Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 26, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
121 8.8 重要
Network 		vLLM vLLM vLLMにおける制御されていない検索パスの要素に関する脆弱性 New CWE-427
制御されていない検索パスの要素 		CVE-2026-54232 2026-06-26 11:55 2026-06-22 Show GitHub Exploit DB Packet Storm
122 6.5 警告
Network 		vLLM vLLM vLLMにおける高圧縮データの処理 (データ増幅)に関する脆弱性 New CWE-409
高圧縮データの不適切な処理 (データ増幅) 		CVE-2026-54233 2026-06-26 11:55 2026-06-22 Show GitHub Exploit DB Packet Storm
123 6.5 警告
Network 		vLLM vLLM vLLMにおける指定されたタイプの入力に対する不適切な検証に関する脆弱性 New CWE-1287
指定されたタイプの入力に対する不適切な検証 		CVE-2026-54235 2026-06-26 11:55 2026-06-22 Show GitHub Exploit DB Packet Storm
124 5.3 警告
Network 		vLLM vLLM vLLMにおけるログファイルからの情報漏えいに関する脆弱性 New CWE-532
ログファイルからの情報漏えい 		CVE-2026-54236 2026-06-26 11:55 2026-06-22 Show GitHub Exploit DB Packet Storm
125 5.3 警告
Network 		protobufjs project protobufjs-cli
protobufjs 		protobufjs projectのprotobufjs-cli等の複数製品における複数の脆弱性 New CWE-674
CWE-754
CVE-2026-54269 2026-06-26 11:55 2026-06-22 Show GitHub Exploit DB Packet Storm
126 5.3 警告
Network 		protobufjs project protobufjs protobufjs projectのprotobufjsにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 New CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-54270 2026-06-26 11:55 2026-06-22 Show GitHub Exploit DB Packet Storm
127 8.2 重要
Network 		protobufjs project protobufjs-cli protobufjs projectのprotobufjs-cliにおけるコードインジェクションの脆弱性 New CWE-94
コード・インジェクション 		CVE-2026-54271 2026-06-26 11:55 2026-06-22 Show GitHub Exploit DB Packet Storm
128 7.5 重要
Network 		Astro Astro Astroにおける複数の脆弱性 New CWE-20
CWE-918
CVE-2026-54299 2026-06-26 11:54 2026-06-22 Show GitHub Exploit DB Packet Storm
129 5.4 警告
Network 		n8n n8n n8nにおけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-54303 2026-06-26 11:54 2026-06-23 Show GitHub Exploit DB Packet Storm
130 10 緊急
Network 		n8n n8n n8nにおける重要な機能に対する認証の欠如に関する脆弱性 New CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2026-54309 2026-06-26 11:54 2026-06-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 26, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
191601 5.5 MEDIUM
Local 		siemens teamcenter_visualization
jt2go 		A vulnerability has been identified in JT2Go (All versions < V13.2.0.1), Teamcenter Visualization (All versions < V13.2.0.1). When parsing specially crafted CGM Files, a NULL pointer deference condit… CWE-476
 NULL Pointer Dereference 		CVE-2021-33717 2024-11-21 15:09 2021-08-10 Show GitHub Exploit DB Packet Storm
191602 5.5 MEDIUM
Local 		f-secure linux_security
client_security
business_suite
elements_endpoint_protection 		A Denial-of-Service (DoS) vulnerability was discovered in F-Secure Atlant whereby the SAVAPI component used in certain F-Secure products can crash while scanning fuzzed files. The exploit can be trig… NVD-CWE-noinfo
CVE-2021-33597 2024-11-21 15:09 2021-08-6 Show GitHub Exploit DB Packet Storm
191603 4.1 MEDIUM
Network 		f-secure safe Showing the legitimate URL in the address bar while loading the content from other domain. This makes the user believe that the content is served by a legit domain. Exploiting the vulnerability requi… CWE-1021
 Improper Restriction of Rendered UI Layers or Frames 		CVE-2021-33596 2024-11-21 15:09 2021-08-6 Show GitHub Exploit DB Packet Storm
191604 9.8 CRITICAL
Network 		mbconnectline mbdialup In MB connect line mbDIALUP versions <= 3.9R0.0 a remote attacker can send a specifically crafted HTTP request to the service running with NT AUTHORITY\SYSTEM that will not correctly validate the inp… - CVE-2021-33527 2024-11-21 15:09 2021-08-2 Show GitHub Exploit DB Packet Storm
191605 7.8 HIGH
Local 		mbconnectline mbdialup In MB connect line mbDIALUP versions <= 3.9R0.0 a low privileged local attacker can send a command to the service running with NT AUTHORITY\SYSTEM instructing it to execute a malicous OpenVPN configu… CWE-269
 Improper Privilege Management 		CVE-2021-33526 2024-11-21 15:09 2021-08-2 Show GitHub Exploit DB Packet Storm
191606 5.3 MEDIUM
Network 		zohocorp manageengine_password_manager_pro Zoho ManageEngine Password Manager Pro before 11.2 11200 allows login/AjaxResponse.jsp?RequestType=GetUserDomainName&userName= username enumeration, because the response (to a failed login request) i… NVD-CWE-noinfo
CVE-2021-33617 2024-11-21 15:09 2021-08-1 Show GitHub Exploit DB Packet Storm
191607 9.8 CRITICAL
Network 		simple_food_website_project simple_food_website A SQL INJECTION vulnerability in Sourcecodester Simple Food Website 1.0 allows a remote attacker to Bypass Authentication and become Admin. CWE-89
SQL Injection 		CVE-2021-34166 2024-11-21 15:09 2021-07-30 Show GitHub Exploit DB Packet Storm
191608 9.8 CRITICAL
Network 		basic_shopping_cart_project basic_shopping_cart A SQL Injection vulnerability in Sourcecodester Basic Shopping Cart 1.0 allows a remote attacker to Bypass Authentication and become Admin. CWE-89
SQL Injection 		CVE-2021-34165 2024-11-21 15:09 2021-07-30 Show GitHub Exploit DB Packet Storm
191609 7.5 HIGH
Network 		openeuler isula-build isula-build before 0.9.5-6 can cause a program crash, when building container images, some functions for processing external data do not remove spaces when processing data. NVD-CWE-Other
CVE-2021-33629 2024-11-21 15:09 2021-07-27 Show GitHub Exploit DB Packet Storm
191610 7.5 HIGH
Network 		apache directory_studio While investigating DIRSTUDIO-1219 it was noticed that configured StartTLS encryption was not applied when any SASL authentication mechanism (DIGEST-MD5, GSSAPI) was used. While investigating DIRSTUD… CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2021-33900 2024-11-21 15:09 2021-07-26 Show GitHub Exploit DB Packet Storm