Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 29, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
131431 6.5 警告
Network 		IBM IBM Robotic Process Automation with Automation Anywhere IBM Robotic Process Automation with Automation Anywhere における脆弱性 CWE-noinfo
情報不足 		CVE-2020-4901 2022-01-5 11:57 2021-04-23 Show GitHub Exploit DB Packet Storm
131432 8.8 重要
Network 		SOYAL 701Client Soyal Technology 701Client における権限管理に関する脆弱性 CWE-269
不適切な権限管理 		CVE-2021-28269 2022-01-5 11:22 2021-03-18 Show GitHub Exploit DB Packet Storm
131433 5.5 警告
Local 		GNU Project Guix guix-daemon における権限管理に関する脆弱性 CWE-269
不適切な権限管理 		CVE-2021-27851 2022-01-5 11:08 2021-03-18 Show GitHub Exploit DB Packet Storm
131434 9.8 緊急
Network 		Simple Glasgow Haskell Compiler project Simple Glasgow Haskell Compiler Visual Studio Code 用の非公式な vscode-ghc-simple 拡張機能における脆弱性 CWE-noinfo
情報不足 		CVE-2021-30502 2022-01-5 11:08 2021-04-25 Show GitHub Exploit DB Packet Storm
131435 7.5 重要
Network 		Sentry Software Hardware Sentry KM for BMC PATROL Hardware Sentry KM for BMC PATROL における重要な情報の平文保存に関する脆弱性 CWE-312
重要な情報の平文保存 		CVE-2021-31791 2022-01-5 11:08 2021-04-23 Show GitHub Exploit DB Packet Storm
131436 9.8 緊急
Network 		シマンテック Security Analytics (SA) Symantec Security Analytics における OS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2021-30642 2022-01-5 10:23 2021-04-21 Show GitHub Exploit DB Packet Storm
131437 5.4 警告
Network 		IBM IBM Spectrum Scale IBM Spectrum Scale におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2021-29666 2022-01-5 09:51 2021-04-20 Show GitHub Exploit DB Packet Storm
131438 6.1 警告
Network 		Apache Software Foundation Apache Superset Apache Superset におけるオープンリダイレクトの脆弱性 CWE-601
オープンリダイレクト 		CVE-2021-28125 2022-01-4 18:05 2021-04-27 Show GitHub Exploit DB Packet Storm
131439 7.5 重要
Network 		Apache Software Foundation Apache Ozone Apache Ozone Cluster における認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2020-17517 2022-01-4 18:05 2020-08-12 Show GitHub Exploit DB Packet Storm
131440 7.5 重要
Network 		Shibboleth Shibboleth Service Provider Shibboleth Service Provider における NULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2021-31826 2022-01-4 18:05 2021-04-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 29, 2026, 4:19 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
631 7.1 HIGH
Network 		- - Unauthenticated Cross Site Scripting (XSS) in MapPress Maps for WordPress <= 2.97.3 versions. New CWE-79
Cross-site Scripting 		CVE-2026-56011 2026-06-27 03:17 2026-06-27 Show GitHub Exploit DB Packet Storm
632 7.5 HIGH
Network 		- - Echo is a Go web framework. Prior to 4.15.3 and 5.2.0, Echo's router and static file handler disagree on URL path decoding. The router matches routes using the raw encoded path (preserving %2F as-is)… New CWE-22
Path Traversal 		CVE-2026-55677 2026-06-27 03:17 2026-06-27 Show GitHub Exploit DB Packet Storm
633 8.6 HIGH
Local 		- - mise manages dev tools like node, python, cmake, and terraform. Prior to 2026.6.4, mise's trust feature gates config files (mise.toml, .tool-versions) through trust_check, but task-include files are … New CWE-78
CWE-94
CWE-732
OS Command 
Code Injection
 Incorrect Permission Assignment for Critical Resource 		CVE-2026-55441 2026-06-27 03:17 2026-06-27 Show GitHub Exploit DB Packet Storm
634 7.3 HIGH
Network 		- - Unauthenticated Broken Access Control in Newsletters <= 4.13 versions. New CWE-862
 Missing Authorization 		CVE-2026-54840 2026-06-27 03:17 2026-06-27 Show GitHub Exploit DB Packet Storm
635 7.5 HIGH
Network 		- - Unauthenticated Sensitive Data Exposure in Trinity Backup &#8211; Backup, Migrate, Restore, Clone &amp; Schedule Backups <= 2.0.9 versions. New CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2026-54839 2026-06-27 03:17 2026-06-27 Show GitHub Exploit DB Packet Storm
636 7.5 HIGH
Network 		- - Unauthenticated Broken Access Control in Gutenverse Companion <= 2.5.0 versions. New CWE-862
 Missing Authorization 		CVE-2026-54832 2026-06-27 03:17 2026-06-27 Show GitHub Exploit DB Packet Storm
637 9.3 CRITICAL
Network 		- - Unauthenticated SQL Injection in GeoDirectory <= 2.8.162 versions. New CWE-89
SQL Injection 		CVE-2026-54831 2026-06-27 03:17 2026-06-27 Show GitHub Exploit DB Packet Storm
638 9.3 CRITICAL
Network 		- - Unauthenticated SQL Injection in JetBooking <= 4.0.4.1 versions. New CWE-89
SQL Injection 		CVE-2026-54820 2026-06-27 03:17 2026-06-27 Show GitHub Exploit DB Packet Storm
639 5.5 MEDIUM
Local 		- - mise manages dev tools like node, python, cmake, and terraform. Prior to 2026.6.1, the mise HTTP backend builds its install symlink destination from the raw resolved version string for non-latest ver… New CWE-22
Path Traversal 		CVE-2026-54557 2026-06-27 03:17 2026-06-27 Show GitHub Exploit DB Packet Storm
640 7.5 HIGH
Network 		- - Dragonfly is an in-memory data store built for modern application workloads. Prior to 1.39.0, a crafted RESTORE payload triggers an out-of-bounds read in DragonflyDB's listpack collection loaders, cr… New CWE-125
Out-of-bounds Read 		CVE-2026-54341 2026-06-27 03:17 2026-06-27 Show GitHub Exploit DB Packet Storm