Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 2:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
228041 7.1 危険 シスコシステムズ - Cisco IOS XR におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足
CVE-2013-5549 2013-10-28 15:34 2013-10-23 Show GitHub Exploit DB Packet Storm
228042 6.9 警告 Linux - ARM プラットフォーム上の Linux Kernel の arch/arm/kernel/perf_event.c における権限を取得される脆弱性 CWE-20
不適切な入力確認
CVE-2013-4254 2013-10-28 15:34 2013-08-20 Show GitHub Exploit DB Packet Storm
228043 4.7 警告 Linux - Linux Kernel の kernel/user_namespace.c 内の unshare_userns 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題
CVE-2013-4205 2013-10-28 15:31 2013-08-11 Show GitHub Exploit DB Packet Storm
228044 6.8 警告 シスコシステムズ - Catalyst 3750X スイッチ上で稼働する Cisco IOS における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2013-5522 2013-10-28 15:31 2013-10-25 Show GitHub Exploit DB Packet Storm
228045 5 警告 Mozilla Foundation - 複数の Mozilla 製品における同一生成元ポリシーを回避される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2012-4196 2013-10-28 15:27 2012-10-26 Show GitHub Exploit DB Packet Storm
228046 5.1 警告 Mozilla Foundation - 複数の Mozilla 製品の nsLocation::CheckURL 関数におけるクロスサイトスクリプティングの脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2012-4195 2013-10-28 15:26 2012-10-26 Show GitHub Exploit DB Packet Storm
228047 4.3 警告 Mozilla Foundation - 複数の Mozilla 製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2012-4194 2013-10-28 15:24 2012-10-26 Show GitHub Exploit DB Packet Storm
228048 4.3 警告 Mozilla Foundation - 複数の Mozilla 製品における同一生成元ポリシーを回避される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2012-4192 2013-10-28 15:23 2012-10-11 Show GitHub Exploit DB Packet Storm
228049 9.3 危険 Mozilla Foundation - 複数の Mozilla 製品における同一生成元ポリシーを回避される脆弱性 CWE-DesignError
CVE-2012-4193 2013-10-28 15:22 2012-10-11 Show GitHub Exploit DB Packet Storm
228050 10 危険 Mozilla Foundation - 複数の Mozilla 製品におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2012-4188 2013-10-28 15:21 2012-10-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1121 4.3 MEDIUM
Network
hono hono hono before 4.12.14 contains an html injection vulnerability in jsx server-side rendering that allows attackers to inject unintended html by using malformed attribute names. Attackers can craft speci… CWE-79
Cross-site Scripting
CVE-2026-56761 2026-06-27 04:59 2026-06-24 Show GitHub Exploit DB Packet Storm
1122 5.5 MEDIUM
Local
docling docling Docling simplifies document processing by parsing diverse formats and providing integrations with the generative AI ecosystem. From 2.73.0 until 2.91.0, he LaTeX backend's handling of \includegraphic… CWE-22
Path Traversal
CVE-2026-44022 2026-06-27 04:58 2026-06-25 Show GitHub Exploit DB Packet Storm
1123 5.5 MEDIUM
Local
gpac gpac GPAC Multimedia Open Source Project GPAC Project/MP4Box 2.5-DEV-rev1593-gfe88c3545-master is affected by: Buffer Overflow. The impact is: cause a denial of service (local). The component is: filter_c… CWE-122
Heap-based Buffer Overflow
CVE-2025-60468 2026-06-27 04:56 2026-06-25 Show GitHub Exploit DB Packet Storm
1124 5.3 MEDIUM
Network
fastapiexpert python-multipart Python-Multipart is a streaming multipart parser for Python. Prior to 0.0.30, parse_options_header parsed Content-Disposition (and Content-Type) headers with email.message.Message, which transparentl… CWE-20
CWE-436
 Improper Input Validation 
 Interpretation Conflict
CVE-2026-53537 2026-06-27 04:54 2026-06-23 Show GitHub Exploit DB Packet Storm
1125 3.7 LOW
Network
fastapiexpert python-multipart Python-Multipart is a streaming multipart parser for Python. Prior to 0.0.30, QuerystringParser treated ; as a field separator in application/x-www-form-urlencoded bodies, in addition to &. The WHATW… CWE-436
CWE-444
 Interpretation Conflict
HTTP Request Smuggling
CVE-2026-53538 2026-06-27 04:52 2026-06-23 Show GitHub Exploit DB Packet Storm
1126 7.5 HIGH
Network
fastapiexpert python-multipart Python-Multipart is a streaming multipart parser for Python. Prior to 0.0.30, when parsing application/x-www-form-urlencoded bodies, QuerystringParser located the field separator with a two step look… CWE-400
CWE-407
 Uncontrolled Resource Consumption
 Inefficient Algorithmic Complexity
CVE-2026-53539 2026-06-27 04:50 2026-06-23 Show GitHub Exploit DB Packet Storm
1127 9.9 CRITICAL
Network
appsmith appsmith Appsmith is a platform to build admin panels, internal tools, and dashboards. Prior to 2.1, the bundled Caddy reverse-proxy's admin API — which has no authentication by default — is bound on 0.0.0.0:… CWE-749
CWE-1188
 Exposed Dangerous Method or Function
 Insecure Default Initialization of Resource
CVE-2026-55454 2026-06-27 04:50 2026-06-25 Show GitHub Exploit DB Packet Storm
1128 3.7 LOW
Network
fastapiexpert python-multipart Python-Multipart is a streaming multipart parser for Python. Prior to 0.0.31, parse_form() did not validate the Content-Length header before using it to bound its chunked read of the request body. A … CWE-1284
 Improper Validation of Specified Quantity in Input
CVE-2026-53540 2026-06-27 04:50 2026-06-23 Show GitHub Exploit DB Packet Storm
1129 7.2 HIGH
Network
appsmith appsmith Appsmith is a platform to build admin panels, internal tools, and dashboards. Prior to 2.1, Appsmith's bundled supervisord exposes an XML-RPC interface on port 9001, reachable from outside the contai… CWE-183
CWE-918
 Permissive List of Allowed Inputs
Server-Side Request Forgery (SSRF) 
CVE-2026-50189 2026-06-27 04:50 2026-06-25 Show GitHub Exploit DB Packet Storm
1130 9.1 CRITICAL
Network
appsmith appsmith Appsmith is a platform to build admin panels, internal tools, and dashboards. Prior to 2.1, the outbound HTTP host filter applied by WebClientUtils (used by the REST API and GraphQL datasource plugin… CWE-918
Server-Side Request Forgery (SSRF) 
CVE-2026-55455 2026-06-27 04:50 2026-06-25 Show GitHub Exploit DB Packet Storm