Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 28, 2026, 10 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 91 | 7.2 |
重要
Network |
Apache Software Foundation | APISIX | Apache Software FoundationのAPISIXにおけるオープンリダイレクトの脆弱性 New |
CWE-601
オープンリダイレクト |
CVE-2026-48895 | 2026-06-26 11:56 | 2026-06-19 | Show | GitHub Exploit DB Packet Storm |
| 92 | 5.3 |
警告
Network |
markdown-it project | markdown-it | markdown-it projectのmarkdown-itにおけるリソースの枯渇に関する脆弱性 New |
CWE-400
リソースの枯渇 |
CVE-2026-48988 | 2026-06-26 11:56 | 2026-06-17 | Show | GitHub Exploit DB Packet Storm |
| 93 | 9.1 |
緊急
Network |
Apache Software Foundation | APISIX | Apache Software FoundationのAPISIXにおけるデータの整合性検証不備に関する脆弱性 New |
CWE-354
データの整合性検証不備 |
CVE-2026-49230 | 2026-06-26 11:56 | 2026-06-19 | Show | GitHub Exploit DB Packet Storm |
| 94 | 5.4 |
警告
Network |
Apache Software Foundation | APISIX | Apache Software FoundationのAPISIXにおけるスプーフィングによる認証回避に関する脆弱性 New |
CWE-290
スプーフィングによる認証回避 |
CVE-2026-49231 | 2026-06-26 11:56 | 2026-06-19 | Show | GitHub Exploit DB Packet Storm |
| 95 | 3.3 |
低
Local |
pypdf project | pypdf | pypdf projectのpypdfにおけるアルゴリズムの複雑さに関する脆弱性 New |
CWE-407
アルゴリズムの複雑性 |
CVE-2026-49460 | 2026-06-26 11:56 | 2026-06-22 | Show | GitHub Exploit DB Packet Storm |
| 96 | 5.5 |
警告
Local |
pypdf project | pypdf | pypdf projectのpypdfにおけるリソースの枯渇に関する脆弱性 New |
CWE-400
リソースの枯渇 |
CVE-2026-49461 | 2026-06-26 11:56 | 2026-06-22 | Show | GitHub Exploit DB Packet Storm |
| 97 | 9.8 |
緊急
Network |
litellm | litellm | LiteLLMにおけるスプーフィングによる認証回避に関する脆弱性 New |
CWE-290
スプーフィングによる認証回避 |
CVE-2026-49468 | 2026-06-26 11:56 | 2026-06-22 | Show | GitHub Exploit DB Packet Storm |
| 98 | 5.4 |
警告
Network |
Eclipse Foundation | Eclipse Open VSX | Eclipse FoundationのEclipse Open VSXにおけるクロスサイトスクリプティングの脆弱性 New |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2026-4983 | 2026-06-26 11:56 | 2026-06-23 | Show | GitHub Exploit DB Packet Storm |
| 99 | 9.3 |
緊急
Network |
Apache Software Foundation | APISIX | Apache Software FoundationのAPISIXにおけるクロスサイトリクエストフォージェリの脆弱性 New |
CWE-352
同一生成元ポリシー違反 |
CVE-2026-49871 | 2026-06-26 11:56 | 2026-06-19 | Show | GitHub Exploit DB Packet Storm |
| 100 | 8.1 |
重要
Network |
Apache Software Foundation | APISIX | Apache Software FoundationのAPISIXにおける認証に関する脆弱性 New |
CWE-287
不適切な認証 |
CVE-2026-49872 | 2026-06-26 11:56 | 2026-06-19 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 28, 2026, 4:01 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 257031 | 6.5 |
MEDIUM
Network |
imagemagick debian |
imagemagick debian_linux |
In ImageMagick 7.0.5-5, the ReadSUNImage function in sun.c allows attackers to cause a denial of service (memory leak) via a crafted file. |
CWE-772
Missing Release of Resource after Effective Lifetime |
CVE-2017-8356 | 2024-11-21 12:33 | 2017-05-1 | Show | GitHub Exploit DB Packet Storm |
| 257032 | 6.5 |
MEDIUM
Network |
imagemagick debian |
imagemagick debian_linux |
In ImageMagick 7.0.5-5, the ReadMTVImage function in mtv.c allows attackers to cause a denial of service (memory leak) via a crafted file. |
CWE-772
Missing Release of Resource after Effective Lifetime |
CVE-2017-8355 | 2024-11-21 12:33 | 2017-05-1 | Show | GitHub Exploit DB Packet Storm |
| 257033 | 6.5 |
MEDIUM
Network |
imagemagick debian |
imagemagick debian_linux |
In ImageMagick 7.0.5-5, the ReadBMPImage function in bmp.c allows attackers to cause a denial of service (memory leak) via a crafted file. |
CWE-772
Missing Release of Resource after Effective Lifetime |
CVE-2017-8354 | 2024-11-21 12:33 | 2017-05-1 | Show | GitHub Exploit DB Packet Storm |
| 257034 | 6.5 |
MEDIUM
Network |
imagemagick debian |
imagemagick debian_linux |
In ImageMagick 7.0.5-5, the ReadPICTImage function in pict.c allows attackers to cause a denial of service (memory leak) via a crafted file. |
CWE-772
Missing Release of Resource after Effective Lifetime |
CVE-2017-8353 | 2024-11-21 12:33 | 2017-05-1 | Show | GitHub Exploit DB Packet Storm |
| 257035 | 6.5 |
MEDIUM
Network |
imagemagick debian |
imagemagick debian_linux |
In ImageMagick 7.0.5-5, the ReadXWDImage function in xwd.c allows attackers to cause a denial of service (memory leak) via a crafted file. |
CWE-772
Missing Release of Resource after Effective Lifetime |
CVE-2017-8352 | 2024-11-21 12:33 | 2017-05-1 | Show | GitHub Exploit DB Packet Storm |
| 257036 | 6.5 |
MEDIUM
Network |
imagemagick debian |
imagemagick debian_linux |
In ImageMagick 7.0.5-5, the ReadPCDImage function in pcd.c allows attackers to cause a denial of service (memory leak) via a crafted file. |
CWE-772
Missing Release of Resource after Effective Lifetime |
CVE-2017-8351 | 2024-11-21 12:33 | 2017-05-1 | Show | GitHub Exploit DB Packet Storm |
| 257037 | 6.5 |
MEDIUM
Network |
imagemagick debian |
imagemagick debian_linux |
In ImageMagick 7.0.5-5, the ReadJNGImage function in png.c allows attackers to cause a denial of service (memory leak) via a crafted file. |
CWE-772
Missing Release of Resource after Effective Lifetime |
CVE-2017-8350 | 2024-11-21 12:33 | 2017-05-1 | Show | GitHub Exploit DB Packet Storm |
| 257038 | 6.5 |
MEDIUM
Network |
imagemagick debian |
imagemagick debian_linux |
In ImageMagick 7.0.5-5, the ReadSFWImage function in sfw.c allows attackers to cause a denial of service (memory leak) via a crafted file. |
CWE-772
Missing Release of Resource after Effective Lifetime |
CVE-2017-8349 | 2024-11-21 12:33 | 2017-05-1 | Show | GitHub Exploit DB Packet Storm |
| 257039 | 6.5 |
MEDIUM
Network |
imagemagick debian |
imagemagick debian_linux |
In ImageMagick 7.0.5-5, the ReadMATImage function in mat.c allows attackers to cause a denial of service (memory leak) via a crafted file. |
CWE-772
Missing Release of Resource after Effective Lifetime |
CVE-2017-8348 | 2024-11-21 12:33 | 2017-05-1 | Show | GitHub Exploit DB Packet Storm |
| 257040 | 6.5 |
MEDIUM
Network |
imagemagick debian |
imagemagick debian_linux |
In ImageMagick 7.0.5-5, the ReadEXRImage function in exr.c allows attackers to cause a denial of service (memory leak) via a crafted file. |
CWE-772
Missing Release of Resource after Effective Lifetime |
CVE-2017-8347 | 2024-11-21 12:33 | 2017-05-1 | Show | GitHub Exploit DB Packet Storm |