Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 29, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
101	7.1	重要 Adjacent	Zephyr Project	Zephyr	Zephyr ProjectのZephyrにおける解放済みメモリの使用に関する脆弱性 New	CWE-416 解放済みメモリの使用	CVE-2026-10640	2026-06-29 11:21	2026-06-16	Show	GitHub Exploit DB Packet Storm

102	7.1	重要 Adjacent	Zephyr Project	Zephyr	Zephyr ProjectのZephyrにおける境界外書き込みに関する脆弱性 New	CWE-787 境界外書き込み	CVE-2026-10641	2026-06-29 11:21	2026-06-17	Show	GitHub Exploit DB Packet Storm

103	6.1	警告 Network	GitLab.org	GitLab	GitLab.orgのGitLabにおけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-10712	2026-06-29 11:21	2026-06-25	Show	GitHub Exploit DB Packet Storm

104	5.3	警告 Network	GitLab.org	GitLab	GitLab.orgのGitLabにおける不正な認証に関する脆弱性 New	CWE-863 不正な認証	CVE-2026-11379	2026-06-29 11:21	2026-06-25	Show	GitHub Exploit DB Packet Storm

105	5	警告 Network	レッドハット	Red Hat Directory Server 389 Directory Server Red Hat Enterprise Linux	レッドハットの389 Directory Server等の複数製品における解放済みメモリの使用に関する脆弱性 New	CWE-416 解放済みメモリの使用	CVE-2026-11791	2026-06-29 11:21	2026-06-18	Show	GitHub Exploit DB Packet Storm

106	7.5	重要 Network	GitLab.org	GitLab	GitLab.orgのGitLabにおけるログファイルからの情報漏えいに関する脆弱性 New	CWE-532 ログファイルからの情報漏えい	CVE-2026-12053	2026-06-29 11:21	2026-06-25	Show	GitHub Exploit DB Packet Storm

107	9.8	緊急 Network	PTC Inc.	Windchill PDMLink FlexPLM	PTC Inc.のFlexPLM等の複数製品における複数の脆弱性 New	CWE-20 CWE-502	CVE-2026-12569	2026-06-29 11:21	2026-06-18	Show	GitHub Exploit DB Packet Storm

108	9.1	緊急 Network	IBM	IBM Storage Protect	IBMのIBM Storage Protectにおけるハードコードされた認証情報の使用に関する脆弱性 New	CWE-798 ハードコードされた認証情報の使用	CVE-2026-12628	2026-06-29 11:21	2026-06-22	Show	GitHub Exploit DB Packet Storm

109	3.1	低 Network	GitLab.org	GitLab	GitLab.orgのGitLabにおけるセキュリティ上重要なアクションのための逆引き DNS への依存に関する脆弱性 New	CWE-350 セキュリティ上重要なアクションのための逆引き DNS への依存	CVE-2026-12635	2026-06-29 11:21	2026-06-25	Show	GitHub Exploit DB Packet Storm

110	7.8	重要 Local	langflow	langflow	langflowにおける複数の脆弱性 New	CWE-74 CWE-94	CVE-2026-12822	2026-06-29 11:20	2026-06-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 30, 2026, 4:22 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
254241	4.8	MEDIUM Network	domainmod	domainmod	DomainMOD version 4.09.03 and above. Also verified in the latest version 4.11.01 contains a Cross Site Scripting (XSS) vulnerability in Segment Name field in the segments page that can result in Arbi…	CWE-79 Cross-site Scripting	CVE-2018-1000856	2024-11-21 12:40	2018-12-21	Show	GitHub Exploit DB Packet Storm

254242	6.1	MEDIUM Network	basecamp	easymon	easymon version 1.4 and earlier contains a Cross Site Scripting (XSS) vulnerability in Endpoint where monitoring is mounted that can result in Reflected XSS that affects Firefox. Can be used to steal…	CWE-79 Cross-site Scripting	CVE-2018-1000855	2024-11-21 12:40	2018-12-21	Show	GitHub Exploit DB Packet Storm

254243	9.8	CRITICAL Network	esigate	esigate	esigate.org esigate version 5.2 and earlier contains a CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') vulnerability in ESI directive with u…	CWE-74 Injection	CVE-2018-1000854	2024-11-21 12:40	2018-12-21	Show	GitHub Exploit DB Packet Storm

254244	6.5	MEDIUM Network	freerdp canonical fedoraproject	freerdp ubuntu_linux fedora	FreeRDP FreeRDP 2.0.0-rc3 released version before commit 205c612820dac644d665b5bb1cdf437dc5ca01e3 contains a Other/Unknown vulnerability in channels/drdynvc/client/drdynvc_main.c, drdynvc_process_cap…	CWE-125 Out-of-bounds Read	CVE-2018-1000852	2024-11-21 12:40	2018-12-21	Show	GitHub Exploit DB Packet Storm

254245	9.8	CRITICAL Network	copay	copay_bitcoin_wallet	Copay Bitcoin Wallet version 5.01 to 5.1.0 included. contains a Other/Unknown vulnerability in wallet private key storage that can result in Users' private key can be compromised. . This attack appea…	CWE-522 Insufficiently Protected Credentials	CVE-2018-1000851	2024-11-21 12:40	2018-12-21	Show	GitHub Exploit DB Packet Storm

254246	7.5	HIGH Network	squareup	retrofit	Square Retrofit version versions from (including) 2.0 and 2.5.0 (excluding) contains a Directory Traversal vulnerability in RequestBuilder class, method addPathParameter that can result in By manipul…	CWE-22 Path Traversal	CVE-2018-1000850	2024-11-21 12:40	2018-12-21	Show	GitHub Exploit DB Packet Storm

254247	8.8	HIGH Network	alpinelinux	alpine_linux	Alpine Linux version Versions prior to 2.6.10, 2.7.6, and 2.10.1 contains a Other/Unknown vulnerability in apk-tools (Alpine Linux' package manager) that can result in Remote Code Execution. This att…	CWE-20 Improper Input Validation	CVE-2018-1000849	2024-11-21 12:40	2018-12-21	Show	GitHub Exploit DB Packet Storm

254248	6.1	MEDIUM Network	wampserver	wampserver	Wampserver version prior to version 3.1.5 contains a Cross Site Scripting (XSS) vulnerability in index.php localhost page that can result in very low. This attack appear to be exploitable via payload…	CWE-79 Cross-site Scripting	CVE-2018-1000848	2024-11-21 12:40	2018-12-21	Show	GitHub Exploit DB Packet Storm

254249	5.4	MEDIUM Network	freshdns_project	freshdns	FreshDNS version 1.0.3 and prior contains a Cross Site Scripting (XSS) vulnerability in Account data form; Zone editor that can result in Execution of attacker's JavaScript code in victim's session. …	CWE-79 Cross-site Scripting	CVE-2018-1000847	2024-11-21 12:40	2018-12-21	Show	GitHub Exploit DB Packet Storm

254250	8.8	HIGH Network	freshdns_project	freshdns	FreshDNS version 1.0.3 and earlier contains a Cross ite Request Forgery (CSRF) vulnerability in All (authenticated) API calls in index.php / class.manager.php that can result in Editing domains and z…	CWE-352 Origin Validation Error	CVE-2018-1000846	2024-11-21 12:40	2018-12-21	Show	GitHub Exploit DB Packet Storm