Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 29, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
271	5.4	警告 Network	n8n	n8n	n8nにおけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-54302	2026-06-29 11:12	2026-06-23	Show	GitHub Exploit DB Packet Storm

272	7.7	重要 Network	n8n	n8n	n8nにおける情報漏えいに関する脆弱性 New	CWE-200 情報漏えい	CVE-2026-54304	2026-06-29 11:12	2026-06-23	Show	GitHub Exploit DB Packet Storm

273	9.9	緊急 Network	n8n	n8n	n8nにおける複数の脆弱性 New	CWE-200 CWE-284	CVE-2026-54305	2026-06-29 11:12	2026-06-23	Show	GitHub Exploit DB Packet Storm

274	6.4	警告 Network	n8n	n8n	n8nにおけるオブジェクトプロトタイプ属性の不適切に制御された変更に関する脆弱性 New	CWE-1321 オブジェクトプロトタイプ属性の不適切に制御された変更 (プロトタイプの汚染)	CVE-2026-54306	2026-06-29 11:11	2026-06-23	Show	GitHub Exploit DB Packet Storm

275	9.6	緊急 Network	n8n	n8n	n8nにおける不正な認証に関する脆弱性 New	CWE-863 不正な認証	CVE-2026-54307	2026-06-29 11:11	2026-06-23	Show	GitHub Exploit DB Packet Storm

276	7.2	重要 Network	n8n	n8n	n8nにおけるスプーフィングによる認証回避に関する脆弱性 New	CWE-290 スプーフィングによる認証回避	CVE-2026-54308	2026-06-29 11:11	2026-06-23	Show	GitHub Exploit DB Packet Storm

277	7.6	重要 Adjacent	Home Assistant	Home Assistant	Home Assistantにおける複数の脆弱性 New	CWE-200 CWE-306	CVE-2026-54317	2026-06-29 11:11	2026-06-23	Show	GitHub Exploit DB Packet Storm

278	7.1	重要 Local	Home Assistant	home assistant companion	Home Assistantのhome assistant companionにおけるAndroid アプリケーションコンポーネントの不適切なエクスポートの脆弱性 New	CWE-926 Android アプリケーションコンポーネントの不適切なエクスポート	CVE-2026-54318	2026-06-29 11:11	2026-06-23	Show	GitHub Exploit DB Packet Storm

279	6.5	警告 Network	Aqua Security	Trivy	Aqua SecurityのTrivyにおける複数の脆弱性 New	CWE-770 CWE-789	CVE-2026-54448	2026-06-29 11:11	2026-06-25	Show	GitHub Exploit DB Packet Storm

280	5.5	警告 Local	jqlang	jq	jqlangのjqにおける整数オーバーフローの脆弱性 New	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2026-54679	2026-06-29 11:11	2026-06-25	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 30, 2026, 4:22 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
343501	-		sun	solaris sunos	CDE screen lock program (screenlock) on Solaris 2.6 does not properly lock an unprivileged user's console session when the host is an NIS+ client, which allows others with physical access to login wi…	NVD-CWE-Other	CVE-1999-1025	2018-10-31 01:25	1998-11-12	Show	GitHub Exploit DB Packet Storm

343502	-		sun	solaris sunos	The permissions for the /dev/audio device on Solaris 2.2 and earlier, and SunOS 4.1.x, allow any local user to read from the device, which could be used by an attacker to monitor conversations happen…	NVD-CWE-Other	CVE-1999-1137	2018-10-31 01:25	1993-10-1	Show	GitHub Exploit DB Packet Storm

343503	-		f5	tmos	bigconf.conf in F5 BIG/ip 2.1.2 and earlier allows remote attackers to read arbitrary files by specifying the target file in the "file" parameter.	NVD-CWE-Other	CVE-1999-1550	2018-10-31 01:25	1999-11-8	Show	GitHub Exploit DB Packet Storm

343504	-		sun	sunos	The (1) rcS and (2) mountall programs in Sun Solaris 2.x, possibly before 2.4, start a privileged shell on the system console if fsck fails while the system is booting, which allows attackers with ph…	NVD-CWE-Other	CVE-1999-1585	2018-10-31 01:25	1999-12-31	Show	GitHub Exploit DB Packet Storm

343505	-		sun	solaris sunos	/usr/ucb/ps in Sun Microsystems Solaris 8 and 9, and certain earlier releases, allows local users to view the environment variables and values of arbitrary processes via the -e option.	NVD-CWE-Other	CVE-1999-1587	2018-10-31 01:25	1999-12-31	Show	GitHub Exploit DB Packet Storm

343506	-		microsoft	internet_information_server internet_information_services	IIS 4.0 allows a remote attacker to obtain the real pathname of the document root by requesting non-existent files with .ida or .idq extensions.	NVD-CWE-Other	CVE-2000-0071	2018-10-31 01:25	2000-01-11	Show	GitHub Exploit DB Packet Storm

343507	-		microsoft	commercial_internet_system internet_information_server internet_information_services proxy_server site_server site_server_commerce	IIS 4.0 and 5.0 does not properly perform ISAPI extension processing if a virtual directory is mapped to a UNC share, which allows remote attackers to read the source code of ASP and other files, aka…	NVD-CWE-Other	CVE-2000-0246	2018-10-31 01:25	2000-03-30	Show	GitHub Exploit DB Packet Storm

343508	7.5	HIGH Network	microsoft	internet_information_server internet_information_services	IIS 4.0 and 5.0 allows remote attackers to cause a denial of service by sending many URLs with a large number of escaped characters, aka the "Myriad Escaped Characters" Vulnerability.	CWE-20 Improper Input Validation	CVE-2000-0258	2018-10-31 01:25	2000-04-12	Show	GitHub Exploit DB Packet Storm

343509	-		microsoft	internet_information_server internet_information_services	Microsoft IIS 4.0 and 5.0 with the IISADMPWD virtual directory installed allows a remote attacker to cause a denial of service via a malformed request to the inetinfo.exe program, aka the "Undelimite…	NVD-CWE-Other	CVE-2000-0304	2018-10-31 01:25	2000-05-10	Show	GitHub Exploit DB Packet Storm

343510	-		microsoft	internet_information_server internet_information_services	IIS 4.05 and 5.0 allow remote attackers to cause a denial of service via a long, complex URL that appears to contain a large number of file extensions, aka the "Malformed Extension Data in URL" vulne…	NVD-CWE-Other	CVE-2000-0408	2018-10-31 01:25	2000-05-11	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed