Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
222661 9.3 危険 DjVuLibre Project - 複数の製品で使用される DjVuLibre における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2012-6535 2013-12-4 15:03 2012-05-8 Show GitHub Exploit DB Packet Storm
222662 6.1 警告 シスコシステムズ - Cisco IOS および IOS XE の IP Device Tracking 機能におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-6705 2013-12-4 14:31 2013-12-3 Show GitHub Exploit DB Packet Storm
222663 7.1 危険 シスコシステムズ - Cisco IOS XE におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2013-6704 2013-12-4 14:31 2013-12-3 Show GitHub Exploit DB Packet Storm
222664 7.1 危険 シスコシステムズ - Cisco ONS 15454 コントローラカードの TLS/SSLv3 モジュールにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-6703 2013-12-4 14:30 2013-12-3 Show GitHub Exploit DB Packet Storm
222665 7.1 危険 シスコシステムズ - Cisco Adaptive Security Appliance ソフトウェアにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-6696 2013-12-4 14:29 2013-12-2 Show GitHub Exploit DB Packet Storm
222666 4 警告 シスコシステムズ - Cisco Secure Access Control System の RBAC の実装における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-6695 2013-12-4 14:29 2013-12-2 Show GitHub Exploit DB Packet Storm
222667 4.3 警告 シスコシステムズ - Cisco Prime Collaboration の Assurance コンポーネントの Web インターフェースにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-6690 2013-12-4 14:28 2013-12-3 Show GitHub Exploit DB Packet Storm
222668 3.5 注意 DELL EMC (旧 EMC Corporation) - EMC Document Sciences xPression の複数の Edition におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2013-6177 2013-12-4 12:22 2013-11-19 Show GitHub Exploit DB Packet Storm
222669 6.5 警告 DELL EMC (旧 EMC Corporation) - EMC Document Sciences xPression の 複数の Edition における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-6176 2013-12-4 12:22 2013-11-19 Show GitHub Exploit DB Packet Storm
222670 4.3 警告 DELL EMC (旧 EMC Corporation) - EMC Document Sciences xPression の 複数の Edition におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-6175 2013-12-4 12:22 2013-11-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
771 - - - A Server-Side Request Forgery (SSRF) vulnerability was identified in GitHub Enterprise Server that allowed an attacker to cause the server to issue HTTP requests to internal services via the security… New CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-8606 2026-05-27 09:16 2026-05-27 Show GitHub Exploit DB Packet Storm
772 - - - Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. New - CVE-2026-8680 2026-05-27 08:16 2026-05-27 Show GitHub Exploit DB Packet Storm
773 - - - Mojolicious::Plugin::Statsd versions through 0.04 for Perl allowed metric injections. The metric names and set values were not checked for newlines, colons or pipes. Metrics generated from untrusted… New CWE-93
CRLF Injection 		CVE-2026-46740 2026-05-27 08:16 2026-05-27 Show GitHub Exploit DB Packet Storm
774 6.5 MEDIUM
Network 		- - Starlette is a lightweight ASGI framework/toolkit. Prior to version 1.0.1, the HTTP `Host` request header was not validated before being used to reconstruct `request.url`. Because the routing algorit… New CWE-444
HTTP Request Smuggling 		CVE-2026-48710 2026-05-27 07:16 2026-05-27 Show GitHub Exploit DB Packet Storm
775 8.1 HIGH
Adjacent 		- - epa4all-client is the Java Client for epa4all / ePA 3.0 in the Telematik Infrastruktur. Prior to 1.2.2, an attacker on the network path between the ePA service and the Konnektor can present any TLS c… New CWE-295
Improper Certificate Validation  		CVE-2026-45574 2026-05-27 07:16 2026-05-27 Show GitHub Exploit DB Packet Storm
776 - - - Dozzle is a realtime log viewer for docker containers. Prior to 10.5.2, he WebSocket upgrader for the /exec and /attach endpoints uses CheckOrigin: func(r *http.Request) bool { return true }, accepti… New CWE-346
 Origin Validation Error 		CVE-2026-44985 2026-05-27 07:16 2026-05-27 Show GitHub Exploit DB Packet Storm
777 8.3 HIGH
Network 		- - Velocity.js is a JavaScript implementation of the Apache Velocity template engine. In 2.1.5 and earlier, a prototype pollution vulnerability was discovered in velocityjs. This issue occurs during the… New CWE-1321
 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') 		CVE-2026-44966 2026-05-27 07:16 2026-05-27 Show GitHub Exploit DB Packet Storm
778 - - - Prometheus is an open-source monitoring system and time series database. From 2.49.0 to before 3.5.3 and 3.11.3, in the Prometheus server's legacy web UI (enabled via the command-line flag --enable-f… New CWE-79
Cross-site Scripting 		CVE-2026-44903 2026-05-27 07:16 2026-05-27 Show GitHub Exploit DB Packet Storm
779 8.1 HIGH
Adjacent 		- - epa4all-client is the Java Client for epa4all / ePA 3.0 in the Telematik Infrastruktur. Prior to 1.2.1, in SignedPublicKeysTrustValidatorImpl.isTrusted(), the ECDSA signature verification at line 45… New CWE-295
Improper Certificate Validation  		CVE-2026-44900 2026-05-27 07:16 2026-05-27 Show GitHub Exploit DB Packet Storm
780 7.5 HIGH
Network 		- - Vanetza is an open-source implementation of the ETSI C-ITS protocol suite. In 26.02 and earlier, a denial-of-service vulnerability was identified in the ASN.1/OER parsing pipeline of Vanetza. When pr… New CWE-248
 Uncaught Exception 		CVE-2026-43988 2026-05-27 07:16 2026-05-27 Show GitHub Exploit DB Packet Storm