Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 30, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
216681 5 警告 Sympa - Sympa の Web インターフェースのニュースレター投稿領域における任意のファイルを読まれる脆弱性 CWE-200
情報漏えい
CVE-2015-1306 2015-04-8 17:16 2015-01-20 Show GitHub Exploit DB Packet Storm
216682 5.8 警告 エリクソン - Ericsson Drutt Mobile Service Delivery Platform の 3PI Manager におけるオープンリダイレクトの脆弱性 CWE-Other
その他
CVE-2015-2167 2015-04-8 16:37 2015-03-31 Show GitHub Exploit DB Packet Storm
216683 5 警告 エリクソン - Ericsson Drutt Mobile Service Delivery Platform の Instance Monitor におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2015-2166 2015-04-8 16:37 2015-03-31 Show GitHub Exploit DB Packet Storm
216684 4.3 警告 エリクソン - Ericsson Drutt Mobile Service Delivery Platform の Report Viewer におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2015-2165 2015-04-8 16:37 2015-03-31 Show GitHub Exploit DB Packet Storm
216685 10 危険 マイクロソフト
アドビシステムズ
Google
- Adobe Flash Player における任意のコードを実行される脆弱性 CWE-Other
その他
CVE-2015-0342 2015-04-8 16:19 2015-03-12 Show GitHub Exploit DB Packet Storm
216686 10 危険 マイクロソフト
アドビシステムズ
Google
- Adobe Flash Player における任意のコードを実行される脆弱性 CWE-Other
その他
CVE-2015-0341 2015-04-8 16:19 2015-03-12 Show GitHub Exploit DB Packet Storm
216687 5 警告 マイクロソフト
アドビシステムズ
Google
- Adobe Flash Player におけるファイルアップロードの制限を回避される脆弱性 CWE-Other
その他
CVE-2015-0340 2015-04-8 16:18 2015-03-12 Show GitHub Exploit DB Packet Storm
216688 10 危険 マイクロソフト
アドビシステムズ
Google
- Adobe Flash Player における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題
CVE-2015-0339 2015-04-8 16:17 2015-03-12 Show GitHub Exploit DB Packet Storm
216689 10 危険 マイクロソフト
アドビシステムズ
Google
- Adobe Flash Player における整数オーバーフローの脆弱性 CWE-Other
その他
CVE-2015-0338 2015-04-8 16:17 2015-03-12 Show GitHub Exploit DB Packet Storm
216690 5 警告 マイクロソフト
アドビシステムズ
Google
- Adobe Flash Player における同一生成元ポリシーを回避される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2015-0337 2015-04-8 16:16 2015-03-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1331 10.0 CRITICAL
Network
- - Flowise contains a path traversal vulnerability in the /api/v1/document-store/loader/process endpoint that allows unauthenticated attackers to write arbitrary files to the filesystem. Attackers can e… CWE-73
 External Control of File Name or Path
CVE-2025-71338 2026-06-27 01:19 2026-06-26 Show GitHub Exploit DB Packet Storm
1332 4.2 MEDIUM
Local
- - A flaw was found in KubeVirt's virt-handler network cache handling. The WriteToCachedFile function writes data to a launcher-rooted path using os.WriteFile and os.Chown without symlink protection. A … CWE-61
 UNIX Symbolic Link (Symlink) Following
CVE-2026-13218 2026-06-27 01:19 2026-06-26 Show GitHub Exploit DB Packet Storm
1333 6.4 MEDIUM
Network
- - A server-side request forgery (SSRF) flaw was found in KubeVirt's virt-api port-forward handler. When processing a port-forward request to a VirtualMachineInstance (VMI), virt-api reads the target IP… CWE-918
Server-Side Request Forgery (SSRF) 
CVE-2026-13318 2026-06-27 01:19 2026-06-26 Show GitHub Exploit DB Packet Storm
1334 3.8 LOW
Local
- - A flaw was found in KubeVirt's downward metrics virtio-serial server. The server reads guest requests using textproto.Reader.ReadLine(), which buffers input indefinitely until a newline character is … CWE-770
 Allocation of Resources Without Limits or Throttling
CVE-2026-13322 2026-06-27 01:19 2026-06-26 Show GitHub Exploit DB Packet Storm
1335 8.5 HIGH
Network
- - A flaw was found in KubeVirt's migration proxy. When spec.configuration.migrations.disableTLS is set to true on the KubeVirt custom resource, the target virt-handler binds a plain TCP listener on all… CWE-306
Missing Authentication for Critical Function
CVE-2026-13325 2026-06-27 01:19 2026-06-26 Show GitHub Exploit DB Packet Storm
1336 - - - A vulnerability exists in the netclient and factory services of Reolink Home Hub (versions prior to v3.3.0.456_26031911) due to the possibility of brute-force cracking the credentials. This issue cou… CWE-1391
 Use of Weak Credentials
CVE-2026-57473 2026-06-27 01:19 2026-06-26 Show GitHub Exploit DB Packet Storm
1337 8.1 HIGH
Network
- - picklescan through 0.0.26 fails to detect malicious pickle files that invoke idlelib.pyshell.ModifiedInterpreter.runcode in __reduce__ methods. Attackers can embed undetected code in pickle files tha… CWE-502
 Deserialization of Untrusted Data
CVE-2025-71340 2026-06-27 01:17 2026-06-26 Show GitHub Exploit DB Packet Storm
1338 5.3 MEDIUM
Network
- - The Printcart Web to Print Product Designer for WooCommerce WordPress plugin through 2.4.8 is vulnerable to path traversal which makes it possible for the attacker to retrieve the directory listing f… - CVE-2025-10268 2026-06-27 01:17 2026-06-26 Show GitHub Exploit DB Packet Storm
1339 7.5 HIGH
Network
- - The YMC Filter WordPress plugin before 3.11.3 does not properly authorize access to one of its REST API endpoints and does not validate a user-supplied query parameter, allowing unauthenticated attac… - CVE-2026-10823 2026-06-27 01:17 2026-06-26 Show GitHub Exploit DB Packet Storm
1340 7.7 HIGH
Network
- - The SALESmanago & Leadoo WordPress plugin before 3.11.3 does not properly sanitise and escape a parameter passed to one of its AJAX actions before using it in a SQL statement, and fails to enforce au… - CVE-2026-10835 2026-06-27 01:17 2026-06-26 Show GitHub Exploit DB Packet Storm