Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 4:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
259191 9.3 危険 アドビシステムズ
レッドハット
オラクル
- Adobe Flash Player における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2011-0608 2011-03-30 13:36 2011-02-8 Show GitHub Exploit DB Packet Storm
259192 9.3 危険 アドビシステムズ
レッドハット
オラクル
- Adobe Flash Player における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2011-0607 2011-03-30 13:35 2011-02-8 Show GitHub Exploit DB Packet Storm
259193 9.3 危険 アドビシステムズ
レッドハット
オラクル
- Adobe Flash Player における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2011-0578 2011-03-30 13:34 2011-02-8 Show GitHub Exploit DB Packet Storm
259194 9.3 危険 アドビシステムズ
レッドハット
オラクル
- Adobe Flash Player における任意のコードを実行される脆弱性 CWE-Other
その他
CVE-2011-0577 2011-03-30 13:33 2011-02-8 Show GitHub Exploit DB Packet Storm
259195 9.3 危険 アドビシステムズ
レッドハット
オラクル
- Adobe Flash Player における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2011-0574 2011-03-30 13:32 2011-02-8 Show GitHub Exploit DB Packet Storm
259196 9.3 危険 アドビシステムズ
レッドハット
オラクル
- Adobe Flash Player における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2011-0573 2011-03-30 13:31 2011-02-8 Show GitHub Exploit DB Packet Storm
259197 9.3 危険 アドビシステムズ
レッドハット
オラクル
- Adobe Flash Player における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2011-0572 2011-03-30 12:16 2011-02-8 Show GitHub Exploit DB Packet Storm
259198 9.3 危険 アドビシステムズ
レッドハット
オラクル
- Adobe Flash Player における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2011-0571 2011-03-30 12:15 2011-02-8 Show GitHub Exploit DB Packet Storm
259199 9.3 危険 アドビシステムズ
レッドハット
オラクル
- Adobe Flash Player における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2011-0561 2011-03-30 12:12 2011-02-8 Show GitHub Exploit DB Packet Storm
259200 9.3 危険 アドビシステムズ
レッドハット
オラクル
- Adobe Flash Player における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2011-0560 2011-03-30 12:11 2011-02-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1401 5.9 MEDIUM
Network
- - A flaw in Node.js proxy tunnel error handling could expose proxy credentials in `ERR_PROXY_TUNNEL` error messages. When proxy credentials are embedded in the proxy URL, they may be exposed through… CWE-359
 Exposure of Private Personal Information to an Unauthorized Actor
CVE-2026-48615 2026-06-27 01:11 2026-06-26 Show GitHub Exploit DB Packet Storm
1402 5.3 MEDIUM
Network
- - A flaw in Node.js HTTP/2 client allows a server to send an unlimited number of ORIGIN frames, which could lead to an Out of Memory error on the client. This vulnerability affects all supported rel… CWE-400
 Uncontrolled Resource Consumption
CVE-2026-48619 2026-06-27 01:11 2026-06-26 Show GitHub Exploit DB Packet Storm
1403 4.2 MEDIUM
Network
- - A inconsistency in Node.js hostname matching can cause a trust-policy bypass in multi-context mTLS setups. This vulnerability affects all supported release lines: **Node.js 22**, **Node.js 24**, a… CWE-284
Improper Access Control
CVE-2026-48928 2026-06-27 01:11 2026-06-26 Show GitHub Exploit DB Packet Storm
1404 5.6 MEDIUM
Network
- - A flaw in Node.js TLS hostname handling can cause Embedded-nul hostnames can lead to silent authority rebinding due to c-string truncation in resolver bindings. This vulnerability affects all supp… CWE-284
Improper Access Control
CVE-2026-48930 2026-06-27 01:11 2026-06-26 Show GitHub Exploit DB Packet Storm
1405 3.3 LOW
Local
- - A flaw in Node.js Permission API can cause a file metadata to be modified even on a path that was set as read-only with e.g. `--allow-fs-read`. This vulnerability affects all supported release lin… CWE-276
Incorrect Default Permissions 
CVE-2026-48935 2026-06-27 01:11 2026-06-26 Show GitHub Exploit DB Packet Storm
1406 3.3 LOW
Local
- - A flaw in Node.js Permission API can cause a local server to be started (via a Unix domain socket), even without the `--allow-net` permission. This vulnerability affects one supported release line… CWE-284
Improper Access Control
CVE-2026-48936 2026-06-27 01:11 2026-06-26 Show GitHub Exploit DB Packet Storm
1407 - - - FOSSBilling is a free, open-source billing and client management system. In versions 0.5.4 through 0.7.2, the /run-patcher maintenance endpoint in FOSSBilling was accessible without authentication, w… CWE-306
Missing Authentication for Critical Function
CVE-2026-43920 2026-06-27 01:10 2026-06-26 Show GitHub Exploit DB Packet Storm
1408 6.5 MEDIUM
Network
- - The User Registration & Membership – Free & Paid Memberships, Subscriptions, Content Restriction, User Profile, Custom User Registration & Login Builder plugin for WordPress is vulnerable to unauthor… CWE-862
 Missing Authorization
CVE-2026-1869 2026-06-27 00:49 2026-06-26 Show GitHub Exploit DB Packet Storm
1409 6.5 MEDIUM
Network
- - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Tim Strifler Exclusive Addons Elementor allows Stored XSS. This issue affects Exclusive Addons E… CWE-79
Cross-site Scripting
CVE-2026-57620 2026-06-27 00:49 2026-06-26 Show GitHub Exploit DB Packet Storm
1410 5.3 MEDIUM
Network
- - Unauthenticated Insecure Direct Object References (IDOR) in BookPro <= 1.1.0 versions. CWE-639
 Authorization Bypass Through User-Controlled Key
CVE-2025-66123 2026-06-27 00:49 2026-06-27 Show GitHub Exploit DB Packet Storm