Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
931 9.9 緊急
Network 		オラクル Oracle WebLogic Server オラクルのOracle WebLogic Serverにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-35263 2026-06-22 11:40 2026-06-17 Show GitHub Exploit DB Packet Storm
932 8.8 重要
Network 		オラクル Oracle Identity Manager オラクルのOracle Identity Managerにおける重要な機能に対する認証の欠如に関する脆弱性 CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2026-35265 2026-06-22 11:40 2026-06-17 Show GitHub Exploit DB Packet Storm
933 8.8 重要
Network 		オラクル Oracle Identity Manager オラクルのOracle Identity Managerにおける重要な機能に対する認証の欠如に関する脆弱性 CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2026-35267 2026-06-22 11:40 2026-06-17 Show GitHub Exploit DB Packet Storm
934 9.9 緊急
Network 		オラクル Oracle Identity Manager オラクルのOracle Identity Managerにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-35268 2026-06-22 11:40 2026-06-17 Show GitHub Exploit DB Packet Storm
935 7.5 重要
Network 		オラクル Oracle Identity Manager オラクルのOracle Identity Managerにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-35269 2026-06-22 11:40 2026-06-17 Show GitHub Exploit DB Packet Storm
936 9.1 緊急
Network 		オラクル Oracle WebCenter Content オラクルのOracle WebCenter Contentにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-35270 2026-06-22 11:40 2026-06-17 Show GitHub Exploit DB Packet Storm
937 7.5 重要
Local 		オラクル Oracle VM VirtualBox オラクルのOracle VM VirtualBoxにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-35275 2026-06-22 11:40 2026-06-17 Show GitHub Exploit DB Packet Storm
938 9.8 緊急
Network 		オラクル Oracle WebCenter Content オラクルのOracle WebCenter Contentにおける重要な機能に対する認証の欠如に関する脆弱性 CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2026-35286 2026-06-22 11:40 2026-06-17 Show GitHub Exploit DB Packet Storm
939 6.6 警告
Network 		オラクル Oracle WebLogic Server オラクルのOracle WebLogic Serverにおける権限管理に関する脆弱性 CWE-269
不適切な権限管理 		CVE-2026-35291 2026-06-22 11:40 2026-06-17 Show GitHub Exploit DB Packet Storm
940 10 緊急
Network 		オラクル Oracle WebLogic Server オラクルのOracle WebLogic Serverにおける重要な機能に対する認証の欠如に関する脆弱性 CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2026-35292 2026-06-22 11:40 2026-06-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 28, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
257071 7.5 HIGH
Network 		wificam wireless_ip_camera_\(p2p\)_firmware Wireless IP Camera (P2P) WIFICAM devices have an "Apple Production IOS Push Services" private RSA key and certificate stored in /system/www/pem/ck.pem inside the firmware, which allows attackers to o… CWE-522
 Insufficiently Protected Credentials 		CVE-2017-8222 2024-11-21 12:33 2017-04-26 Show GitHub Exploit DB Packet Storm
257072 7.5 HIGH
Network 		wificam wireless_ip_camera_\(p2p\)_firmware Wireless IP Camera (P2P) WIFICAM devices rely on a cleartext UDP tunnel protocol (aka the Cloud feature) for communication between an Android application and a camera device, which allows remote atta… CWE-311
Missing Encryption of Sensitive Data 		CVE-2017-8221 2024-11-21 12:33 2017-04-26 Show GitHub Exploit DB Packet Storm
257073 9.9 CRITICAL
Network 		tp-link c2_firmware
c20i_firmware 		TP-Link C2 and C20i devices through firmware 0.9.1 4.2 v0032.0 Build 160706 Rel.37961n allow remote code execution with a single HTTP request by placing shell commands in a "host=" line within HTTP P… CWE-78
OS Command  		CVE-2017-8220 2024-11-21 12:33 2017-04-26 Show GitHub Exploit DB Packet Storm
257074 6.5 MEDIUM
Network 		tp-link c2_firmware
c20i_firmware 		TP-Link C2 and C20i devices through firmware 0.9.1 4.2 v0032.0 Build 160706 Rel.37961n allow DoSing the HTTP server via a crafted Cookie header to the /cgi/ansi URI. CWE-20
 Improper Input Validation  		CVE-2017-8219 2024-11-21 12:33 2017-04-26 Show GitHub Exploit DB Packet Storm
257075 9.8 CRITICAL
Network 		tp-link c2_firmware
c20i_firmware 		vsftpd on TP-Link C2 and C20i devices through firmware 0.9.1 4.2 v0032.0 Build 160706 Rel.37961n has a backdoor admin account with the 1234 password, a backdoor guest account with the guest password,… CWE-1188
 Insecure Default Initialization of Resource 		CVE-2017-8218 2024-11-21 12:33 2017-04-26 Show GitHub Exploit DB Packet Storm
257076 5.3 MEDIUM
Network 		tp-link c2_firmware
c20i_firmware 		TP-Link C2 and C20i devices through firmware 0.9.1 4.2 v0032.0 Build 160706 Rel.37961n have too permissive iptables rules, e.g., SNMP is not blocked on any interface. CWE-862
 Missing Authorization 		CVE-2017-8217 2024-11-21 12:33 2017-04-26 Show GitHub Exploit DB Packet Storm
257077 5.3 MEDIUM
Network 		modx modx_revolution Directory traversal in setup/processors/url_search.php (aka the search page of an unused processor) in MODX Revolution 2.5.7 might allow remote attackers to obtain system directory information. CWE-22
Path Traversal 		CVE-2017-8115 2024-11-21 12:33 2017-04-26 Show GitHub Exploit DB Packet Storm
257078 5.3 MEDIUM
Network 		joomla joomla\! In Joomla! 3.4.0 through 3.6.5 (fixed in 3.7.0), multiple files caused full path disclosures on systems with enabled error reporting. CWE-200
Information Exposure 		CVE-2017-8057 2024-11-21 12:33 2017-04-26 Show GitHub Exploit DB Packet Storm
257079 6.5 MEDIUM
Network 		joomla joomla\! In Joomla! 3.2.0 through 3.6.5 (fixed in 3.7.0), inadequate MIME type checks allowed low-privilege users to upload swf files even if they were explicitly forbidden. CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2017-7989 2024-11-21 12:33 2017-04-26 Show GitHub Exploit DB Packet Storm
257080 5.3 MEDIUM
Network 		joomla joomla\! In Joomla! 1.6.0 through 3.6.5 (fixed in 3.7.0), inadequate filtering of form contents allows overwriting the author of an article. NVD-CWE-noinfo
CVE-2017-7988 2024-11-21 12:33 2017-04-26 Show GitHub Exploit DB Packet Storm