Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 29, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
121 7.5 重要
Network 		Google Google Chrome GoogleのGoogle Chromeにおける解放済みメモリの使用に関する脆弱性 New CWE-416
解放済みメモリの使用 		CVE-2026-13283 2026-06-29 11:20 2026-06-25 Show GitHub Exploit DB Packet Storm
122 7.5 重要
Network 		shell-quote project shell-quote shell-quote projectのshell-quoteにおけるアルゴリズムの複雑さに関する脆弱性 New CWE-407
アルゴリズムの複雑性 		CVE-2026-13311 2026-06-29 11:20 2026-06-25 Show GitHub Exploit DB Packet Storm
123 4.3 警告
Network 		GitLab.org GitLab GitLab.orgのGitLabにおけるコードインジェクションの脆弱性 New CWE-94
コード・インジェクション 		CVE-2026-1606 2026-06-29 11:20 2026-06-25 Show GitHub Exploit DB Packet Storm
124 7.8 重要
Local 		gimp gimp gimpにおけるヒープベースのバッファオーバーフローの脆弱性 New CWE-122
ヒープオーバーフロー 		CVE-2026-2050 2026-06-29 11:20 2026-06-24 Show GitHub Exploit DB Packet Storm
125 5.3 警告
Network 		GitLab.org GitLab GitLab.orgのGitLabにおける認証の欠如に関する脆弱性 New CWE-862
認証の欠如 		CVE-2026-2238 2026-06-29 11:20 2026-06-25 Show GitHub Exploit DB Packet Storm
126 3.1
Network 		GitLab.org GitLab GitLab.orgのGitLabにおける認証の欠如に関する脆弱性 New CWE-862
認証の欠如 		CVE-2026-3176 2026-06-29 11:20 2026-06-25 Show GitHub Exploit DB Packet Storm
127 8.8 重要
Network 		langflow langflow langflowにおけるユーザ制御の鍵による認証回避に関する脆弱性 New CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-33760 2026-06-29 11:20 2026-06-23 Show GitHub Exploit DB Packet Storm
128 9.8 緊急
Network 		デル Dell Wyse Management Suite デルのDell Wyse Management Suiteにおける信頼できるデータ受け入れ時の信頼できない無関係なデータの受け入れに関する脆弱性 New CWE-349
信頼できるデータ受け入れ時の信頼できない無関係なデータの受け入れ 		CVE-2026-41120 2026-06-29 11:20 2026-06-25 Show GitHub Exploit DB Packet Storm
129 5.4 警告
Network 		authlib authlib authlibにおけるオープンリダイレクトの脆弱性 New CWE-601
オープンリダイレクト 		CVE-2026-41479 2026-06-29 11:20 2026-06-22 Show GitHub Exploit DB Packet Storm
130 6.5 警告
Network 		langflow langflow langflowにおけるパストラバーサルの脆弱性 New CWE-22
パス・トラバーサル 		CVE-2026-42867 2026-06-29 11:19 2026-06-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 30, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
190681 5.4 MEDIUM
Network 		ibm security_verify_access IBM Security Verify 10.0.0, 10.0.1.0, and 10.0.2.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended f… CWE-79
Cross-site Scripting 		CVE-2021-38895 2024-11-21 15:18 2022-01-10 Show GitHub Exploit DB Packet Storm
190682 2.7 LOW
Network 		ibm security_verify_access IBM Security Verify 10.0.0, 10.0.1.0, and 10.0.2.0 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information c… CWE-209
Information Exposure Through an Error Message 		CVE-2021-38894 2024-11-21 15:18 2022-01-10 Show GitHub Exploit DB Packet Storm
190683 7.5 HIGH
Network 		ibm powervm_hypervisor IBM PowerVM Hypervisor FW860, FW940, FW950, and FW1010, through a specific sequence of VM management operations could lead to a violation of the isolation between peer VMs. IBM X-Force ID: 210019. NVD-CWE-noinfo
CVE-2021-38918 2024-11-21 15:18 2022-01-6 Show GitHub Exploit DB Packet Storm
190684 7.1 HIGH
Local 		linuxfoundation spinnaker Spinnaker is an open source, multi-cloud continuous delivery platform. A path traversal vulnerability was discovered in uses of TAR files by AppEngine for deployments. This uses a utility to extract … CWE-22
Path Traversal 		CVE-2021-39143 2024-11-21 15:18 2022-01-5 Show GitHub Exploit DB Packet Storm
190685 6.1 MEDIUM
Network 		ibm i IBM i 7.2, 7.3, and 7.4 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially le… CWE-79
Cross-site Scripting 		CVE-2021-38876 2024-11-21 15:18 2021-12-31 Show GitHub Exploit DB Packet Storm
190686 6.1 MEDIUM
Network 		ibm power_system_ac922_\(8335-gtg\)_firmware
power_system_ac922_\(8335-gtc\)_firmware
power_system_ac922_\(8335-gtw\)_firmware 		IBM OPENBMC OP910 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading … CWE-79
Cross-site Scripting 		CVE-2021-38961 2024-11-21 15:18 2021-12-28 Show GitHub Exploit DB Packet Storm
190687 6.5 MEDIUM
Network 		ibm cloud_pak_for_security IBM Cloud Pak for Security (CP4S) 1.7.2.0, 1.7.1.0, and 1.7.0.0 could allow an authenticated user to obtain sensitive information in HTTP responses that could be used in further attacks against the s… CWE-200
Information Exposure 		CVE-2021-39013 2024-11-21 15:18 2021-12-23 Show GitHub Exploit DB Packet Storm
190688 5.4 MEDIUM
Network 		ibm workflow_process_service
cloud_pak_for_automation 		IBM Cloud Pak for Automation 21.0.2 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality po… CWE-79
Cross-site Scripting 		CVE-2021-38966 2024-11-21 15:18 2021-12-22 Show GitHub Exploit DB Packet Storm
190689 6.5 MEDIUM
Network 		ibm business_process_manager
business_automation_workflow
workflow_process_service 		IBM Business Process Manager 8.5 and 8.6 and IBM Business Automation Workflow 18.0, 19.0, 20.0 and 21.0 could allow a privileged user to obtain highly sensitive information due to improper access con… NVD-CWE-Other
CVE-2021-38900 2024-11-21 15:18 2021-12-22 Show GitHub Exploit DB Packet Storm
190690 5.4 MEDIUM
Network 		ibm business_process_manager
business_automation_workflow
workflow_process_service 		IBM Business Process Manager 8.5 and 8.6 and IBM Business Automation Workflow 18.0, 19.0, 20.0 and 21.0 are vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitra… CWE-79
Cross-site Scripting 		CVE-2021-38893 2024-11-21 15:18 2021-12-22 Show GitHub Exploit DB Packet Storm