Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3851	5.4	警告 Network	ベリタス	Veritas InfoScale Operations Manager	ベリタスのVeritas InfoScale Operations Managerにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-44924	2026-05-25 10:26	2026-05-20	Show	GitHub Exploit DB Packet Storm

3852	8.8	重要 Adjacent	ベリタス	Veritas InfoScale Operations Manager	ベリタスのVeritas InfoScale Operations Managerにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2026-44925	2026-05-25 10:26	2026-05-20	Show	GitHub Exploit DB Packet Storm

3853	6.1	警告 Network	SimpleSAMLphp	simplesamlphp-casserver	SimpleSAMLphpのsimplesamlphp-casserverにおけるオープンリダイレクトの脆弱性	CWE-601 オープンリダイレクト	CVE-2025-65954	2026-05-25 10:26	2026-05-18	Show	GitHub Exploit DB Packet Storm

3854	5.3	警告 Network	LupinLin1	JiMeng Web MCP Server	LupinLin1のJiMeng Web MCP Serverにおけるログファイルからの情報漏えいに関する脆弱性	CWE-532 ログファイルからの情報漏えい	CVE-2025-70040	2026-05-25 10:25	2026-03-9	Show	GitHub Exploit DB Packet Storm

3855	5.4	警告 Network	ERLANG	Erlang/ssh Erlang/OTP	ERLANGのErlang/OTP等の複数製品におけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-23942	2026-05-25 10:25	2026-03-13	Show	GitHub Exploit DB Packet Storm

3856	5.3	警告 Network	ERLANG	Erlang/ssh Erlang/OTP	ERLANGのErlang/OTP等の複数製品における高圧縮データの処理 (データ増幅)に関する脆弱性	CWE-409 高圧縮データの不適切な処理 (データ増幅)	CVE-2026-23943	2026-05-25 10:25	2026-03-13	Show	GitHub Exploit DB Packet Storm

3857	7.8	重要 Local	Uderzo Software	SpaceSniffer	Uderzo SoftwareのSpaceSnifferにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-121 スタックオーバーフロー	CVE-2026-26738	2026-05-25 10:25	2026-03-10	Show	GitHub Exploit DB Packet Storm

3858	9.8	緊急 Network	zlib	zlib	Ruby-lang.orgのZlibにおける複数の脆弱性	CWE-120 CWE-131	CVE-2026-27820	2026-05-25 10:25	2026-04-16	Show	GitHub Exploit DB Packet Storm

3859	7.8	重要 Local	Louis Pilfold	Gleam	Louis PilfoldのGleamにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-32146	2026-05-25 10:25	2026-04-11	Show	GitHub Exploit DB Packet Storm

3860	4.3	警告 Network	ERLANG	Erlang/ssh Erlang/OTP	ERLANGのErlang/OTP等の複数製品におけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-32147	2026-05-25 10:25	2026-04-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 27, 2026, 4:35 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
41	6.5	MEDIUM Network	-	-	Contributor Cross Site Scripting (XSS) in Ghost Kit <= 3.6.0 versions. New	CWE-79 Cross-site Scripting	CVE-2026-57651	2026-06-27 03:17	2026-06-27	Show	GitHub Exploit DB Packet Storm

42	8.1	HIGH Network	-	-	newsletters_subscribers Broken Access Control in Newsletters <= 4.13 versions. New	CWE-862 Missing Authorization	CVE-2026-57645	2026-06-27 03:17	2026-06-27	Show	GitHub Exploit DB Packet Storm

43	6.5	MEDIUM Network	-	-	Contributor Cross Site Scripting (XSS) in Fluent Booking <= 2.1.0 versions. New	CWE-79 Cross-site Scripting	CVE-2026-57638	2026-06-27 03:17	2026-06-27	Show	GitHub Exploit DB Packet Storm

44	5.4	MEDIUM Network	-	-	Subscriber Broken Access Control in Email Marketing for WooCommerce by Omnisend <= 1.19.0 versions. New	CWE-862 Missing Authorization	CVE-2026-57632	2026-06-27 03:17	2026-06-27	Show	GitHub Exploit DB Packet Storm

45	7.6	HIGH Network	-	-	Administrator SQL Injection in Popup box <= 6.0.1 versions. New	CWE-89 SQL Injection	CVE-2026-57631	2026-06-27 03:17	2026-06-27	Show	GitHub Exploit DB Packet Storm

46	4.3	MEDIUM Network	-	-	Subscriber Broken Access Control in WPCafe <= 3.0.14 versions. New	CWE-862 Missing Authorization	CVE-2026-57622	2026-06-27 03:17	2026-06-27	Show	GitHub Exploit DB Packet Storm

47	6.5	MEDIUM Network	-	-	Contributor Cross Site Scripting (XSS) in Neve PRO <= 3.1.2 versions. New	CWE-79 Cross-site Scripting	CVE-2026-57618	2026-06-27 03:17	2026-06-27	Show	GitHub Exploit DB Packet Storm

48	6.5	MEDIUM Network	-	-	Unauthenticated Broken Access Control in GIFT4U <= 1.0.10 versions. New	CWE-862 Missing Authorization	CVE-2026-57324	2026-06-27 03:17	2026-06-27	Show	GitHub Exploit DB Packet Storm

49	5.8	MEDIUM Network	-	-	Unauthenticated Broken Access Control in Flash & HTML5 Video <= 2.11.0 versions. New	CWE-862 Missing Authorization	CVE-2026-57323	2026-06-27 03:17	2026-06-27	Show	GitHub Exploit DB Packet Storm

50	7.1	HIGH Network	-	-	Unauthenticated Cross Site Scripting (XSS) in Simply Schedule Appointments <= 1.6.12.2 versions. New	CWE-79 Cross-site Scripting	CVE-2026-57317	2026-06-27 03:17	2026-06-27	Show	GitHub Exploit DB Packet Storm