Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
199981 4.7 警告
Local
Linux - Qualcomm カメラドライバにおける情報を公開される脆弱性 CWE-200
情報漏えい
CVE-2017-0631 2017-05-24 18:38 2017-05-1 Show GitHub Exploit DB Packet Storm
199982 4.7 警告
Local
Linux - Qualcomm カメラドライバにおける情報を公開される脆弱性 CWE-200
情報漏えい
CVE-2017-0629 2017-05-24 18:38 2017-05-1 Show GitHub Exploit DB Packet Storm
199983 4.7 警告
Local
Linux - Qualcomm カメラドライバにおける情報を公開される脆弱性 CWE-200
情報漏えい
CVE-2017-0628 2017-05-24 18:38 2017-05-1 Show GitHub Exploit DB Packet Storm
199984 5.5 警告
Local
Linux - Qualcomm 暗号化エンジンドライバにおける情報を公開される脆弱性 CWE-200
情報漏えい
CVE-2017-0626 2017-05-24 18:38 2017-05-1 Show GitHub Exploit DB Packet Storm
199985 5.5 警告
Local
Linux - Qualcomm Wi-Fi ドライバにおける情報を公開される脆弱性 CWE-200
情報漏えい
CVE-2017-0624 2017-05-24 18:38 2017-05-1 Show GitHub Exploit DB Packet Storm
199986 7 重要
Local
Linux - Qualcomm カメラドライバにおける権限を昇格される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2017-0621 2017-05-24 18:38 2017-05-1 Show GitHub Exploit DB Packet Storm
199987 7 重要
Local
Linux - Qualcomm セキュアチャネルマネージャドライバにおける権限を昇格される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2017-0620 2017-05-24 18:38 2017-05-1 Show GitHub Exploit DB Packet Storm
199988 7.5 重要
Network
WordPress.org - WordPress の XML-RPC API における POST メタデータのケーパビリティチェックに関する脆弱性 CWE-20
不適切な入力確認
CVE-2017-9065 2017-05-24 18:35 2017-05-16 Show GitHub Exploit DB Packet Storm
199989 8.8 重要
Network
WordPress.org - WordPress のファイルシステムの資格情報ダイアログにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2017-9064 2017-05-24 18:35 2017-05-16 Show GitHub Exploit DB Packet Storm
199990 6.1 警告
Network
WordPress.org - WordPress の Customizer におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2017-9063 2017-05-24 18:35 2017-05-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2261 - - - FOSSBilling is a free, open-source billing and client management system. Starting in version 0.5.4 and prior to version 0.8.0, an authorization bypass in the API role handling allows unauthenticated … CWE-200
CWE-306
CWE-862
CWE-863
Information Exposure
Missing Authentication for Critical Function
 Missing Authorization
 Incorrect Authorization
CVE-2026-27604 2026-06-24 01:16 2026-06-24 Show GitHub Exploit DB Packet Storm
2262 5.3 MEDIUM
Network
- - An out-of-bounds read vulnerability exists in dnsmasq's find_soa() function in src/rfc1035.c. When parsing NS section records, extract_name() is called with extrabytes=0, failing to validate that 10 … CWE-125
Out-of-bounds Read
CVE-2026-12969 2026-06-24 01:16 2026-06-23 Show GitHub Exploit DB Packet Storm
2263 8.1 HIGH
Network
- - picklescan before 0.0.29 fails to detect malicious pickle files using idlelib.autocomplete.AutoComplete.fetch_completions in reduce methods. Attackers can embed undetected code in pickle files that e… CWE-502
 Deserialization of Untrusted Data
CVE-2025-71376 2026-06-24 01:16 2026-06-23 Show GitHub Exploit DB Packet Storm
2264 8.1 HIGH
Network
- - Picklescan before 0.0.33 fails to detect the numpy.f2py.crackfortran._eval_length gadget in pickle __reduce__ methods, allowing arbitrary code execution. Attackers can craft malicious pickle files th… CWE-502
 Deserialization of Untrusted Data
CVE-2025-71339 2026-06-24 01:16 2026-06-23 Show GitHub Exploit DB Packet Storm
2265 6.9 MEDIUM
Local
libexpat_project libexpat xmlwf in libexpat before 2.8.2 has an integer overflow in endDoctypeDecl via NOTATION declarations. CWE-190
 Integer Overflow or Wraparound
CVE-2026-56411 2026-06-24 01:16 2026-06-22 Show GitHub Exploit DB Packet Storm
2266 7.6 HIGH
Network
- - conda-smithy is a tool for combining a conda recipe with configurations to build using freely hosted CI services into a single repository. Prior to version 3.61.0, a vulnerability in the conda-forge … CWE-284
Improper Access Control
CVE-2026-46699 2026-06-24 01:06 2026-06-19 Show GitHub Exploit DB Packet Storm
2267 10.0 CRITICAL
Network
- - mcp-pinot is a Python-based Model Context Protocol (MCP) server for interacting with Apache Pinot. In versions 3.0.1 and below, mcp-pinot defaults to running an HTTP MCP server bound to 0.0.0.0:8080 … CWE-306
Missing Authentication for Critical Function
CVE-2026-49257 2026-06-24 01:06 2026-06-19 Show GitHub Exploit DB Packet Storm
2268 6.5 MEDIUM
Network
- - phpMyFAQ is an open source FAQ web application. Versions prior to 4.1.4 have Missing Authorization in the API CategoryController. CVE-2026-24421 addressed this in the BackupController by adding: $th… CWE-862
 Missing Authorization
CVE-2026-49205 2026-06-24 01:06 2026-06-19 Show GitHub Exploit DB Packet Storm
2269 - - - Slopsmith is a self-contained web application for browsing, playing, and practicing Rocksmith 2014 Custom DLC (CDLC). Prior to 0.2.9-alpha.5, a path-traversal vulnerability in Slopsmith's archive ext… CWE-22
CWE-23
CWE-36
Path Traversal
 Relative Path Traversal
 Absolute Path Traversal
CVE-2026-49290 2026-06-24 01:06 2026-06-20 Show GitHub Exploit DB Packet Storm
2270 4.3 MEDIUM
Network
- - Statamic is a Laravel and Git powered content management system (CMS). Prior to 5.73.23 and 6.20.0, an authenticated Control Panel user could view metadata and content for resources they don't have p… CWE-200
CWE-862
CWE-863
Information Exposure
 Missing Authorization
 Incorrect Authorization
CVE-2026-49288 2026-06-24 01:06 2026-06-20 Show GitHub Exploit DB Packet Storm