Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 27, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
121 8.8 重要
Network 		vLLM vLLM vLLMにおける制御されていない検索パスの要素に関する脆弱性 New CWE-427
制御されていない検索パスの要素 		CVE-2026-54232 2026-06-26 11:55 2026-06-22 Show GitHub Exploit DB Packet Storm
122 6.5 警告
Network 		vLLM vLLM vLLMにおける高圧縮データの処理 (データ増幅)に関する脆弱性 New CWE-409
高圧縮データの不適切な処理 (データ増幅) 		CVE-2026-54233 2026-06-26 11:55 2026-06-22 Show GitHub Exploit DB Packet Storm
123 6.5 警告
Network 		vLLM vLLM vLLMにおける指定されたタイプの入力に対する不適切な検証に関する脆弱性 New CWE-1287
指定されたタイプの入力に対する不適切な検証 		CVE-2026-54235 2026-06-26 11:55 2026-06-22 Show GitHub Exploit DB Packet Storm
124 5.3 警告
Network 		vLLM vLLM vLLMにおけるログファイルからの情報漏えいに関する脆弱性 New CWE-532
ログファイルからの情報漏えい 		CVE-2026-54236 2026-06-26 11:55 2026-06-22 Show GitHub Exploit DB Packet Storm
125 5.3 警告
Network 		protobufjs project protobufjs-cli
protobufjs 		protobufjs projectのprotobufjs-cli等の複数製品における複数の脆弱性 New CWE-674
CWE-754
CVE-2026-54269 2026-06-26 11:55 2026-06-22 Show GitHub Exploit DB Packet Storm
126 5.3 警告
Network 		protobufjs project protobufjs protobufjs projectのprotobufjsにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 New CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-54270 2026-06-26 11:55 2026-06-22 Show GitHub Exploit DB Packet Storm
127 8.2 重要
Network 		protobufjs project protobufjs-cli protobufjs projectのprotobufjs-cliにおけるコードインジェクションの脆弱性 New CWE-94
コード・インジェクション 		CVE-2026-54271 2026-06-26 11:55 2026-06-22 Show GitHub Exploit DB Packet Storm
128 7.5 重要
Network 		Astro Astro Astroにおける複数の脆弱性 New CWE-20
CWE-918
CVE-2026-54299 2026-06-26 11:54 2026-06-22 Show GitHub Exploit DB Packet Storm
129 5.4 警告
Network 		n8n n8n n8nにおけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-54303 2026-06-26 11:54 2026-06-23 Show GitHub Exploit DB Packet Storm
130 10 緊急
Network 		n8n n8n n8nにおける重要な機能に対する認証の欠如に関する脆弱性 New CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2026-54309 2026-06-26 11:54 2026-06-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 27, 2026, 4:35 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
3961 8.1 HIGH
Network 		- - BuddyPress 14.4.0 contains an insecure direct object reference vulnerability in the messages REST API that allows authenticated attackers to access arbitrary private message threads by supplying a us… CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2026-53673 2026-06-10 09:16 2026-06-10 Show GitHub Exploit DB Packet Storm
3962 6.8 MEDIUM
Network 		- - SubjectDnX509PrincipalExtractor does not correctly handle certain malformed X.509 certificate CN values, which can lead to reading the wrong value for the username. In a carefully crafted certificate… CWE-287
Improper Authentication 		CVE-2026-47838 2026-06-10 09:16 2026-06-10 Show GitHub Exploit DB Packet Storm
3963 7.5 HIGH
Network 		- - Nimiq is a Rust implementation of the Nimiq Proof-of-Stake protocol based on the Albatross consensus algorithm. Prior to version 1.5.0, a remote, unauthenticated denial-of-service vulnerability in Me… CWE-248
 Uncaught Exception 		CVE-2026-46545 2026-06-10 09:16 2026-06-10 Show GitHub Exploit DB Packet Storm
3964 5.3 MEDIUM
Network 		- - Nimiq is a Rust implementation of the Nimiq Proof-of-Stake protocol based on the Albatross consensus algorithm. Prior to version 1.5.0, a remote peer can crash any full node by sending a RequestBatch… CWE-617
 Reachable Assertion 		CVE-2026-46543 2026-06-10 09:16 2026-06-10 Show GitHub Exploit DB Packet Storm
3965 4.3 MEDIUM
Network 		- - Nimiq is a Rust implementation of the Nimiq Proof-of-Stake protocol based on the Albatross consensus algorithm. Prior to version 1.4.0, a denial-of-service vulnerability exists in the Ed25519 multisi… CWE-617
 Reachable Assertion 		CVE-2026-46542 2026-06-10 09:16 2026-06-10 Show GitHub Exploit DB Packet Storm
3966 7.5 HIGH
Network 		- - Nimiq is a Rust implementation of the Nimiq Proof-of-Stake protocol based on the Albatross consensus algorithm. Prior to version 1.4.0, iIn handle_dht_get(), the DhtResults accumulator is only initia… CWE-754
 Improper Check for Unusual or Exceptional Conditions 		CVE-2026-46541 2026-06-10 09:16 2026-06-10 Show GitHub Exploit DB Packet Storm
3967 6.5 MEDIUM
Network 		- - Nimiq is a Rust implementation of the Nimiq Proof-of-Stake protocol based on the Albatross consensus algorithm. Prior to version 1.4.0, when LightBlockchain::rebranch() adopts a fork chain whose tip … CWE-841
 Improper Enforcement of Behavioral Workflow 		CVE-2026-46540 2026-06-10 09:16 2026-06-10 Show GitHub Exploit DB Packet Storm
3968 5.9 MEDIUM
Network 		- - Nimiq is a Rust implementation of the Nimiq Proof-of-Stake protocol based on the Albatross consensus algorithm. Prior to version 1.4.0, a logic flaw in BlockInclusionProof::is_block_proven causes the… CWE-345
 Insufficient Verification of Data Authenticity 		CVE-2026-46539 2026-06-10 09:16 2026-06-10 Show GitHub Exploit DB Packet Storm
3969 8.6 HIGH
Network 		- - SimpleSAMLphp-casserver is a CAS 1.0 and 2.0 compliant CAS server in the form of a SimpleSAMLphp module. Prior to version 7.0.3, simplesamlphp-module-casserver builds file paths for the file-based CA… CWE-22
Path Traversal 		CVE-2026-46491 2026-06-10 09:16 2026-06-10 Show GitHub Exploit DB Packet Storm
3970 6.5 MEDIUM
Network 		- - FlashMQ is a MQTT broker/server, designed for multi-CPU environments. Prior to version 1.26.2, authorized clients have the ability to exceed the permitted over-commit of their write buffer and trigge… CWE-248
 Uncaught Exception 		CVE-2026-46411 2026-06-10 09:16 2026-06-10 Show GitHub Exploit DB Packet Storm