Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 28, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3851	5.4	警告 Network	ベリタス	Veritas InfoScale Operations Manager	ベリタスのVeritas InfoScale Operations Managerにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-44924	2026-05-25 10:26	2026-05-20	Show	GitHub Exploit DB Packet Storm

3852	8.8	重要 Adjacent	ベリタス	Veritas InfoScale Operations Manager	ベリタスのVeritas InfoScale Operations Managerにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2026-44925	2026-05-25 10:26	2026-05-20	Show	GitHub Exploit DB Packet Storm

3853	6.1	警告 Network	SimpleSAMLphp	simplesamlphp-casserver	SimpleSAMLphpのsimplesamlphp-casserverにおけるオープンリダイレクトの脆弱性	CWE-601 オープンリダイレクト	CVE-2025-65954	2026-05-25 10:26	2026-05-18	Show	GitHub Exploit DB Packet Storm

3854	5.3	警告 Network	LupinLin1	JiMeng Web MCP Server	LupinLin1のJiMeng Web MCP Serverにおけるログファイルからの情報漏えいに関する脆弱性	CWE-532 ログファイルからの情報漏えい	CVE-2025-70040	2026-05-25 10:25	2026-03-9	Show	GitHub Exploit DB Packet Storm

3855	5.4	警告 Network	ERLANG	Erlang/ssh Erlang/OTP	ERLANGのErlang/OTP等の複数製品におけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-23942	2026-05-25 10:25	2026-03-13	Show	GitHub Exploit DB Packet Storm

3856	5.3	警告 Network	ERLANG	Erlang/ssh Erlang/OTP	ERLANGのErlang/OTP等の複数製品における高圧縮データの処理 (データ増幅)に関する脆弱性	CWE-409 高圧縮データの不適切な処理 (データ増幅)	CVE-2026-23943	2026-05-25 10:25	2026-03-13	Show	GitHub Exploit DB Packet Storm

3857	7.8	重要 Local	Uderzo Software	SpaceSniffer	Uderzo SoftwareのSpaceSnifferにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-121 スタックオーバーフロー	CVE-2026-26738	2026-05-25 10:25	2026-03-10	Show	GitHub Exploit DB Packet Storm

3858	9.8	緊急 Network	zlib	zlib	Ruby-lang.orgのZlibにおける複数の脆弱性	CWE-120 CWE-131	CVE-2026-27820	2026-05-25 10:25	2026-04-16	Show	GitHub Exploit DB Packet Storm

3859	7.8	重要 Local	Louis Pilfold	Gleam	Louis PilfoldのGleamにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-32146	2026-05-25 10:25	2026-04-11	Show	GitHub Exploit DB Packet Storm

3860	4.3	警告 Network	ERLANG	Erlang/ssh Erlang/OTP	ERLANGのErlang/OTP等の複数製品におけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-32147	2026-05-25 10:25	2026-04-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 28, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
71	7.3	HIGH Network	-	-	Unauthenticated Broken Access Control in Newsletters <= 4.13 versions. New	CWE-862 Missing Authorization	CVE-2026-54840	2026-06-27 03:17	2026-06-27	Show	GitHub Exploit DB Packet Storm

72	7.5	HIGH Network	-	-	Unauthenticated Sensitive Data Exposure in Trinity Backup – Backup, Migrate, Restore, Clone & Schedule Backups <= 2.0.9 versions. New	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2026-54839	2026-06-27 03:17	2026-06-27	Show	GitHub Exploit DB Packet Storm

73	7.5	HIGH Network	-	-	Unauthenticated Broken Access Control in Gutenverse Companion <= 2.5.0 versions. New	CWE-862 Missing Authorization	CVE-2026-54832	2026-06-27 03:17	2026-06-27	Show	GitHub Exploit DB Packet Storm

74	9.3	CRITICAL Network	-	-	Unauthenticated SQL Injection in GeoDirectory <= 2.8.162 versions. New	CWE-89 SQL Injection	CVE-2026-54831	2026-06-27 03:17	2026-06-27	Show	GitHub Exploit DB Packet Storm

75	9.3	CRITICAL Network	-	-	Unauthenticated SQL Injection in JetBooking <= 4.0.4.1 versions. New	CWE-89 SQL Injection	CVE-2026-54820	2026-06-27 03:17	2026-06-27	Show	GitHub Exploit DB Packet Storm

76	5.5	MEDIUM Local	-	-	mise manages dev tools like node, python, cmake, and terraform. Prior to 2026.6.1, the mise HTTP backend builds its install symlink destination from the raw resolved version string for non-latest ver… New	CWE-22 Path Traversal	CVE-2026-54557	2026-06-27 03:17	2026-06-27	Show	GitHub Exploit DB Packet Storm

77	7.5	HIGH Network	-	-	Dragonfly is an in-memory data store built for modern application workloads. Prior to 1.39.0, a crafted RESTORE payload triggers an out-of-bounds read in DragonflyDB's listpack collection loaders, cr… New	CWE-125 Out-of-bounds Read	CVE-2026-54341	2026-06-27 03:17	2026-06-27	Show	GitHub Exploit DB Packet Storm

78	6.5	MEDIUM Network	-	-	Unauthenticated Broken Access Control in User Registration <= 5.2.2 versions. New	CWE-862 Missing Authorization	CVE-2026-52701	2026-06-27 03:17	2026-06-27	Show	GitHub Exploit DB Packet Storm

79	7.5	HIGH Network	-	-	Envoy is an open source edge and service proxy designed for cloud-native applications. Prior to 1.35.11, 1.36.7, 1.37.3, and 1.38.1, Envoy can translate a downstream HTTP/3 request that is complete a… New	CWE-444 HTTP Request Smuggling	CVE-2026-48743	2026-06-27 03:17	2026-06-27	Show	GitHub Exploit DB Packet Storm

80	5.9	MEDIUM Network	-	-	Envoy is an open source edge and service proxy designed for cloud-native applications. From 1.34.0 until 1.35.13, 1.36.9, 1.37.5, and 1.38.3, a vulnerability exists in Envoy's TCP StatsD sink (TcpSta… New	CWE-120 Classic Buffer Overflow	CVE-2026-48706	2026-06-27 03:17	2026-06-27	Show	GitHub Exploit DB Packet Storm