Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 29, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
236331	6.8	警告	plain black	-	Plain Black WebGUI の Operation/User.pm におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-0407	2012-12-20 18:19	2007-01-22	Show	GitHub Exploit DB Packet Storm

236332	6	警告	Simple Machines	-	SMF の index.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-0399	2012-12-20 18:19	2007-01-22	Show	GitHub Exploit DB Packet Storm

236333	4.6	警告	サン・マイクロシステムズ	-	Sun Solaris における権限を取得される脆弱性	-	CVE-2007-0393	2012-12-20 18:19	2007-01-19	Show	GitHub Exploit DB Packet Storm

236334	6.8	警告	sabros.us	-	sabros.us の index.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-0390	2012-12-20 18:19	2007-01-19	Show	GitHub Exploit DB Packet Storm

236335	7.5	危険	woltlab	-	wBB の search.php における SQL インジェクションの脆弱性	-	CVE-2007-0388	2012-12-20 18:19	2007-01-19	Show	GitHub Exploit DB Packet Storm

236336	10	危険	postnuke software foundation	-	PostNuke の rating セクションにおける脆弱性	-	CVE-2007-0386	2012-12-20 18:19	2007-01-19	Show	GitHub Exploit DB Packet Storm

236337	7.8	危険	postnuke software foundation	-	PostNuke の faq セクションにおける重要な情報を取得される脆弱性	-	CVE-2007-0385	2012-12-20 18:19	2007-01-19	Show	GitHub Exploit DB Packet Storm

236338	5.1	警告	postnuke software foundation	-	PostNuke のプレビューにおけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-0384	2012-12-20 18:19	2007-01-19	Show	GitHub Exploit DB Packet Storm

236339	7.5	危険	XOOPS	-	Xoops における SQL インジェクションの脆弱性	-	CVE-2007-0377	2012-12-20 18:19	2007-01-19	Show	GitHub Exploit DB Packet Storm

236340	6.8	警告	VirtueMart	-	Virtuemart におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-0376	2012-12-20 18:19	2007-01-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 30, 2026, 4:22 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
71	8.8	HIGH Network	flowiseai	flowise	Flowise before 3.0.10 contains an unverified password change vulnerability. An authenticated user can change their account password through the account settings (Security) section without supplying t… New	CWE-620 Unverified Password Change	CVE-2025-71328	2026-06-30 03:46	2026-06-26	Show	GitHub Exploit DB Packet Storm

72	8.8	HIGH Network	-	-	A vulnerability has been found in D-Link DCS-935L 1.10.01. This affects the function sub_400E40 of the file setconf.cgi of the component POST Parameter Handler. Such manipulation of the argument UID … New	CWE-77 CWE-78 Command Injection OS Command	CVE-2026-13545	2026-06-30 03:46	2026-06-29	Show	GitHub Exploit DB Packet Storm

73	3.7	LOW Network	-	-	A vulnerability was detected in skypilot-org skypilot up to 0.12.0. Impacted is the function username.encode of the file sky/users/server.py of the component User ID Handler. The manipulation results… New	CWE-327 CWE-328 Use of a Broken or Risky Cryptographic Algorithm Use of Weak Hash	CVE-2026-13482	2026-06-30 03:46	2026-06-28	Show	GitHub Exploit DB Packet Storm

74	7.3	HIGH Network	-	-	A vulnerability was identified in SourceCodester Class and Exam Timetabling System 1.0. Affected is an unknown function of the file /archive.php. The manipulation of the argument sy leads to sql inje… New	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-13487	2026-06-30 03:46	2026-06-28	Show	GitHub Exploit DB Packet Storm

75	7.3	HIGH Network	-	-	A security flaw has been discovered in SourceCodester Class and Exam Timetabling System 1.0/7.php. Affected by this vulnerability is an unknown functionality of the file /preview7.php. The manipulati… New	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-13488	2026-06-30 03:46	2026-06-28	Show	GitHub Exploit DB Packet Storm

76	4.7	MEDIUM Network	-	-	A vulnerability has been found in itsourcecode Hospital Management System 1.0. Impacted is an unknown function of the file /adminprofile.php. The manipulation of the argument loginid leads to sql inj… New	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-13495	2026-06-30 03:46	2026-06-28	Show	GitHub Exploit DB Packet Storm

77	6.3	MEDIUM Network	-	-	A vulnerability was found in itsourcecode Hospital Management System 1.0. The affected element is an unknown function of the file /ajaxmedicine.php. The manipulation of the argument medicineid result… New	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-13496	2026-06-30 03:46	2026-06-28	Show	GitHub Exploit DB Packet Storm

78	7.3	HIGH Network	-	-	A weakness has been identified in antlr ANTLR4 up to 4.13.2. Affected is an unknown function of the file tool/src/org/antlr/v4/codegen/model/OutputFile.java of the component Grammar Action Block Hand… New	CWE-74 CWE-94 Injection Code Injection	CVE-2026-13500	2026-06-30 03:46	2026-06-29	Show	GitHub Exploit DB Packet Storm

79	5.3	MEDIUM Local	-	-	A security vulnerability has been detected in antlr ANTLR4 up to 4.13.2. Affected by this vulnerability is the function GoTarget of the file tool/src/org/antlr/v4/codegen/target/GoTarget.java of the … New	CWE-74 CWE-77 Injection Command Injection	CVE-2026-13501	2026-06-30 03:46	2026-06-29	Show	GitHub Exploit DB Packet Storm

80	5.3	MEDIUM Network	-	-	A vulnerability was detected in antlr ANTLR4 up to 4.13.2. Affected by this issue is the function getImportedVocabFile of the file tool/src/org/antlr/v4/parse/TokenVocabParser.java of the component t… New	CWE-22 Path Traversal	CVE-2026-13503	2026-06-30 03:46	2026-06-29	Show	GitHub Exploit DB Packet Storm