Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3741 8.8 重要
Network 		pgAdmin Project pgAdmin 4 pgAdmin ProjectのpgAdmin 4におけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2026-7815 2026-05-28 14:38 2026-05-11 Show GitHub Exploit DB Packet Storm
3742 8.8 重要
Network 		pgAdmin Project pgAdmin 4 pgAdmin ProjectのpgAdmin 4におけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-7816 2026-05-28 14:38 2026-05-11 Show GitHub Exploit DB Packet Storm
3743 6.5 警告
Network 		pgAdmin Project pgAdmin 4 pgAdmin ProjectのpgAdmin 4における外部からアクセス可能なファイルまたはディレクトリに関する脆弱性 CWE-552
外部からアクセス可能なファイルまたはディレクトリ 		CVE-2026-7817 2026-05-28 14:38 2026-05-11 Show GitHub Exploit DB Packet Storm
3744 7.8 重要
Local 		pgAdmin Project pgAdmin 4 pgAdmin ProjectのpgAdmin 4における信頼できないデータのデシリアライゼーションに関する脆弱性 CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2026-7818 2026-05-28 14:38 2026-05-11 Show GitHub Exploit DB Packet Storm
3745 8.1 重要
Network 		pgAdmin Project pgAdmin 4 pgAdmin ProjectのpgAdmin 4におけるUNIX Symbolic Link のフォローに関する脆弱性 CWE-61
UNIX Symbolic Link のフォロー 		CVE-2026-7819 2026-05-28 14:38 2026-05-11 Show GitHub Exploit DB Packet Storm
3746 6.5 警告
Network 		pgAdmin Project pgAdmin 4 pgAdmin ProjectのpgAdmin 4における過度な認証試行の不適切な制限に関する脆弱性 CWE-307
過度な認証試行の不適切な制限 		CVE-2026-7820 2026-05-28 14:38 2026-05-11 Show GitHub Exploit DB Packet Storm
3747 5.3 警告
Network 		Concrete CMS Concrete CMS Concrete CMSにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-7879 2026-05-28 14:38 2026-05-21 Show GitHub Exploit DB Packet Storm
3748 4.3 警告
Network 		Concrete CMS Concrete CMS Concrete CMSにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-7881 2026-05-28 14:38 2026-05-21 Show GitHub Exploit DB Packet Storm
3749 4.3 警告
Network 		Concrete CMS Concrete CMS Concrete CMSにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2026-7882 2026-05-28 14:38 2026-05-21 Show GitHub Exploit DB Packet Storm
3750 4.3 警告
Network 		Concrete CMS Concrete CMS Concrete CMSにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-7886 2026-05-28 14:38 2026-05-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 27, 2026, 4:35 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
121 5.5 MEDIUM
Local 		deno deno Deno is a JavaScript, TypeScript, and WebAssembly runtime. Prior to 2.7.12, when Deno was run in BYONM mode (nodeModulesDir: "manual"), the module resolver did not validate that a package's resolved … New CWE-22
Path Traversal 		CVE-2026-49406 2026-06-27 02:29 2026-06-24 Show GitHub Exploit DB Packet Storm
122 6.5 MEDIUM
Local 		deno deno Deno is a JavaScript, TypeScript, and WebAssembly runtime. Prior to 2.8.0, the Node.js compatibility TCP path checked the permission against the original hostname string before resolution and then di… New CWE-284
NVD-CWE-noinfo
Improper Access Control 		CVE-2026-49411 2026-06-27 02:27 2026-06-24 Show GitHub Exploit DB Packet Storm
123 7.2 HIGH
Network 		- - A privilege escalation vulnerability exists in LXD from 6.0 before 6.9, 5.21.0 before 5.21.5, and 5.0.0 before 5.0.7 regarding the handling of project-restriction policies during snapshot restoration… New CWE-863
 Incorrect Authorization 		CVE-2026-9640 2026-06-27 02:16 2026-06-27 Show GitHub Exploit DB Packet Storm
124 6.5 MEDIUM
Network 		- - Nil-pointer dereference in CreateCustomVolumeFromBackup in LXD up to version 6.8 and 5.21 on Linux allows an authenticated user with can_create_storage_volumes permissions to cause a denial of servic… New CWE-476
 NULL Pointer Dereference 		CVE-2026-9639 2026-06-27 02:16 2026-06-27 Show GitHub Exploit DB Packet Storm
125 9.8 CRITICAL
Network 		- - An unauthenticated stack-based buffer overflow vulnerability exists in vlsvr in GeoVision GV-LPC2011 and GV-LPC2211 V1.12 and earlier. The vulnerability is caused by insufficient length validation wh… New CWE-121
Stack-based Buffer Overflow 		CVE-2026-57881 2026-06-27 02:16 2026-06-26 Show GitHub Exploit DB Packet Storm
126 9.8 CRITICAL
Network 		- - An unauthenticated stack-based buffer overflow vulnerability exists in ssvr in GeoVision GV-LPC2011 and GV-LPC2211 V1.12 and earlier. The vulnerability is caused by insufficient bounds checking when … New CWE-121
Stack-based Buffer Overflow 		CVE-2026-57879 2026-06-27 02:16 2026-06-26 Show GitHub Exploit DB Packet Storm
127 8.5 HIGH
Network 		- - Contributor SQL Injection in Contest Gallery <= 30.0.0 versions. New CWE-89
SQL Injection 		CVE-2026-57662 2026-06-27 02:16 2026-06-27 Show GitHub Exploit DB Packet Storm
128 5.9 MEDIUM
Network 		- - Author Cross Site Scripting (XSS) in Hester Core <= 1.1.8 versions. New CWE-79
Cross-site Scripting 		CVE-2026-57656 2026-06-27 02:16 2026-06-27 Show GitHub Exploit DB Packet Storm
129 6.5 MEDIUM
Network 		- - Contributor Cross Site Scripting (XSS) in Magazine Blocks <= 1.8.3 versions. New CWE-79
Cross-site Scripting 		CVE-2026-57650 2026-06-27 02:16 2026-06-27 Show GitHub Exploit DB Packet Storm
130 8.5 HIGH
Network 		- - Contributor SQL Injection in Restaurant Menu by MotoPress <= 2.4.10 versions. New CWE-89
SQL Injection 		CVE-2026-57644 2026-06-27 02:16 2026-06-27 Show GitHub Exploit DB Packet Storm