Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 30, 2026, 12:08 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
131251 6.7 警告
Local 		- Dell PowerScale OneFS における OS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2021-21527 2022-01-12 17:49 2021-05-3 Show GitHub Exploit DB Packet Storm
131252 7.8 重要
Local 		Foxit Software Inc Foxit Reader
Foxit PhantomPDF 		Foxit Reader における型の取り違えに関する脆弱性 CWE-843
型の取り違え 		CVE-2021-31461 2022-01-12 17:41 2021-05-6 Show GitHub Exploit DB Packet Storm
131253 7.5 重要
Network 		Nim-lang Nim Nim standard library における証明書検証に関する脆弱性 CWE-295
不正な証明書検証 		CVE-2021-29495 2022-01-12 17:41 2021-05-7 Show GitHub Exploit DB Packet Storm
131254 5.3 警告
Network 		Eventlet
Fedora Project		 Fedora
eventlet 		Eventlet におけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2021-21419 2022-01-12 17:41 2021-05-6 Show GitHub Exploit DB Packet Storm
131255 7.5 重要
Network 		クアルコム APQ8094 ファームウェア
APQ8009 ファームウェア
APQ8074 ファームウェア
MDM8215 ファームウェア
MDM8215M ファームウェア
APQ8084 ファームウェア
AR6003 ファームウェア
APQ8016 ファームウェア
MDM9215… 		複数の Qualcomm 製品における入力確認に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2020-11268 2022-01-12 17:41 2020-11-2 Show GitHub Exploit DB Packet Storm
131256 6.1 警告
Network 		Drupal Drupal Drupal Core におけるオープンリダイレクトの脆弱性 CWE-601
オープンリダイレクト 		CVE-2020-13662 2022-01-12 16:59 2020-05-20 Show GitHub Exploit DB Packet Storm
131257 10 緊急
Network 		Shane Bishop EWWW Image Optimizer Wordpress 用 EWWW Image Optimizer における脆弱性 CWE-noinfo
情報不足 		CVE-2016-20010 2022-01-12 16:59 2016-06-9 Show GitHub Exploit DB Packet Storm
131258 6.5 警告
Network 		Centreon Centreon Web Centreon Web における不適切なデフォルトパーミッションに関する脆弱性 CWE-276
不適切なデフォルトパーミッション 		CVE-2021-26804 2022-01-12 16:59 2021-05-4 Show GitHub Exploit DB Packet Storm
131259 7.2 重要
Network 		アルバネットワークス株式会社 AirWave Aruba AirWave Management Platform における信頼できないデータのデシリアライゼーションに関する脆弱性 CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2021-25152 2022-01-12 16:59 2021-04-20 Show GitHub Exploit DB Packet Storm
131260 8.8 重要
Network 		Synology Inc. Antivirus Essential Synology Antivirus Essential における別領域リソースに対する外部からの制御可能な参照に関する脆弱性 CWE-610
別領域リソースに対する外部からの制御可能な参照 		CVE-2021-27648 2022-01-12 16:59 2021-04-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 30, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
301 7.2 HIGH
Network 		- - A vulnerability exists in H.View IP cameras that could allow an authenticated user to supply unsanitized XML fields to the device's certificate generation interface, which are incorporated into a bac… New CWE-78
OS Command  		CVE-2026-55975 2026-06-30 00:16 2026-06-27 Show GitHub Exploit DB Packet Storm
302 7.5 HIGH
Network 		- - Home Assistant is open source home automation software that puts local control and privacy first. Prior to 2025.5.0, The iOS companion app ignores the SSID allowlist for internal networks. The app us… New CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2026-55844 2026-06-30 00:16 2026-06-30 Show GitHub Exploit DB Packet Storm
303 7.1 HIGH
Local 		- - acl before version 2.4.0 contains a symlink traversal vulnerability in the libacl pathname-based functions acl_get_file(), acl_set_file(), acl_extended_file(), and acl_delete_def_file() that allows l… New CWE-59
Link Following 		CVE-2026-54369 2026-06-30 00:16 2026-06-29 Show GitHub Exploit DB Packet Storm
304 - - - GNU gzip contains a global buffer overflow vulnerability in the LZH decompression logic caused by improper reuse of shared global state between different decompression formats within a single executi… New CWE-126
 Buffer Over-read 		CVE-2026-41992 2026-06-30 00:16 2026-06-29 Show GitHub Exploit DB Packet Storm
305 - - - GNU gzip contains a vulnerability in the gzexe utility related to insecure temporary file handling. When the mktemp utility is not available in the user’s PATH, gzexe falls back to constructing a tem… New CWE-377
 Insecure Temporary File 		CVE-2026-41991 2026-06-30 00:16 2026-06-29 Show GitHub Exploit DB Packet Storm
306 8.1 HIGH
Network 		- - FrontAccounting before 2.4.20 contains a SQL injection vulnerability in the Audit Trail report handler that allows authenticated attackers with SA_GLANALYTIC permission to execute arbitrary SQL queri… New CWE-89
SQL Injection 		CVE-2026-40523 2026-06-30 00:16 2026-06-29 Show GitHub Exploit DB Packet Storm
307 7.1 HIGH
Network 		- - FrontAccounting before 2.4.20 contains a SQL injection vulnerability in the Bank Statement report handler that allows authenticated attackers to extract arbitrary database data by injecting UNION SEL… New CWE-89
CWE-916
SQL Injection
 Use of Password Hash With Insufficient Computational Effort 		CVE-2026-40522 2026-06-30 00:16 2026-06-29 Show GitHub Exploit DB Packet Storm
308 5.5 MEDIUM
Local 		- - Lansweeper lsrunase 2.0 and lsencrypt 2.0 use RC4 encryption with a hardcoded 142-byte static key array to encrypt credentials. An 8-character prefix is stored in cleartext alongside the ciphertext. … New CWE-321
 Use of Hard-coded Cryptographic Key 		CVE-2026-39031 2026-06-30 00:16 2026-06-27 Show GitHub Exploit DB Packet Storm
309 7.5 HIGH
Network 		- - An issue in the DSO::mmap_and_copy function of relibc commit 61f42d allows attackers to cause a Denial of Service (DoS) via loading a crafted shared library. New CWE-404
 Improper Resource Shutdown or Release 		CVE-2026-38641 2026-06-30 00:16 2026-06-27 Show GitHub Exploit DB Packet Storm
310 7.5 HIGH
Network 		- - An issue in the parse_month function (/time/strptime.rs) of relibc commit ab6a2e allows attackers to cause a Denial of Service (DoS) via parsing a crafted input. New CWE-20
 Improper Input Validation  		CVE-2026-38639 2026-06-30 00:16 2026-06-27 Show GitHub Exploit DB Packet Storm