Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 29, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
6441	4.7	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける競合状態に関する脆弱性	CWE-362 競合状態	CVE-2026-31728	2026-05-11 11:00	2026-05-1	Show	GitHub Exploit DB Packet Storm

6442	7.8	重要 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける配列インデックスの検証に関する脆弱性	CWE-129 配列インデックスの不適切な検証	CVE-2026-31729	2026-05-11 11:00	2026-05-1	Show	GitHub Exploit DB Packet Storm

6443	7.8	重要 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける二重解放に関する脆弱性	CWE-415 二重解放	CVE-2026-31730	2026-05-11 11:00	2026-05-1	Show	GitHub Exploit DB Packet Storm

6444	7.8	重要 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-31731	2026-05-11 11:00	2026-05-1	Show	GitHub Exploit DB Packet Storm

6445	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける有効期限後のメモリの解放の欠如に関する脆弱性	CWE-401 有効期限後のメモリの解放の欠如	CVE-2026-31732	2026-05-11 11:00	2026-05-1	Show	GitHub Exploit DB Packet Storm

6446	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-31733	2026-05-11 11:00	2026-05-1	Show	GitHub Exploit DB Packet Storm

6447	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-31734	2026-05-11 11:00	2026-05-1	Show	GitHub Exploit DB Packet Storm

6448	8.8	重要 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-31735	2026-05-11 10:59	2026-05-1	Show	GitHub Exploit DB Packet Storm

6449	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux KernelにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-31736	2026-05-11 10:59	2026-05-1	Show	GitHub Exploit DB Packet Storm

6450	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-31737	2026-05-11 10:59	2026-05-1	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 30, 2026, 4:22 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1361	7.5	HIGH Network	-	-	Multiple Shapedsmart-post-show-pro WordPress plugin before 4.0.2, Real Testimonials Pro WordPress plugin before 3.2.5, Product Slider for WooCommerce Pro WordPress plugin before 3.5.3 Pro smart-post-…	-	CVE-2026-10735	2026-06-26 04:07	2026-06-24	Show	GitHub Exploit DB Packet Storm

1362	7.2	HIGH Network	-	-	The Post Duplicator WordPress plugin before 3.0.15 does not safely handle custom meta-data during post duplication, storing attacker-supplied serialized values without the WordPress meta API's double…	-	CVE-2026-10749	2026-06-26 04:07	2026-06-24	Show	GitHub Exploit DB Packet Storm

1363	2.7	LOW Network	-	-	The Site Kit by Google WordPress plugin before 1.176.0 does not properly restrict a REST API write endpoint to administrators, allowing lower-privileged users who have been granted dashboard sharing…	-	CVE-2026-10753	2026-06-26 04:07	2026-06-24	Show	GitHub Exploit DB Packet Storm

1364	7.7	HIGH Network	-	-	The Cornerstone WordPress plugin before 7.8.9 does not enforce capability checks on one of its REST API routes, allowing any authenticated user to disclose the metadata of any other user, including r…	-	CVE-2026-9709	2026-06-26 04:07	2026-06-24	Show	GitHub Exploit DB Packet Storm

1365	7.7	HIGH Network	-	-	The Cornerstone WordPress plugin before 7.8.8 does not enforce capability checks on one of its CSS-preview request handlers, and exposes the nonce needed to call it to every logged-in user on any wp-…	-	CVE-2026-9710	2026-06-26 04:07	2026-06-24	Show	GitHub Exploit DB Packet Storm

1366	7.5	HIGH Network	microsoft	365_copilot	Missing authentication for critical function in M365 Copilot allows an unauthorized attacker to disclose information over a network.	CWE-306 Missing Authentication for Critical Function	CVE-2026-54130	2026-06-26 03:59	2026-06-19	Show	GitHub Exploit DB Packet Storm

1367	6.5	MEDIUM Adjacent	-	-	The Zephyr PL011 UART driver (drivers/serial/uart_pl011.c) contains an unbounded software loop in pl011_irq_tx_enable() that repeatedly invokes the interrupt-driven application callback while the TX …	CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2026-10642	2026-06-26 03:58	2026-06-25	Show	GitHub Exploit DB Packet Storm

1368	9.9	CRITICAL Network	microsoft	dynamics_365	Improper access control in Microsoft Dynamics 365 allows an authorized attacker to elevate privileges over a network.	CWE-284 Improper Access Control	CVE-2026-47647	2026-06-26 03:57	2026-06-19	Show	GitHub Exploit DB Packet Storm

1369	-		-	-	motionEye (mEye) is an online interface for a piece of software called "motion," which is a video surveillance program with motion detection. Versions prior to 0.44.0 contain an absolute path travers…	CWE-22 Path Traversal	CVE-2026-55488	2026-06-26 03:56	2026-06-25	Show	GitHub Exploit DB Packet Storm

1370	4.3	MEDIUM Network	-	-	AnythingLLM is an application that turns pieces of content into context that any LLM can use as references during chatting. Prior to 1.13.0, on Windows, the document folder listing route can accept a…	CWE-22 Path Traversal	CVE-2026-48789	2026-06-26 03:56	2026-06-25	Show	GitHub Exploit DB Packet Storm