Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 29, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
6991	9.8	緊急 Network	Martin (Fosowl)	AgenticSeek	Martin (Fosowl)のAgenticSeekにおける複数の脆弱性	CWE-74 CWE-94	CVE-2026-5584	2026-05-7 12:27	2026-04-5	Show	GitHub Exploit DB Packet Storm

6992	7.5	重要 Network	Tencent	AI-Infra-Guard	TencentのAI-Infra-Guardにおける複数の脆弱性	CWE-200 CWE-284 CWE-noinfo	CVE-2026-5585	2026-05-7 12:27	2026-04-5	Show	GitHub Exploit DB Packet Storm

6993	3.7	低 Network	Simon Tatham	PuTTY	PuTTYにおける複数の脆弱性	CWE-345 CWE-347	CVE-2026-4115	2026-05-7 12:27	2026-03-22	Show	GitHub Exploit DB Packet Storm

6994	9.8	緊急 Network	cPanel	cPanel WP Squared cPanel WHM	cPanelのcPanel等の複数製品における重要な機能に対する認証の欠如に関する脆弱性	CWE-306 重要な機能に対する認証の欠如解説	CVE-2026-41940	2026-05-7 12:27	2026-04-29	Show	GitHub Exploit DB Packet Storm

6995	9.8	緊急 Network	Provectus	UI for Apache Kafka	ProvectusのUI for Apache Kafkaにおける複数の脆弱性	CWE-74 CWE-94	CVE-2026-5562	2026-05-7 12:27	2026-04-5	Show	GitHub Exploit DB Packet Storm

6996	6.1	警告 Network	WSO2	WSO2 Identity Server	WSO2のWSO2 Identity Serverにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2025-10503	2026-05-7 12:07	2026-04-29	Show	GitHub Exploit DB Packet Storm

6997	5.3	警告 Network	MCPHub	MCPHub	MCPHubにおけるユーザ制御の鍵による認証回避に関する脆弱性	CWE-639 ユーザ制御の鍵による認証回避	CVE-2025-13822	2026-05-7 12:07	2026-04-14	Show	GitHub Exploit DB Packet Storm

6998	5.3	警告 Network	IBM	IBM DB2	IBMのIBM DB2における入力で指定された数量の不適切な検証に関する脆弱性	CWE-1284 入力で指定された数量の不適切な検証	CVE-2025-14688	2026-05-7 12:07	2026-04-30	Show	GitHub Exploit DB Packet Storm

6999	6.5	警告 Network	IBM	IBM DB2	IBMのIBM DB2における制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2025-36122	2026-05-7 12:07	2026-04-30	Show	GitHub Exploit DB Packet Storm

7000	5.3	警告 Network	HCL Technologies Limited	HCL AION	HCL Technologies LimitedのHCL AIONにおけるエラーメッセージによる情報漏えいに関する脆弱性	CWE-209 エラーメッセージによる情報漏えい	CVE-2025-52641	2026-05-7 12:07	2026-04-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 30, 2026, 4:22 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
321	6.5	MEDIUM Adjacent	-	-	The Zephyr Bluetooth LE Audio Basic Audio Profile (BAP) unicast client mishandles peer-supplied ASE state notifications. In unicast_client_ep_qos_state() (subsys/bluetooth/audio/bap_unicast_client.c)… New	CWE-476 NULL Pointer Dereference	CVE-2026-10593	2026-06-30 00:16	2026-06-28	Show	GitHub Exploit DB Packet Storm

322	2.7	LOW Network	devolutions	devolutions_server	Improper input validation in the PAM AD discovery endpoints in Devolutions Server 2026.2.4.0 through 2026.2.7.0 allows an authenticated user with the UserGroupsView permission to coerce server-side… Update	CWE-1284 Improper Validation of Specified Quantity in Input	CVE-2026-12755	2026-06-30 00:15	2026-06-25	Show	GitHub Exploit DB Packet Storm

323	7.2	HIGH Network	devolutions	remote_desktop_manager	Incorrect link resolution by display name in the custom PowerShell VPN editor in Devolutions Remote Desktop Manager 2026.2.5 through 2026.2.11 allows an authenticated attacker with write access to a … New	CWE-706 Use of Incorrectly-Resolved Name or Reference	CVE-2026-13372	2026-06-29 23:56	2026-06-27	Show	GitHub Exploit DB Packet Storm

324	5.2	MEDIUM Local	deno	deno	Deno is a JavaScript, TypeScript, and WebAssembly runtime. Prior to 2.8.1, when fetch() was called, Deno checked the destination hostname against --deny-net rules but did not re-check the IP addresse… Update	CWE-693 CWE-918 Protection Mechanism Failure Server-Side Request Forgery (SSRF)	CVE-2026-49859	2026-06-29 23:38	2026-06-24	Show	GitHub Exploit DB Packet Storm

325	5.2	MEDIUM Local	deno	deno	Deno is a JavaScript, TypeScript, and WebAssembly runtime. Prior to 2.8.1, when a WebSocket connection was opened, Deno checked the destination hostname against --deny-net rules but did not re-check … Update	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-49860	2026-06-29 23:37	2026-06-24	Show	GitHub Exploit DB Packet Storm

326	4.8	MEDIUM Network	-	-	The Shariff for WordPress Shariff for WordPress plugin through 1.0.11 does not sanitize or escape the shariff_infourl setting before outputting it in the frontend HTML via the generateshariff() funct… New	-	CVE-2026-9677	2026-06-29 23:16	2026-06-27	Show	GitHub Exploit DB Packet Storm

327	4.3	MEDIUM Network	-	-	The F4 Post Tree WordPress plugin before 2.0.5 does not perform capability checks or CSRF/nonce verification on one of its AJAX actions, allowing authenticated users with Subscriber-level access and … New	-	CVE-2026-9676	2026-06-29 23:16	2026-06-29	Show	GitHub Exploit DB Packet Storm

328	5.0	MEDIUM Network	-	-	Flowise before 3.1.3 validates Custom MCP stdio environment variables against a denylist using a case-sensitive comparison, so on Windows, where environment names are case-insensitive, supplying 'nod… New	CWE-178 Improper Handling of Case Sensitivity	CVE-2026-58057	2026-06-29 23:16	2026-06-28	Show	GitHub Exploit DB Packet Storm

329	7.6	HIGH Network	-	-	RustDesk gates incoming control messages on per-capability flags rather than on the session's authorized connection type, and a file-transfer session does not clear those flags. A peer holding only a… New	CWE-863 Incorrect Authorization	CVE-2026-58056	2026-06-29 23:16	2026-06-28	Show	GitHub Exploit DB Packet Storm

330	7.2	HIGH Network	-	-	MyBB 1.8.40 does not restrict which usergroup a limited Admin Control Panel user may assign when creating or editing users; the user module offers the Administrators group (gid 4) and its datahandler… New	CWE-269 Improper Privilege Management	CVE-2026-58054	2026-06-29 23:16	2026-06-28	Show	GitHub Exploit DB Packet Storm