Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 4:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
191 5.4 警告
Network
pgadmin pgAdmin 4 pgAdmin ProjectのpgAdmin 4における複数の脆弱性 New CWE-116
CWE-79
CWE-79
CVE-2026-12048 2026-06-30 11:23 2026-06-19 Show GitHub Exploit DB Packet Storm
192 6.1 警告
Network
pgadmin pgAdmin 4 pgAdmin ProjectのpgAdmin 4におけるオープンリダイレクトの脆弱性 New CWE-601
オープンリダイレクト
CVE-2026-12049 2026-06-30 11:23 2026-06-19 Show GitHub Exploit DB Packet Storm
193 8.8 重要
Network
pgadmin pgAdmin 4 pgAdmin ProjectのpgAdmin 4におけるSQL インジェクションの脆弱性 New CWE-89
SQLインジェクション
CVE-2026-12050 2026-06-30 11:23 2026-06-19 Show GitHub Exploit DB Packet Storm
194 4.4 警告
Local
Fortra File Integrity Monitoring FortraのFile Integrity Monitoringにおける不適切な権限設定に関する脆弱性 New CWE-266
不適切な権限設定
CVE-2026-12164 2026-06-30 11:23 2026-06-23 Show GitHub Exploit DB Packet Storm
195 2.7
Network
Devolutions Devolutions Server DevolutionsのDevolutions Serverにおける入力で指定された数量の不適切な検証に関する脆弱性 New CWE-1284
入力で指定された数量の不適切な検証
CVE-2026-12755 2026-06-30 11:23 2026-06-25 Show GitHub Exploit DB Packet Storm
196 6.5 警告
Adjacent
TP-LINK Technologies tapo c200 ファームウェア TP-LINK Technologiesのtapo c200 ファームウェアにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 New CWE-770
制限またはスロットリング無しのリソースの割り当て
CVE-2026-12760 2026-06-30 11:23 2026-06-24 Show GitHub Exploit DB Packet Storm
197 5.5 警告
Local
オートデスク株式会社 Revit オートデスク株式会社のRevitにおけるNULL ポインタデリファレンスに関する脆弱性 New CWE-476
NULL ポインタデリファレンス
CVE-2026-1288 2026-06-30 11:23 2026-06-17 Show GitHub Exploit DB Packet Storm
198 7.2 重要
Network
Devolutions Devolutions Remote Desktop Manager DevolutionsのDevolutions Remote Desktop Managerにおける誤って解決された名前や参照の使用に関する脆弱性 New CWE-706
誤って解決された名前や参照の使用
CVE-2026-13372 2026-06-30 11:23 2026-06-26 Show GitHub Exploit DB Packet Storm
199 5.4 警告
Network
- シスコシステムズのCisco Catalyst SD-WAN Managerにおけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2026-20108 2026-06-30 11:23 2026-03-25 Show GitHub Exploit DB Packet Storm
200 6.4 警告
Network
シスコシステムズ Cisco IoT Field Network Director シスコシステムズのCisco IoT Field Network Directorにおけるコマンドインジェクションの脆弱性 New CWE-77
コマンドインジェクション
CVE-2026-20169 2026-06-30 11:23 2026-05-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
258031 9.8 CRITICAL
Network
ffmpeg
debian
ffmpeg
debian_linux
FFmpeg before 2017-02-04 has an out-of-bounds write caused by a heap-based buffer overflow related to the decode_frame_common function in libavcodec/pngdec.c. CWE-787
 Out-of-bounds Write
CVE-2017-7863 2024-11-21 12:32 2017-04-14 Show GitHub Exploit DB Packet Storm
258032 9.8 CRITICAL
Network
ffmpeg ffmpeg FFmpeg before 2017-02-07 has an out-of-bounds write caused by a heap-based buffer overflow related to the decode_frame function in libavcodec/pictordec.c. CWE-787
 Out-of-bounds Write
CVE-2017-7862 2024-11-21 12:32 2017-04-14 Show GitHub Exploit DB Packet Storm
258033 9.8 CRITICAL
Network
grpc grpc Google gRPC before 2017-02-22 has an out-of-bounds write related to the gpr_free function in core/lib/support/alloc.c. CWE-787
 Out-of-bounds Write
CVE-2017-7861 2024-11-21 12:32 2017-04-14 Show GitHub Exploit DB Packet Storm
258034 9.8 CRITICAL
Network
grpc grpc Google gRPC before 2017-02-22 has an out-of-bounds write caused by a heap-based buffer overflow related to the parse_unix function in core/ext/client_channel/parse_address.c. CWE-787
 Out-of-bounds Write
CVE-2017-7860 2024-11-21 12:32 2017-04-14 Show GitHub Exploit DB Packet Storm
258035 9.8 CRITICAL
Network
ffmpeg ffmpeg FFmpeg before 2017-03-05 has an out-of-bounds write caused by a heap-based buffer overflow related to the ff_h264_slice_context_init function in libavcodec/h264dec.c. CWE-787
 Out-of-bounds Write
CVE-2017-7859 2024-11-21 12:32 2017-04-14 Show GitHub Exploit DB Packet Storm
258036 9.8 CRITICAL
Network
freetype freetype FreeType 2 before 2017-03-07 has an out-of-bounds write related to the TT_Get_MM_Var function in truetype/ttgxvar.c and the sfnt_init_face function in sfnt/sfobjs.c. CWE-787
 Out-of-bounds Write
CVE-2017-7858 2024-11-21 12:32 2017-04-14 Show GitHub Exploit DB Packet Storm
258037 9.8 CRITICAL
Network
freetype freetype FreeType 2 before 2017-03-08 has an out-of-bounds write caused by a heap-based buffer overflow related to the TT_Get_MM_Var function in truetype/ttgxvar.c and the sfnt_init_face function in sfnt/sfob… CWE-787
 Out-of-bounds Write
CVE-2017-7857 2024-11-21 12:32 2017-04-14 Show GitHub Exploit DB Packet Storm
258038 9.8 CRITICAL
Network
libreoffice libreoffice LibreOffice before 2017-03-11 has an out-of-bounds write caused by a heap-based buffer overflow in the SVMConverter::ImplConvertFromSVM1 function in vcl/source/gdi/svmconverter.cxx. CWE-787
 Out-of-bounds Write
CVE-2017-7856 2024-11-21 12:32 2017-04-14 Show GitHub Exploit DB Packet Storm
258039 6.1 MEDIUM
Network
concretecms concrete_cms concrete5 8.1.0 places incorrect trust in the HTTP Host header during caching, if the administrator did not define a "canonical" URL on installation of concrete5 using the "Advanced Options" settings… CWE-79
Cross-site Scripting
CVE-2017-7725 2024-11-21 12:32 2017-04-14 Show GitHub Exploit DB Packet Storm
258040 5.5 MEDIUM
Local
radare radare2 The consume_init_expr function in wasm.c in radare2 1.3.0 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted Web Assembly file. CWE-125
Out-of-bounds Read
CVE-2017-7854 2024-11-21 12:32 2017-04-14 Show GitHub Exploit DB Packet Storm