Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 4:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
204891 4.3 警告
Network
シスコシステムズ - Cisco E メール セキュリティ アプライアンス用 AsyncOS ソフトウェアのコンテンツフィルタリング機能における設定されたユーザのフィルタを回避される脆弱性 CWE-20
不適切な入力確認
CVE-2016-6465 2016-12-20 16:55 2016-12-7 Show GitHub Exploit DB Packet Storm
204892 7.8 重要
Local
シスコシステムズ - Cisco FireAMP Connector Endpoint の特定の FireAMP システムプロセスのシステム管理におけるサービス運用妨害 (DoS) の脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2016-6449 2016-12-20 16:55 2016-12-7 Show GitHub Exploit DB Packet Storm
204893 5.9 警告
Network
シスコシステムズ - 複数の Cisco セキュリティ アプライアンス用 AsyncOS ソフトウェアのアップデート機能におけるアップデートサーバになりすまされる脆弱性 CWE-310
暗号の問題
CVE-2016-1411 2016-12-20 16:55 2016-12-7 Show GitHub Exploit DB Packet Storm
204894 4.7 警告
Local
SAP - SAP Download Manager における重要な設定情報を取得される脆弱性 CWE-255
CWE-798
CVE-2016-3685 2016-12-20 15:45 2016-03-9 Show GitHub Exploit DB Packet Storm
204895 4.7 警告
Local
SAP - SAP Download Manager における重要な設定情報を取得される脆弱性 CWE-257
復元可能な形式でのパスワード保存
CVE-2016-3684 2016-12-20 15:45 2016-03-8 Show GitHub Exploit DB Packet Storm
204896 9.8 緊急
Network
TigerVNC
レッドハット
- TigerVNC の XRegion におけるサービス運用妨害 (DoS) の脆弱性 CWE-476
NULL ポインタデリファレンス
CVE-2014-8241 2016-12-20 15:31 2014-10-10 Show GitHub Exploit DB Packet Storm
204897 9.8 緊急
Network
MailCWP project - MailCWP におけるリモートでファイルをアップロードされる脆弱性 CWE-284
CWE-77
CVE-2016-1000156 2016-12-20 12:33 2016-11-1 Show GitHub Exploit DB Packet Storm
204898 7.4 重要
Network
Open-Xchange - Open-Xchange OX AppSuite の "defer" サーブレットにおけるクライアントを特定の URL にリダイレクトされる脆弱性 CWE-601
オープンリダイレクト
CVE-2016-3174 2016-12-20 12:19 2016-03-29 Show GitHub Exploit DB Packet Storm
204899 9.8 緊急
Network
アドビシステムズ - Adobe InDesign および InDesign Server におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー
CVE-2016-7886 2016-12-20 09:47 2016-12-13 Show GitHub Exploit DB Packet Storm
204900 7.5 重要
Network
アドビシステムズ - Adobe Digital Editions における情報を開示される脆弱性 CWE-200
情報漏えい
CVE-2016-7889 2016-12-19 18:23 2016-12-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1401 5.9 MEDIUM
Network
- - A flaw in Node.js proxy tunnel error handling could expose proxy credentials in `ERR_PROXY_TUNNEL` error messages. When proxy credentials are embedded in the proxy URL, they may be exposed through… CWE-359
 Exposure of Private Personal Information to an Unauthorized Actor
CVE-2026-48615 2026-06-27 01:11 2026-06-26 Show GitHub Exploit DB Packet Storm
1402 5.3 MEDIUM
Network
- - A flaw in Node.js HTTP/2 client allows a server to send an unlimited number of ORIGIN frames, which could lead to an Out of Memory error on the client. This vulnerability affects all supported rel… CWE-400
 Uncontrolled Resource Consumption
CVE-2026-48619 2026-06-27 01:11 2026-06-26 Show GitHub Exploit DB Packet Storm
1403 4.2 MEDIUM
Network
- - A inconsistency in Node.js hostname matching can cause a trust-policy bypass in multi-context mTLS setups. This vulnerability affects all supported release lines: **Node.js 22**, **Node.js 24**, a… CWE-284
Improper Access Control
CVE-2026-48928 2026-06-27 01:11 2026-06-26 Show GitHub Exploit DB Packet Storm
1404 5.6 MEDIUM
Network
- - A flaw in Node.js TLS hostname handling can cause Embedded-nul hostnames can lead to silent authority rebinding due to c-string truncation in resolver bindings. This vulnerability affects all supp… CWE-284
Improper Access Control
CVE-2026-48930 2026-06-27 01:11 2026-06-26 Show GitHub Exploit DB Packet Storm
1405 3.3 LOW
Local
- - A flaw in Node.js Permission API can cause a file metadata to be modified even on a path that was set as read-only with e.g. `--allow-fs-read`. This vulnerability affects all supported release lin… CWE-276
Incorrect Default Permissions 
CVE-2026-48935 2026-06-27 01:11 2026-06-26 Show GitHub Exploit DB Packet Storm
1406 3.3 LOW
Local
- - A flaw in Node.js Permission API can cause a local server to be started (via a Unix domain socket), even without the `--allow-net` permission. This vulnerability affects one supported release line… CWE-284
Improper Access Control
CVE-2026-48936 2026-06-27 01:11 2026-06-26 Show GitHub Exploit DB Packet Storm
1407 - - - FOSSBilling is a free, open-source billing and client management system. In versions 0.5.4 through 0.7.2, the /run-patcher maintenance endpoint in FOSSBilling was accessible without authentication, w… CWE-306
Missing Authentication for Critical Function
CVE-2026-43920 2026-06-27 01:10 2026-06-26 Show GitHub Exploit DB Packet Storm
1408 6.5 MEDIUM
Network
- - The User Registration & Membership – Free & Paid Memberships, Subscriptions, Content Restriction, User Profile, Custom User Registration & Login Builder plugin for WordPress is vulnerable to unauthor… CWE-862
 Missing Authorization
CVE-2026-1869 2026-06-27 00:49 2026-06-26 Show GitHub Exploit DB Packet Storm
1409 6.5 MEDIUM
Network
- - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Tim Strifler Exclusive Addons Elementor allows Stored XSS. This issue affects Exclusive Addons E… CWE-79
Cross-site Scripting
CVE-2026-57620 2026-06-27 00:49 2026-06-26 Show GitHub Exploit DB Packet Storm
1410 5.3 MEDIUM
Network
- - Unauthenticated Insecure Direct Object References (IDOR) in BookPro <= 1.1.0 versions. CWE-639
 Authorization Bypass Through User-Controlled Key
CVE-2025-66123 2026-06-27 00:49 2026-06-27 Show GitHub Exploit DB Packet Storm