Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
216461 9 危険 オラクル - Oracle Database Server の Java VM における脆弱性 CWE-noinfo
情報不足 		CVE-2015-0457 2015-04-20 10:17 2015-04-14 Show GitHub Exploit DB Packet Storm
216462 6.8 警告 オラクル - Oracle Database Server の XDB - XML Database における脆弱性 CWE-noinfo
情報不足 		CVE-2015-0455 2015-04-20 10:17 2014-04-14 Show GitHub Exploit DB Packet Storm
216463 9.3 危険 オラクル - Oracle Java SE および JavaFX における JavaFX に関する脆弱性 CWE-noinfo
情報不足 		CVE-2015-0492 2015-04-20 09:46 2015-04-14 Show GitHub Exploit DB Packet Storm
216464 6.8 警告 オラクル - Oracle Java SE および JavaFX における JavaFX に関する脆弱性 CWE-noinfo
情報不足 		CVE-2015-0484 2015-04-20 09:46 2015-04-14 Show GitHub Exploit DB Packet Storm
216465 2.1 注意 オラクル - Oracle Sun Solaris における Text Utilities に関する脆弱性 CWE-noinfo
情報不足 		CVE-2015-2574 2015-04-17 16:48 2015-04-14 Show GitHub Exploit DB Packet Storm
216466 7.1 危険 オラクル - Oracle Sun Solaris における Kernel IDMap に関する脆弱性 CWE-noinfo
情報不足 		CVE-2015-2578 2015-04-17 16:48 2015-04-14 Show GitHub Exploit DB Packet Storm
216467 7.2 危険 オラクル - Oracle Sun Solaris における Accounting commands に関する脆弱性 CWE-noinfo
情報不足 		CVE-2015-2577 2015-04-17 16:48 2015-04-14 Show GitHub Exploit DB Packet Storm
216468 4.4 警告 オラクル - Oracle Sun Solaris における libelfsign に関する脆弱性 CWE-noinfo
情報不足 		CVE-2015-0471 2015-04-17 16:48 2015-04-14 Show GitHub Exploit DB Packet Storm
216469 7.2 危険 オラクル - Oracle Sun Solaris における ZFS File system に関する脆弱性 CWE-noinfo
情報不足 		CVE-2015-0448 2015-04-17 16:48 2015-04-14 Show GitHub Exploit DB Packet Storm
216470 3.5 注意 オラクル - Oracle MySQL の MySQL Server における Server : Security : Privileges に関する脆弱性 CWE-noinfo
情報不足 		CVE-2015-2567 2015-04-17 16:11 2015-04-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 30, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1331 8.1 HIGH
Network 		- - HTMLy CMS through 3.1.1 contains a path traversal vulnerability that allows low-privileged authenticated attackers to relocate arbitrary files by supplying directory traversal sequences in the oldfil… CWE-22
Path Traversal 		CVE-2026-45233 2026-06-26 04:25 2026-06-26 Show GitHub Exploit DB Packet Storm
1332 8.1 HIGH
Network 		- - ProFTPD through 1.3.9b and 1.3.10rc2 contains an access control bypass vulnerability that allows authenticated FTP users to circumvent Directory ACL restrictions by prefixing paths with /proc/self/ro… CWE-59
Link Following 		CVE-2026-35025 2026-06-26 04:25 2026-06-24 Show GitHub Exploit DB Packet Storm
1333 9.1 CRITICAL
Network 		- - Marlin Firmware through 2.1.2.7, fixed in commit 1f255d1, when built with MESH_BED_LEVELING enabled, contains an out-of-bounds write vulnerability in the M421 G-code handler that allows attackers to … CWE-129
 Improper Validation of Array Index 		CVE-2026-56111 2026-06-26 04:25 2026-06-25 Show GitHub Exploit DB Packet Storm
1334 7.1 HIGH
Network 		- - pnpm is a package manager. From 11.3.0 until 11.5.3, `pnpm stage download` derived a local filename from registry-controlled package name and version fields. A crafted manifest could escape the selec… CWE-22
CWE-73
Path Traversal
 External Control of File Name or Path 		CVE-2026-55700 2026-06-26 04:16 2026-06-26 Show GitHub Exploit DB Packet Storm
1335 6.5 MEDIUM
Network 		- - pnpm is a package manager. Prior to 10.34.2 and 11.5.3, Manifest bin object keys such as "", ".", and ".." passed pnpm's bin-name guard. When a malicious package was installed globally, later global … CWE-22
CWE-73
Path Traversal
 External Control of File Name or Path 		CVE-2026-55699 2026-06-26 04:16 2026-06-26 Show GitHub Exploit DB Packet Storm
1336 7.5 HIGH
Network 		- - pnpm is a package manager. Prior to 10.34.2 and 11.5.3, the generic peer-suffix normalizer also stripped parenthesized text from git, URL, tarball, file, and other opaque locators. Approval for one s… CWE-346
CWE-693
CWE-829
 Origin Validation Error
 Protection Mechanism Failure
 Inclusion of Functionality from Untrusted Control Sphere 		CVE-2026-55487 2026-06-26 04:16 2026-06-26 Show GitHub Exploit DB Packet Storm
1337 - - - ToolJet is the open-source foundation am AI-native platform for building and deploying internal tools, workflows and AI agents. Prior to 3.20.178-lts, any authenticated user with builder role (free t… CWE-94
Code Injection 		CVE-2026-55413 2026-06-26 04:16 2026-06-26 Show GitHub Exploit DB Packet Storm
1338 8.3 HIGH
Network 		- - ToolJet is the open-source foundation am AI-native platform for building and deploying internal tools, workflows and AI agents. Prior to 3.20.178-lts, there's an SSRF in the RestAPI data source compo… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-55412 2026-06-26 04:16 2026-06-26 Show GitHub Exploit DB Packet Storm
1339 6.8 MEDIUM
Adjacent 		- - ToolJet is the open-source foundation am AI-native platform for building and deploying internal tools, workflows and AI agents. Prior to 3.20.1780-lts, the authenticated endpoint POST /api/data-sourc… CWE-639
CWE-863
 Authorization Bypass Through User-Controlled Key
 Incorrect Authorization 		CVE-2026-55411 2026-06-26 04:16 2026-06-26 Show GitHub Exploit DB Packet Storm
1340 6.5 MEDIUM
Network 		- - pnpm is a package manager. Prior to 10.34.2 and 11.5.3, pnpm and pacquet expanded ${ENV_VAR} placeholders from repository-controlled .npmrc and pnpm-workspace.yaml into registry request destinations … CWE-200
CWE-201
CWE-522
Information Exposure
 Insertion of Sensitive Information Into Sent Data
 Insufficiently Protected Credentials 		CVE-2026-55180 2026-06-26 04:16 2026-06-26 Show GitHub Exploit DB Packet Storm