Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
171	6.5	警告 Local	libexpat project	libexpat	libexpat projectのlibexpatにおける整数オーバーフローの脆弱性 New	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2026-56409	2026-06-26 11:52	2026-06-21	Show	GitHub Exploit DB Packet Storm

172	6.9	警告 Local	libexpat project	libexpat	libexpat projectのlibexpatにおける整数オーバーフローの脆弱性 New	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2026-56410	2026-06-26 11:52	2026-06-21	Show	GitHub Exploit DB Packet Storm

173	6.9	警告 Local	libexpat project	libexpat	libexpat projectのlibexpatにおける整数オーバーフローの脆弱性 New	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2026-56411	2026-06-26 11:52	2026-06-21	Show	GitHub Exploit DB Packet Storm

174	5.9	警告 Local	libexpat project	libexpat	libexpat projectのlibexpatにおける解放済みメモリの使用に関する脆弱性 New	CWE-416 解放済みメモリの使用	CVE-2026-56412	2026-06-26 11:52	2026-06-21	Show	GitHub Exploit DB Packet Storm

175	8.8	重要 Network	MISP project	Malware Information Sharing Platform (MISP)	MISP projectのMalware Information Sharing Platform (MISP)における認証の欠如に関する脆弱性 New	CWE-862 認証の欠如	CVE-2026-56423	2026-06-26 11:52	2026-06-22	Show	GitHub Exploit DB Packet Storm

176	8.8	重要 Network	MISP project	Malware Information Sharing Platform (MISP)	MISP projectのMalware Information Sharing Platform (MISP)における複数の脆弱性 New	CWE-639 CWE-862 CWE-863	CVE-2026-56424	2026-06-26 11:52	2026-06-22	Show	GitHub Exploit DB Packet Storm

177	7.2	重要 Network	MISP project	Malware Information Sharing Platform (MISP)	MISP projectのMalware Information Sharing Platform (MISP)におけるコードインジェクションの脆弱性 New	CWE-94 コード・インジェクション	CVE-2026-56446	2026-06-26 11:52	2026-06-22	Show	GitHub Exploit DB Packet Storm

178	7.2	重要 Network	MISP project	Malware Information Sharing Platform (MISP)	MISP projectのMalware Information Sharing Platform (MISP)における信頼できない制御領域からの機能の組み込みに関する脆弱性 New	CWE-829 信頼性のない制御領域からの機能の組み込み	CVE-2026-56447	2026-06-26 11:52	2026-06-22	Show	GitHub Exploit DB Packet Storm

179	6.1	警告 Network	nuxt	nuxt	Nuxtにおけるオープンリダイレクトの脆弱性 New	CWE-601 オープンリダイレクト	CVE-2026-56697	2026-06-26 11:52	2026-06-22	Show	GitHub Exploit DB Packet Storm

180	6.1	警告 Network	nuxt	nuxt	Nuxtにおけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-56698	2026-06-26 11:52	2026-06-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 28, 2026, 4:01 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
354041	-	sun	jdk jre	readObject in (1) Java Runtime Environment (JRE) and (2) Software Development Kit (SDK) 1.4.0 through 1.4.2_05 allows remote attackers to cause a denial of service (JVM unresponsive) via crafted seri…	NVD-CWE-Other	CVE-2004-2540	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

354042	-	dynix	webpac	Multiple SQL injection vulnerabilities in Dynix (formerly known as epixtech) WebPAC allow remote attackers to execute arbitrary SQL commands via unknown attack vectors, resulting in an ability to exe…	NVD-CWE-Other	CVE-2004-2542	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

354043	-	securecomputing	sidewinder_g2	Secure Computing Corporation Sidewinder G2 6.1.0.01 might allow remote attackers to cause a denial of service (proxy failure) via invalid traffic to the (1) T.120 or (2) RTSP proxy, or (3) invalid MI…	NVD-CWE-Other	CVE-2004-2543	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

354044	-	securecomputing	sidewinder_g2	Admin Console in Secure Computing Corporation Sidewinder G2 6.1.0.01 exports private keys when exporting firewall certificates, which might allow attackers to obtain sensitive information.	NVD-CWE-Other	CVE-2004-2544	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

354045	-	netwin	surgemail webmail	NetWin (1) SurgeMail before 2.0c and (2) WebMail allow remote attackers to obtain sensitive information via HTTP requests that (a) specify the / URI, (b) specify the /scripts/ URI, or (c) specify a n…	NVD-CWE-Other	CVE-2004-2547	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

354046	-	photopost	photopost_php_pro	SQL injection vulnerability in showphoto.php in PhotoPost PHP Pro 4.6 and earlier allows remote attackers to gain unauthorized access via the photo variable.	NVD-CWE-Other	CVE-2004-0239	2017-07-11 10:30	2004-11-23	Show	GitHub Exploit DB Packet Storm

354047	-	qualiteam	x-cart	Directory traversal vulnerability in X-Cart 3.4.3 allows remote attackers to view arbitrary files via a .. (dot dot) in the shop_closed_file argument to auth.php.	NVD-CWE-Other	CVE-2004-0240	2017-07-11 10:30	2004-11-23	Show	GitHub Exploit DB Packet Storm

354048	-	qualiteam	x-cart	X-Cart 3.4.3 allows remote attackers to execute arbitrary commands via the perl_binary argument in (1) upgrade.php or (2) general.php.	NVD-CWE-Other	CVE-2004-0241	2017-07-11 10:30	2004-11-23	Show	GitHub Exploit DB Packet Storm

354049	-	qualiteam	x-cart	X-Cart 3.4.3 allows remote attackers to gain sensitive information via a mode parameter with (1) phpinfo command or (2) perlinfo command.	NVD-CWE-Other	CVE-2004-0242	2017-07-11 10:30	2004-11-23	Show	GitHub Exploit DB Packet Storm

354050	-	web_crossing_inc	web_crossing	Web Crossing 4.x and 5.x allows remote attackers to cause a denial of service (crash) by sending a HTTP POST request with a large or negative Content-Length, which causes an integer divide-by-zero.	NVD-CWE-Other	CVE-2004-0245	2017-07-11 10:30	2004-11-23	Show	GitHub Exploit DB Packet Storm