Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 28, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
202091 5.5 警告
Local 		ImageMagick - ImageMagick の MagickCore/pixel-accessor.h の IsPixelMonochrome 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-125
境界外読み取り 		CVE-2016-8678 2017-03-9 16:51 2016-09-14 Show GitHub Exploit DB Packet Storm
202092 7.8 重要
Local 		openSUSE project
Debian
ImageMagick		 - ImageMagick の MagickCore/quantum.c の AcquireQuantumPixels 関数における脆弱性 CWE-119
バッファエラー 		CVE-2016-8677 2017-03-9 16:51 2016-09-16 Show GitHub Exploit DB Packet Storm
202093 9.8 緊急
Network 		Aerospike, Inc. - Aerospike Database Server の RW ファブリックメッセージのパーティクルタイプにおける境界外インデックスに関する脆弱性 CWE-129
配列インデックスの不適切な検証 		CVE-2016-9053 2017-03-9 16:49 2016-10-26 Show GitHub Exploit DB Packet Storm
202094 9.8 緊急
Network 		Aerospike, Inc. - Aerospike Database Server のバッチ処理フィールドの構文解析機能における境界外書き込みの脆弱性 CWE-787
境界外書き込み 		CVE-2016-9051 2017-03-9 16:49 2016-10-26 Show GitHub Exploit DB Packet Storm
202095 7.5 重要
Network 		Aerospike, Inc. - Aerospike Database Server の Fabric_Worker コンポーネントにおけるサービス運用妨害 (DoS) の脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2016-9049 2017-03-9 16:49 2016-10-26 Show GitHub Exploit DB Packet Storm
202096 7.8 重要
Local 		JasPer Project
openSUSE project
Fedora Project		 - JasPer の jas_stream.c の mem_close 関数におけるメモリ二重解放の脆弱性 CWE-415
二重解放 		CVE-2016-8693 2017-03-9 16:03 2016-10-20 Show GitHub Exploit DB Packet Storm
202097 5.5 警告
Local 		Debian
JasPer Project
Fedora Project		 - JasPer の libjasper/jpc/jpc_dec.c の jpc_dec_process_siz 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-369
ゼロ除算 		CVE-2016-8692 2017-03-9 16:03 2016-10-16 Show GitHub Exploit DB Packet Storm
202098 5.5 警告
Local 		Debian
JasPer Project
Fedora Project		 - JasPer の libjasper/jpc/jpc_dec.c の jpc_dec_process_siz 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-369
ゼロ除算 		CVE-2016-8691 2017-03-9 16:03 2016-10-16 Show GitHub Exploit DB Packet Storm
202099 5 警告 アップル
日本電気		 - 複数の Apple 製品の Secure Transport における EXPORT_RSA 暗号に対して暗号スイートのダウングレード攻撃を実行される脆弱性 CWE-310
暗号の問題 		CVE-2015-1067 2017-03-9 15:34 2015-03-9 Show GitHub Exploit DB Packet Storm
202100 7.8 危険 日本電気 - SSL/TLS の実装が輸出グレードの RSA 鍵を受け入れる問題 (FREAK 攻撃) CWE-Other
その他 		- 2017-03-9 15:33 2015-03-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 28, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
901 7.5 HIGH
Network 		- - ATEN Unizon writeFileToHttpServletResponse Directory Traversal Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installat… CWE-22
Path Traversal 		CVE-2026-9776 2026-06-25 23:23 2026-06-25 Show GitHub Exploit DB Packet Storm
902 7.2 HIGH
Network 		- - ATEN Unizon restoreDB Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of ATEN Unizon. Authentic… CWE-22
Path Traversal 		CVE-2026-9777 2026-06-25 23:23 2026-06-25 Show GitHub Exploit DB Packet Storm
903 7.2 HIGH
Network 		- - ATEN Unizon ImportDeviceList Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of ATEN Unizon. Au… CWE-22
Path Traversal 		CVE-2026-9778 2026-06-25 23:23 2026-06-25 Show GitHub Exploit DB Packet Storm
904 7.2 HIGH
Network 		- - ATEN Unizon doCryptoHugeFileToFile Improper Verification of Cryptographic Signature Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affect… CWE-347
 Improper Verification of Cryptographic Signature 		CVE-2026-9779 2026-06-25 23:23 2026-06-25 Show GitHub Exploit DB Packet Storm
905 6.3 MEDIUM
Network 		openwebui open_webui Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.6, several direct, index-addressed Ollama proxy routes accept a caller-supplied url_idx… CWE-863
 Incorrect Authorization 		CVE-2026-54021 2026-06-25 23:23 2026-06-24 Show GitHub Exploit DB Packet Storm
906 - - - SiYuan is an open-source personal knowledge management system. Prior to 3.7.0, Lute's HTML sanitizer does not remove <iframe> elements. Combined with the SiYuan Electron client's permissive security … CWE-79
Cross-site Scripting 		CVE-2026-54759 2026-06-25 23:22 2026-06-25 Show GitHub Exploit DB Packet Storm
907 7.5 HIGH
Network 		- - SiYuan is an open-source personal knowledge management system. Prior to 3.7.0, the patch for CVE-2026-41894 ("Path Traversal via Double URL Encoding") sanitized the /export/ route but the identical r… CWE-22
CWE-23
CWE-1188
Path Traversal
 Relative Path Traversal
 Insecure Default Initialization of Resource 		CVE-2026-54066 2026-06-25 23:22 2026-06-25 Show GitHub Exploit DB Packet Storm
908 5.5 MEDIUM
Network 		- - Fortra File Integrity Monitoring (FIM), formerly Tripwire Enterprise, versions prior to 9.4.0.1 contain a stored cross-site scripting (XSS) vulnerability in the Asset View UI component. An authentica… CWE-79
Cross-site Scripting 		CVE-2026-12163 2026-06-25 23:22 2026-06-24 Show GitHub Exploit DB Packet Storm
909 4.4 MEDIUM
Local 		- - Fortra File Integrity Monitoring (FIM), formerly Tripwire Enterprise, versions prior to 9.4.0 may assign incorrect or elevated effective permissions to users created by the tetool import command whil… CWE-266
 Incorrect Privilege Assignment 		CVE-2026-12164 2026-06-25 23:22 2026-06-24 Show GitHub Exploit DB Packet Storm
910 6.1 MEDIUM
Network 		- - NocoDB is software for building databases as spreadsheets. Prior to 2026.04.1, a reflected XSS vulnerability exists in the Page Leaving Warning page. The ncRedirectUrl and ncBackUrl query parameters … CWE-79
Cross-site Scripting 		CVE-2026-46547 2026-06-25 23:21 2026-06-24 Show GitHub Exploit DB Packet Storm