Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 29, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
188371	4.9	警告 Network	Extreme Networks, Inc.	-	Extreme Networks ExtremeWireless WiNG におけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2018-5795	2018-03-8 11:40	2018-01-1	Show	GitHub Exploit DB Packet Storm

188372	5.3	警告 Network	Extreme Networks, Inc.	-	Extreme Networks ExtremeWireless WiNG における認証に関する脆弱性	CWE-287 不適切な認証	CVE-2018-5794	2018-03-8 11:40	2018-01-1	Show	GitHub Exploit DB Packet Storm

188373	5.9	警告 Network	Extreme Networks, Inc.	-	Extreme Networks ExtremeWireless WiNG におけるバッファエラーの脆弱性	CWE-119 バッファエラー	CVE-2018-5793	2018-03-8 11:40	2018-01-1	Show	GitHub Exploit DB Packet Storm

188374	5.9	警告 Network	Extreme Networks, Inc.	-	Extreme Networks ExtremeWireless WiNG におけるバッファエラーの脆弱性	CWE-119 バッファエラー	CVE-2018-5792	2018-03-8 11:40	2018-01-1	Show	GitHub Exploit DB Packet Storm

188375	5.9	警告 Network	Extreme Networks, Inc.	-	Extreme Networks ExtremeWireless WiNG におけるバッファエラーの脆弱性	CWE-119 バッファエラー	CVE-2018-5791	2018-03-8 11:40	2018-01-1	Show	GitHub Exploit DB Packet Storm

188376	5.3	警告 Adjacent	Extreme Networks, Inc.	-	Extreme Networks ExtremeWireless WiNG におけるバッファエラーの脆弱性	CWE-119 バッファエラー	CVE-2018-5790	2018-03-8 11:40	2018-01-1	Show	GitHub Exploit DB Packet Storm

188377	7.5	重要 Network	Extreme Networks, Inc.	-	Extreme Networks ExtremeWireless WiNG における XML 外部エンティティの脆弱性	CWE-611 XML 外部エンティティ参照の不適切な制限	CVE-2018-5789	2018-03-8 11:40	2018-01-1	Show	GitHub Exploit DB Packet Storm

188378	7.5	重要 Network	Extreme Networks, Inc.	-	Extreme Networks ExtremeWireless WiNG におけるバッファエラーの脆弱性	CWE-119 バッファエラー	CVE-2018-5788	2018-03-8 11:40	2018-01-1	Show	GitHub Exploit DB Packet Storm

188379	7.5	重要 Network	Extreme Networks, Inc.	-	Extreme Networks ExtremeWireless WiNG におけるバッファエラーの脆弱性	CWE-119 バッファエラー	CVE-2018-5787	2018-03-8 11:40	2018-01-1	Show	GitHub Exploit DB Packet Storm

188380	6.5	警告 Network	ASUSTeK Computer Inc.	-	複数の ASUS ルータにおける XML 外部エンティティの脆弱性	CWE-611 XML 外部エンティティ参照の不適切な制限	CVE-2017-14699	2018-03-7 18:08	2017-09-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 30, 2026, 4:22 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
671	8.8	HIGH Network	-	-	OpenProject is open-source, web-based project management software. Prior to 17.3.3 and 17.4.1, there is a CSRF on TARGET through /users/:id via POST parameter "user[admin]". This vulnerability is fix… New	CWE-352 Origin Validation Error	CVE-2026-52784	2026-06-27 05:20	2026-06-27	Show	GitHub Exploit DB Packet Storm

672	4.3	MEDIUM Network	jenkins	pipeline\	Jenkins Pipeline: Groovy Plugin 4331.v9d06ed4658ff and earlier does not restrict the types that can be instantiated through the Pipeline Snippet Generator, allowing attackers to instantiate types rel… New	CWE-470 Unsafe Reflection	CVE-2026-57284	2026-06-27 05:20	2026-06-24	Show	GitHub Exploit DB Packet Storm

673	4.3	MEDIUM Network	jenkins	pipeline\	A cross-site request forgery (CSRF) vulnerability in Jenkins Pipeline: Groovy Plugin 4331.v9d06ed4658ff and earlier allows attackers to instantiate types related to job or system configuration other … New	CWE-352 Origin Validation Error	CVE-2026-57283	2026-06-27 05:20	2026-06-24	Show	GitHub Exploit DB Packet Storm

674	10.0	CRITICAL Network	langflow	langflow	IBM Langflow OSS 1.0.0 through 1.9.3 has an vulnerability due to an improper isolation of Python execution combined with an authentication bypass that allows an unauthenticated attacker to execute ar… New	CWE-94 Code Injection	CVE-2026-10561	2026-06-27 05:19	2026-06-22	Show	GitHub Exploit DB Packet Storm

675	7.8	HIGH Local	gimp	gimp	GIMP HDR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User inte… New	CWE-122 Heap-based Buffer Overflow	CVE-2026-2050	2026-06-27 05:18	2026-06-25	Show	GitHub Exploit DB Packet Storm

676	7.6	HIGH Adjacent	home-assistant	home-assistant	Home Assistant is open source home automation software that puts local control and privacy first. Prior to 2026.6.0, the Konnected integration registers an HTTP endpoint, KonnectedView (homeassistant… New	CWE-200 CWE-306 Information Exposure Missing Authentication for Critical Function	CVE-2026-54317	2026-06-27 05:17	2026-06-24	Show	GitHub Exploit DB Packet Storm

677	6.3	MEDIUM Network	openwebui	open_webui	Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.6, several direct, index-addressed Ollama proxy routes accept a caller-supplied url_idx… New	CWE-863 Incorrect Authorization	CVE-2026-54021	2026-06-27 05:17	2026-06-24	Show	GitHub Exploit DB Packet Storm

678	7.6	HIGH Network	openwebui	open_webui	Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.6, Open WebUI patched SVG XSS in user profile images and webhook profile images but for… New	CWE-79 CWE-116 CWE-693 Cross-site Scripting Improper Encoding or Escaping of Output Protection Mechanism Failure	CVE-2026-54013	2026-06-27 05:17	2026-06-24	Show	GitHub Exploit DB Packet Storm

679	6.5	MEDIUM Network	openwebui	open_webui	Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.6, the chat message listener allows non-same-origin input:prompt and action:submit mess… New	CWE-346 Origin Validation Error	CVE-2026-54007	2026-06-27 05:17	2026-06-24	Show	GitHub Exploit DB Packet Storm

680	-		-	-	In the Linux kernel, the following vulnerability has been resolved: net: mana: Use pci_name() for debugfs directory naming Use pci_name(pdev) for the per-device debugfs directory instead of hardcod… New	-	CVE-2026-53324	2026-06-27 05:17	2026-06-27	Show	GitHub Exploit DB Packet Storm