Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 10, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
821 8.3 重要
Adjacent 		MacGregor Interschalt VDR G4e Firmware MacGregorのInterschalt VDR G4e Firmwareにおけるデフォルトの認証情報の使用に関する脆弱性 New CWE-1392
デフォルトの認証情報の使用 		CVE-2026-42941 2026-06-8 11:46 2026-05-29 Show GitHub Exploit DB Packet Storm
822 5.4 警告
Adjacent 		MacGregor Interschalt VDR G4e Firmware MacGregorのInterschalt VDR G4e Firmwareにおける認証情報の不十分な保護に関する脆弱性 New CWE-522
認証情報の不十分な保護 		CVE-2026-42951 2026-06-8 11:46 2026-05-29 Show GitHub Exploit DB Packet Storm
823 7.8 重要
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける解放済みメモリの使用に関する脆弱性 New CWE-416
解放済みメモリの使用 		CVE-2026-43084 2026-06-8 11:46 2026-05-6 Show GitHub Exploit DB Packet Storm
824 5.5 警告
Local 		Zeit, Inc. Vercel CLI Vercel, Inc. (旧 Zeit, Inc.)のVercel CLIにおける複数の脆弱性 New CWE-200
CWE-532
CVE-2026-44479 2026-06-8 11:46 2026-05-13 Show GitHub Exploit DB Packet Storm
825 5.3 警告
Network 		Open Quantum Safe liboqs Open Quantum Safeのliboqsにおける複数の脆弱性 New CWE-125
CWE-20
CVE-2026-44518 2026-06-8 11:46 2026-05-29 Show GitHub Exploit DB Packet Storm
826 5.4 警告
Adjacent 		MacGregor Interschalt VDR G4e Firmware MacGregorのInterschalt VDR G4e Firmwareにおける強度が不十分なパスワードハッシュの使用に関する脆弱性 New CWE-916
強度が不十分なパスワードハッシュの使用 		CVE-2026-44611 2026-06-8 11:46 2026-05-29 Show GitHub Exploit DB Packet Storm
827 6.5 警告
Network 		librechat librechat LibreChatにおける送信データへの重要な情報の挿入に関する脆弱性 New CWE-201
CWE-noinfo
CVE-2026-44653 2026-06-8 11:46 2026-06-2 Show GitHub Exploit DB Packet Storm
828 8.1 重要
Network 		librechat librechat LibreChatにおける不正な認証に関する脆弱性 New CWE-863
不正な認証 		CVE-2026-44654 2026-06-8 11:46 2026-06-2 Show GitHub Exploit DB Packet Storm
829 8.1 重要
Network 		Broadcom RabbitMQ Server BroadcomのRabbitMQ Serverにおける不正な認証に関する脆弱性 New CWE-863
不正な認証 		CVE-2026-44838 2026-06-8 11:46 2026-05-27 Show GitHub Exploit DB Packet Storm
830 4.8 警告
Network 		Broadcom RabbitMQ Server BroadcomのRabbitMQ Serverにおけるクロスサイトスクリプティングの脆弱性 New CWE-80
クロスサイトスクリプティング (Basic XSS) 		CVE-2026-44839 2026-06-8 11:46 2026-05-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2721 6.5 MEDIUM
Network 		- - Missing Authorization vulnerability in Paolo GeoDirectory allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects GeoDirectory: from n/a through 2.8.157. CWE-862
 Missing Authorization 		CVE-2026-42671 2026-06-2 02:57 2026-06-2 Show GitHub Exploit DB Packet Storm
2722 9.3 CRITICAL
Network 		- - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Wp Directory Kit WP Directory Kit allows Blind SQL Injection. This issue affects WP Directory Ki… CWE-89
SQL Injection 		CVE-2026-42672 2026-06-2 02:57 2026-06-2 Show GitHub Exploit DB Packet Storm
2723 7.5 HIGH
Network 		- - Insertion of Sensitive Information Into Sent Data vulnerability in Logtivity Activity Logs Activity Logs, User Activity Tracking, Multisite Activity Log from Logtivity allows Retrieve Embedded Sensit… CWE-201
 Insertion of Sensitive Information Into Sent Data 		CVE-2026-42673 2026-06-2 02:57 2026-06-2 Show GitHub Exploit DB Packet Storm
2724 7.5 HIGH
Network 		- - Authentication Bypass by Spoofing vulnerability in AAM Plugin Advanced Access Manager allows URL Encoding. This issue affects Advanced Access Manager: from n/a through 7.1.0. CWE-290
 Authentication Bypass by Spoofing 		CVE-2026-42674 2026-06-2 02:57 2026-06-2 Show GitHub Exploit DB Packet Storm
2725 7.3 HIGH
Network 		- - Missing Authorization vulnerability in Themefic Hydra Booking allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Hydra Booking: from n/a through 1.1.41. CWE-862
 Missing Authorization 		CVE-2026-42675 2026-06-2 02:57 2026-06-2 Show GitHub Exploit DB Packet Storm
2726 6.5 MEDIUM
Network 		- - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in myCred allows Stored XSS. This issue affects myCred: from n/a through 3.0.4. CWE-79
Cross-site Scripting 		CVE-2026-42676 2026-06-2 02:57 2026-06-2 Show GitHub Exploit DB Packet Storm
2727 7.5 HIGH
Network 		- - Missing Authorization vulnerability in Ben Balter WP Document Revisions allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects WP Document Revisions: from n/a be… CWE-862
 Missing Authorization 		CVE-2026-42677 2026-06-2 02:57 2026-06-2 Show GitHub Exploit DB Packet Storm
2728 7.1 HIGH
Network 		- - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Liquid Web / StellarWP GiveWP allows DOM-Based XSS. This issue affects GiveWP: from n/a through … CWE-79
Cross-site Scripting 		CVE-2026-42678 2026-06-2 02:57 2026-06-2 Show GitHub Exploit DB Packet Storm
2729 6.5 MEDIUM
Network 		- - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Mamunur Rashid Classified Listing allows Path Traversal. This issue affects Classified Listing: from n… CWE-22
Path Traversal 		CVE-2026-42679 2026-06-2 02:57 2026-06-2 Show GitHub Exploit DB Packet Storm
2730 6.5 MEDIUM
Network 		rust-lang cargo Cargo between 1.68 and 1.96 incorrectly normalized the URLs of third-party registries using the sparse index protocol. If a hosting provider allowed multiple registries to be hosted with arbitrary na… CWE-647
 Use of Non-Canonical URL Paths for Authorization Decisions 		CVE-2026-5222 2026-06-2 02:56 2026-05-25 Show GitHub Exploit DB Packet Storm