Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 28, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
121 8.8 重要
Network 		vLLM vLLM vLLMにおける制御されていない検索パスの要素に関する脆弱性 New CWE-427
制御されていない検索パスの要素 		CVE-2026-54232 2026-06-26 11:55 2026-06-22 Show GitHub Exploit DB Packet Storm
122 6.5 警告
Network 		vLLM vLLM vLLMにおける高圧縮データの処理 (データ増幅)に関する脆弱性 New CWE-409
高圧縮データの不適切な処理 (データ増幅) 		CVE-2026-54233 2026-06-26 11:55 2026-06-22 Show GitHub Exploit DB Packet Storm
123 6.5 警告
Network 		vLLM vLLM vLLMにおける指定されたタイプの入力に対する不適切な検証に関する脆弱性 New CWE-1287
指定されたタイプの入力に対する不適切な検証 		CVE-2026-54235 2026-06-26 11:55 2026-06-22 Show GitHub Exploit DB Packet Storm
124 5.3 警告
Network 		vLLM vLLM vLLMにおけるログファイルからの情報漏えいに関する脆弱性 New CWE-532
ログファイルからの情報漏えい 		CVE-2026-54236 2026-06-26 11:55 2026-06-22 Show GitHub Exploit DB Packet Storm
125 5.3 警告
Network 		protobufjs project protobufjs-cli
protobufjs 		protobufjs projectのprotobufjs-cli等の複数製品における複数の脆弱性 New CWE-674
CWE-754
CVE-2026-54269 2026-06-26 11:55 2026-06-22 Show GitHub Exploit DB Packet Storm
126 5.3 警告
Network 		protobufjs project protobufjs protobufjs projectのprotobufjsにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 New CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-54270 2026-06-26 11:55 2026-06-22 Show GitHub Exploit DB Packet Storm
127 8.2 重要
Network 		protobufjs project protobufjs-cli protobufjs projectのprotobufjs-cliにおけるコードインジェクションの脆弱性 New CWE-94
コード・インジェクション 		CVE-2026-54271 2026-06-26 11:55 2026-06-22 Show GitHub Exploit DB Packet Storm
128 7.5 重要
Network 		Astro Astro Astroにおける複数の脆弱性 New CWE-20
CWE-918
CVE-2026-54299 2026-06-26 11:54 2026-06-22 Show GitHub Exploit DB Packet Storm
129 5.4 警告
Network 		n8n n8n n8nにおけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-54303 2026-06-26 11:54 2026-06-23 Show GitHub Exploit DB Packet Storm
130 10 緊急
Network 		n8n n8n n8nにおける重要な機能に対する認証の欠如に関する脆弱性 New CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2026-54309 2026-06-26 11:54 2026-06-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 28, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
354041 - sun jdk
jre 		readObject in (1) Java Runtime Environment (JRE) and (2) Software Development Kit (SDK) 1.4.0 through 1.4.2_05 allows remote attackers to cause a denial of service (JVM unresponsive) via crafted seri… NVD-CWE-Other
CVE-2004-2540 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
354042 - dynix webpac Multiple SQL injection vulnerabilities in Dynix (formerly known as epixtech) WebPAC allow remote attackers to execute arbitrary SQL commands via unknown attack vectors, resulting in an ability to exe… NVD-CWE-Other
CVE-2004-2542 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
354043 - securecomputing sidewinder_g2 Secure Computing Corporation Sidewinder G2 6.1.0.01 might allow remote attackers to cause a denial of service (proxy failure) via invalid traffic to the (1) T.120 or (2) RTSP proxy, or (3) invalid MI… NVD-CWE-Other
CVE-2004-2543 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
354044 - securecomputing sidewinder_g2 Admin Console in Secure Computing Corporation Sidewinder G2 6.1.0.01 exports private keys when exporting firewall certificates, which might allow attackers to obtain sensitive information. NVD-CWE-Other
CVE-2004-2544 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
354045 - netwin surgemail
webmail 		NetWin (1) SurgeMail before 2.0c and (2) WebMail allow remote attackers to obtain sensitive information via HTTP requests that (a) specify the / URI, (b) specify the /scripts/ URI, or (c) specify a n… NVD-CWE-Other
CVE-2004-2547 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
354046 - photopost photopost_php_pro SQL injection vulnerability in showphoto.php in PhotoPost PHP Pro 4.6 and earlier allows remote attackers to gain unauthorized access via the photo variable. NVD-CWE-Other
CVE-2004-0239 2017-07-11 10:30 2004-11-23 Show GitHub Exploit DB Packet Storm
354047 - qualiteam x-cart Directory traversal vulnerability in X-Cart 3.4.3 allows remote attackers to view arbitrary files via a .. (dot dot) in the shop_closed_file argument to auth.php. NVD-CWE-Other
CVE-2004-0240 2017-07-11 10:30 2004-11-23 Show GitHub Exploit DB Packet Storm
354048 - qualiteam x-cart X-Cart 3.4.3 allows remote attackers to execute arbitrary commands via the perl_binary argument in (1) upgrade.php or (2) general.php. NVD-CWE-Other
CVE-2004-0241 2017-07-11 10:30 2004-11-23 Show GitHub Exploit DB Packet Storm
354049 - qualiteam x-cart X-Cart 3.4.3 allows remote attackers to gain sensitive information via a mode parameter with (1) phpinfo command or (2) perlinfo command. NVD-CWE-Other
CVE-2004-0242 2017-07-11 10:30 2004-11-23 Show GitHub Exploit DB Packet Storm
354050 - web_crossing_inc web_crossing Web Crossing 4.x and 5.x allows remote attackers to cause a denial of service (crash) by sending a HTTP POST request with a large or negative Content-Length, which causes an integer divide-by-zero. NVD-CWE-Other
CVE-2004-0245 2017-07-11 10:30 2004-11-23 Show GitHub Exploit DB Packet Storm