Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 29, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
121	7.5	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける解放済みメモリの使用に関する脆弱性 New	CWE-416 解放済みメモリの使用	CVE-2026-13283	2026-06-29 11:20	2026-06-25	Show	GitHub Exploit DB Packet Storm

122	7.5	重要 Network	shell-quote project	shell-quote	shell-quote projectのshell-quoteにおけるアルゴリズムの複雑さに関する脆弱性 New	CWE-407 アルゴリズムの複雑性	CVE-2026-13311	2026-06-29 11:20	2026-06-25	Show	GitHub Exploit DB Packet Storm

123	4.3	警告 Network	GitLab.org	GitLab	GitLab.orgのGitLabにおけるコードインジェクションの脆弱性 New	CWE-94 コード・インジェクション	CVE-2026-1606	2026-06-29 11:20	2026-06-25	Show	GitHub Exploit DB Packet Storm

124	7.8	重要 Local	gimp	gimp	gimpにおけるヒープベースのバッファオーバーフローの脆弱性 New	CWE-122 ヒープオーバーフロー	CVE-2026-2050	2026-06-29 11:20	2026-06-24	Show	GitHub Exploit DB Packet Storm

125	5.3	警告 Network	GitLab.org	GitLab	GitLab.orgのGitLabにおける認証の欠如に関する脆弱性 New	CWE-862 認証の欠如	CVE-2026-2238	2026-06-29 11:20	2026-06-25	Show	GitHub Exploit DB Packet Storm

126	3.1	低 Network	GitLab.org	GitLab	GitLab.orgのGitLabにおける認証の欠如に関する脆弱性 New	CWE-862 認証の欠如	CVE-2026-3176	2026-06-29 11:20	2026-06-25	Show	GitHub Exploit DB Packet Storm

127	8.8	重要 Network	langflow	langflow	langflowにおけるユーザ制御の鍵による認証回避に関する脆弱性 New	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-33760	2026-06-29 11:20	2026-06-23	Show	GitHub Exploit DB Packet Storm

128	9.8	緊急 Network	デル	Dell Wyse Management Suite	デルのDell Wyse Management Suiteにおける信頼できるデータ受け入れ時の信頼できない無関係なデータの受け入れに関する脆弱性 New	CWE-349 信頼できるデータ受け入れ時の信頼できない無関係なデータの受け入れ	CVE-2026-41120	2026-06-29 11:20	2026-06-25	Show	GitHub Exploit DB Packet Storm

129	5.4	警告 Network	authlib	authlib	authlibにおけるオープンリダイレクトの脆弱性 New	CWE-601 オープンリダイレクト	CVE-2026-41479	2026-06-29 11:20	2026-06-22	Show	GitHub Exploit DB Packet Storm

130	6.5	警告 Network	langflow	langflow	langflowにおけるパストラバーサルの脆弱性 New	CWE-22 パス・トラバーサル	CVE-2026-42867	2026-06-29 11:19	2026-06-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 29, 2026, 4:19 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
256891	5.4	MEDIUM Network	genixcms	genixcms	GeniXCMS 1.0.2 has XSS triggered by an authenticated user who submits a page, as demonstrated by a crafted oncut attribute in a B element.	CWE-79 Cross-site Scripting	CVE-2017-8762	2024-11-21 12:34	2017-05-4	Show	GitHub Exploit DB Packet Storm

256892	6.5	MEDIUM Network	brave	brave	Brave 0.12.4 has a Status Bar Obfuscation issue in which a redirection target is shown in a possibly unexpected way. NOTE: third parties dispute this issue because it is a behavior that might have le…	NVD-CWE-noinfo	CVE-2017-8459	2024-11-21 12:34	2017-05-3	Show	GitHub Exploit DB Packet Storm

256893	6.5	MEDIUM Network	brave	brave	Brave 0.12.4 has a URI Obfuscation issue in which a string such as https://safe.example.com@unsafe.example.com/ is displayed without a clear UI indication that it is not a resource on the safe.exampl…	CWE-74 Injection	CVE-2017-8458	2024-11-21 12:34	2017-05-3	Show	GitHub Exploit DB Packet Storm

256894	7.8	HIGH Local	foxitsoftware	foxit_reader phantompdf	Foxit Reader before 8.2.1 and PhantomPDF before 8.2.1 have an out-of-bounds read that allows remote attackers to obtain sensitive information or possibly execute arbitrary code via a crafted font in …	CWE-125 Out-of-bounds Read	CVE-2017-8455	2024-11-21 12:34	2017-05-3	Show	GitHub Exploit DB Packet Storm

256895	8.8	HIGH Network	foxitsoftware	foxit_reader phantompdf	Foxit Reader before 8.2.1 and PhantomPDF before 8.2.1 have an out-of-bounds read that allows remote attackers to obtain sensitive information or possibly execute arbitrary code via a crafted font in …	CWE-125 Out-of-bounds Read	CVE-2017-8454	2024-11-21 12:34	2017-05-3	Show	GitHub Exploit DB Packet Storm

256896	8.8	HIGH Network	foxitsoftware	foxit_reader phantompdf	Foxit Reader before 8.2.1 and PhantomPDF before 8.2.1 have an out-of-bounds read that allows remote attackers to obtain sensitive information or possibly execute arbitrary code via a crafted font in …	CWE-125 Out-of-bounds Read	CVE-2017-8453	2024-11-21 12:34	2017-05-3	Show	GitHub Exploit DB Packet Storm

256897	5.5	MEDIUM Local	gnu	binutils	The function coff_set_alignment_hook in coffcode.h in Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, has a memory leak vulnerability which can cause memory ex…	CWE-772 Missing Release of Resource after Effective Lifetime	CVE-2017-8421	2024-11-21 12:34	2017-05-3	Show	GitHub Exploit DB Packet Storm

256898	7.8	HIGH Local	lame_project	lame	LAME through 3.99.5 relies on the signed integer data type for values in a WAV or AIFF header, which allows remote attackers to cause a denial of service (stack-based buffer overflow or heap-based bu…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-8419	2024-11-21 12:34	2017-05-2	Show	GitHub Exploit DB Packet Storm

256899	3.3	LOW Local	rubocop_project	rubocop	RuboCop 0.48.1 and earlier does not use /tmp in safe way, allowing local users to exploit this to tamper with cache files belonging to other users.	CWE-668 Exposure of Resource to Wrong Sphere	CVE-2017-8418	2024-11-21 12:34	2017-05-2	Show	GitHub Exploit DB Packet Storm

256900	2.4	LOW Physics	avm	fritz\!os	Information Leakage in PPPoE Packet Padding in AVM Fritz!Box 7490 with Firmware versions Fritz!OS 6.80 and 6.83 allows physically proximate attackers to view slices of previously transmitted packets …	CWE-200 Information Exposure	CVE-2017-8087	2024-11-21 12:33	2019-10-23	Show	GitHub Exploit DB Packet Storm