15 21:16	2026-06-15	Show	GitHub Exploit DB Packet Storm

182	7.8	HIGH Local	-	-	Multiple printer drivers provided by Ricoh Company, Ltd. and KONICA MINOLTA JAPAN, INC. contain a privilege escalation vulnerability. If this vulnerability is exploited, an attacker who can log in to… New	CWE-427 Uncontrolled Search Path Element	CVE-2026-50100	2026-06-15 19:16	2026-06-15	Show	GitHub Exploit DB Packet Storm

183	5.3	MEDIUM Network	-	-	A flaw was found in Ansible Lightspeed. This vulnerability, related to insufficient session expiration, allows a remote attacker to maintain persistent access to the Ansible Lightspeed instance. If a… New	CWE-613 Insufficient Session Expiration	CVE-2026-44188	2026-06-15 19:16	2026-06-15	Show	GitHub Exploit DB Packet Storm

184	-		-	-	Quick.CMS deserializes user-controlled data received over plaintext HTTP without ensuring integrity or authenticity. This allows attackers to tamper with serialized payloads in transit and inject mal… New	CWE-94 CWE-502 Code Injection Deserialization of Untrusted Data	CVE-2026-11860	2026-06-15 19:16	2026-06-15	Show	GitHub Exploit DB Packet Storm

185	5.5	MEDIUM Adjacent	-	-	A vulnerability was identified in Yealink SIP-T46U 108.86.0.118. Affected by this vulnerability is the function mod_webd.TFTPUploadIperf of the file /api/inner/tftpuploadiperf of the component Web Fa… New	CWE-74 CWE-77 Injection Command Injection	CVE-2026-12223	2026-06-15 15:16	2026-06-15	Show	GitHub Exploit DB Packet Storm

186	8.0	HIGH Adjacent	-	-	A vulnerability was determined in Yealink SIP-T46U 108.86.0.118. Affected is the function mod_webd.BlueToothTest of the file /api/inner/bttest of the component Web FastCGI Service. Executing a manipu… New	CWE-119 CWE-121 Incorrect Access of Indexable Resource ('Range Error') Stack-based Buffer Overflow	CVE-2026-12222	2026-06-15 15:16	2026-06-15	Show	GitHub Exploit DB Packet Storm

187	8.0	HIGH Adjacent	-	-	A vulnerability was found in Yealink SIP-T46U 108.86.0.118. This impacts the function sprintf of the file /api/upgrade/upgrade of the component Firmware Chunk Upload Handler. Performing a manipulatio… New	CWE-119 CWE-121 Incorrect Access of Indexable Resource ('Range Error') Stack-based Buffer Overflow	CVE-2026-12221	2026-06-15 15:16	2026-06-15	Show	GitHub Exploit DB Packet Storm

188	8.0	HIGH Adjacent	-	-	A vulnerability has been found in Yealink SIP-T46U 108.86.0.118. This affects the function mod_upgrade.SparePartsUpload of the file /api/upgrade/accupgradebychunk of the component Firmware Chunk Uplo… New	CWE-119 CWE-121 Incorrect Access of Indexable Resource ('Range Error') Stack-based Buffer Overflow	CVE-2026-12220	2026-06-15 15:16	2026-06-15	Show	GitHub Exploit DB Packet Storm

189	6.3	MEDIUM Network	-	-	A flaw has been found in Yealink SIP-T46U 108.86.0.118. The impacted element is the function mod_diagnose.CommandShellByType of the file /api/diagnosis/start of the component Web FastCGI Service. Thi… New	CWE-74 CWE-77 Injection Command Injection	CVE-2026-12219	2026-06-15 15:16	2026-06-15	Show	GitHub Exploit DB Packet Storm

190	8.0	HIGH Adjacent	-	-	A vulnerability was detected in Yealink SIP-T46U 108.87.50.1. The affected element is the function StartReportInformation of the file /api/inner/beforewifitest of the component Web FastCGI Service. T… New	CWE-119 CWE-121 Incorrect Access of Indexable Resource ('Range Error') Stack-based Buffer Overflow	CVE-2026-12218	2026-06-15 15:16	2026-06-15	Show	GitHub Exploit DB Packet Storm