Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 2:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
191171 6.1 警告
Network
Atlassian - Atlassian Confluence におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2017-16856 2017-12-28 11:18 2017-12-5 Show GitHub Exploit DB Packet Storm
191172 6.1 警告
Network
Elasticsearch - Kibana におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2017-11481 2017-12-28 10:50 2017-12-7 Show GitHub Exploit DB Packet Storm
191173 8.8 重要
Network
The HDF Group - HDF5 における境界外書き込みに関する脆弱性 CWE-787
境界外書き込み
CVE-2017-17509 2017-12-28 10:26 2017-12-8 Show GitHub Exploit DB Packet Storm
191174 6.5 警告
Network
The HDF Group - HDF5 におけるゼロ除算に関する脆弱性 CWE-369
ゼロ除算
CVE-2017-17508 2017-12-28 10:26 2017-12-8 Show GitHub Exploit DB Packet Storm
191175 6.5 警告
Network
The HDF Group - HDF5 における境界外読み取りに関する脆弱性 CWE-125
境界外読み取り
CVE-2017-17507 2017-12-28 10:26 2017-12-8 Show GitHub Exploit DB Packet Storm
191176 6.5 警告
Network
The HDF Group - HDF5 における境界外読み取りに関する脆弱性 CWE-125
境界外読み取り
CVE-2017-17506 2017-12-28 10:26 2017-12-8 Show GitHub Exploit DB Packet Storm
191177 6.5 警告
Network
The HDF Group - HDF5 における NULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス
CVE-2017-17505 2017-12-28 10:26 2017-12-8 Show GitHub Exploit DB Packet Storm
191178 6.1 警告
Network
GEOVAP, spol. s r.o. - Geovap Reliance SCADA におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2017-16721 2017-12-27 17:39 2017-10-21 Show GitHub Exploit DB Packet Storm
191179 9.8 緊急
Network
iSmart Alarm, Inc. - iSmartAlarm CubeOne における情報漏えいに関する脆弱性 CWE-200
情報漏えい
CVE-2017-13664 2017-12-27 17:39 2017-11-30 Show GitHub Exploit DB Packet Storm
191180 8.8 重要
Network
Zulip - Zulip Server における認証に関する脆弱性 CWE-287
不適切な認証
CVE-2017-0910 2017-12-27 17:39 2017-11-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2511 9.1 CRITICAL
Network
- - Cap-go before 12.128.2 contains an authentication logic flaw that lets an attacker register and control an account bound to a victim's email address before that email is verified. By enabling two-fac… CWE-640
 Weak Password Recovery Mechanism for Forgotten Password
CVE-2026-56081 2026-06-23 04:17 2026-06-20 Show GitHub Exploit DB Packet Storm
2512 6.5 MEDIUM
Network
- - Capgo before 12.128.2 contains a cross-tenant authorization bypass vulnerability in PostgREST endpoints that allows org-scoped read API keys to access other tenants' webhook secrets and delivery logs… CWE-200
Information Exposure
CVE-2026-56079 2026-06-23 04:17 2026-06-20 Show GitHub Exploit DB Packet Storm
2513 8.8 HIGH
Network
- - PraisonAI before 1.5.115 contains a path traversal vulnerability in MultiAgentMonitor that fails to sanitize agent IDs when building file paths. Attackers can include traversal sequences like ../ in … CWE-22
Path Traversal
CVE-2026-56078 2026-06-23 04:17 2026-06-19 Show GitHub Exploit DB Packet Storm
2514 - - - Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. - CVE-2026-53778 2026-06-23 04:17 2026-06-23 Show GitHub Exploit DB Packet Storm
2515 6.5 MEDIUM
Network
- - Initialization of a resource with an insecure default in GitHub Copilot and Visual Studio Code allows an unauthorized attacker to disclose information over a network. CWE-1188
 Insecure Default Initialization of Resource
CVE-2026-50519 2026-06-23 04:17 2026-06-20 Show GitHub Exploit DB Packet Storm
2516 - - - Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to 22.0.0-rc.2, 21.2.15, 20.3.22, and 19.2.23, an issue in th… CWE-346
CWE-918
 Origin Validation Error
Server-Side Request Forgery (SSRF) 
CVE-2026-50168 2026-06-23 04:17 2026-06-23 Show GitHub Exploit DB Packet Storm
2517 6.4 MEDIUM
Network
- - The Appointment Booking Calendar plugin for WordPress is vulnerable to Stored Cross-Site Scripting via custom booking field labels in all versions up to, and including, 1.4.4 due to insufficient inpu… CWE-79
Cross-site Scripting
CVE-2026-1856 2026-06-23 04:16 2026-06-19 Show GitHub Exploit DB Packet Storm
2518 6.3 MEDIUM
Network
- - A vulnerability has been found in coollabsio coolify 4.0.0. Impacted is an unknown function of the component Image Name Handler. Such manipulation leads to os command injection. The attack may be per… CWE-77
CWE-78
Command Injection
OS Command 
CVE-2026-12815 2026-06-23 04:16 2026-06-22 Show GitHub Exploit DB Packet Storm
2519 6.3 MEDIUM
Network
- - A vulnerability was determined in zhilink 智互联(深圳)科技有限公司 ADP Application Developer Platform 应用开发者平台 1.0.0. This vulnerability affects unknown code of the file /adpweb/a/base/barcodeDetail/import of th… CWE-610
CWE-611
Externally Controlled Reference to a Resource in Another Sphere
XXE
CVE-2026-12788 2026-06-23 04:16 2026-06-21 Show GitHub Exploit DB Packet Storm
2520 6.3 MEDIUM
Network
- - A vulnerability was found in zhilink 智互联(深圳)科技有限公司 ADP Application Developer Platform 应用开发者平台 1.0.0. This affects an unknown part of the component testConnection Endpoint. The manipulation of the arg… CWE-20
CWE-502
 Improper Input Validation 
 Deserialization of Untrusted Data
CVE-2026-12787 2026-06-23 04:16 2026-06-21 Show GitHub Exploit DB Packet Storm