Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 29, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
189081	5.5	警告 Local	インテル	-	Intel MinnowBoard 3 における入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2017-5699	2018-02-16 16:23	2017-02-1	Show	GitHub Exploit DB Packet Storm

189082	8.8	重要 Network	Asuswrt-Merlin firmware project	-	ASUS ルータにおけるバッファエラーの脆弱性	CWE-119 バッファエラー	CVE-2018-5721	2018-02-16 16:16	2018-01-17	Show	GitHub Exploit DB Packet Storm

189083	5.3	警告 Network	Cobham plc	-	Cobham Sea Tel 121 デバイスにおける情報漏えいに関する脆弱性	CWE-200 情報漏えい	CVE-2018-5728	2018-02-16 15:59	2018-01-16	Show	GitHub Exploit DB Packet Storm

189084	6.1	警告 Network	Gespage	-	Gespage におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2017-7998	2018-02-16 15:42	2017-04-21	Show	GitHub Exploit DB Packet Storm

189085	9.8	緊急 Network	Gespage	-	Gespage における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2017-7997	2018-02-16 15:42	2017-04-21	Show	GitHub Exploit DB Packet Storm

189086	6.5	警告 Network	OpenJPEG project	-	OpenJPEG における整数オーバーフローの脆弱性	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2018-5785	2018-02-16 15:10	2018-01-19	Show	GitHub Exploit DB Packet Storm

189087	6.1	警告 Network	RailsAdmin project	-	rails_admin rails gem におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2017-12098	2018-02-16 15:10	2017-09-20	Show	GitHub Exploit DB Packet Storm

189088	6.1	警告 Network	Erick Schmitt	-	delayed_job_web rails gem におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2017-12097	2018-02-16 15:10	2017-09-20	Show	GitHub Exploit DB Packet Storm

189089	5.4	警告 Network	IBM	-	IBM UrbanCode Deploy におけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2017-1493	2018-02-16 14:40	2018-01-4	Show	GitHub Exploit DB Packet Storm

189090	5.4	警告 Network	Sulu	-	Sulu-standard におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2017-1000465	2018-02-16 14:35	2017-10-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 29, 2026, 4:19 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2031	8.2	HIGH Network	-	-	Joomla Component Myportfolio 3.0.2 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the pid parameter. Attack…	CWE-89 SQL Injection	CVE-2017-20280	2026-06-23 12:16	2026-06-20	Show	GitHub Exploit DB Packet Storm

2032	8.2	HIGH Network	-	-	Joomla LMS King Professional 3.2.4.0 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the cp_id parameter. At…	CWE-89 SQL Injection	CVE-2017-20274	2026-06-23 12:16	2026-06-20	Show	GitHub Exploit DB Packet Storm

2033	8.2	HIGH Network	-	-	Joomla! Component Zap Calendar Lite 4.3.4 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the 'eid' …	CWE-89 SQL Injection	CVE-2017-20268	2026-06-23 12:16	2026-06-20	Show	GitHub Exploit DB Packet Storm

2034	8.2	HIGH Network	-	-	Joomla! Component Ajax Quiz 1.8 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the cid parameter. A…	CWE-89 SQL Injection	CVE-2017-20262	2026-06-23 12:16	2026-06-20	Show	GitHub Exploit DB Packet Storm

2035	8.2	HIGH Network	-	-	Joomla Survey Force Deluxe 3.2.4 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the invite paramete…	CWE-89 SQL Injection	CVE-2017-20256	2026-06-23 12:16	2026-06-20	Show	GitHub Exploit DB Packet Storm

2036	7.8	HIGH Local	-	-	Comodo Chromodo Browser 52.15.25.664 contains an unquoted service path vulnerability in the ChromodoUpdater service that runs with SYSTEM privileges. A local attacker can insert a malicious executabl…	CWE-428 Unquoted Search Path or Element	CVE-2016-20088	2026-06-23 06:16	2026-06-20	Show	GitHub Exploit DB Packet Storm

2037	7.8	HIGH Local	-	-	Comodo Dragon Browser versions up to 52.15.25.663 contain a privilege escalation vulnerability in the DragonUpdater service due to an unquoted service path running with SYSTEM privileges. A local att…	CWE-428 Unquoted Search Path or Element	CVE-2016-20090	2026-06-23 06:16	2026-06-20	Show	GitHub Exploit DB Packet Storm

2038	8.8	HIGH Network	-	-	PraisonAI before 4.5.128 contains an arbitrary shell command execution vulnerability where the UI modules hardcode approval_mode to auto, overriding administrator configuration from PRAISON_APPROVAL_…	CWE-863 Incorrect Authorization	CVE-2026-56075	2026-06-23 06:15	2026-06-19	Show	GitHub Exploit DB Packet Storm

2039	8.1	HIGH Network	-	-	PraisonAI before 1.5.128 contains a cross-origin agent execution vulnerability in the AGUI endpoint that allows remote attackers to trigger arbitrary agent execution. The POST /agui endpoint lacks au…	CWE-942 Permissive Cross-domain Policy with Untrusted Domains	CVE-2026-56076	2026-06-23 06:15	2026-06-19	Show	GitHub Exploit DB Packet Storm

2040	7.8	HIGH Local	-	-	Realtek High Definition Audio Driver 6.0.1.6730 contains an unquoted service path vulnerability that allows local attackers to escalate privileges by placing a malicious executable in the service pat…	CWE-428 Unquoted Search Path or Element	CVE-2016-20085	2026-06-23 06:14	2026-06-20	Show	GitHub Exploit DB Packet Storm