Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 29, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
131501 9.8 緊急
Network 		Hame Technology Co., Limited Hame SD1 Wi-Fi ファームウェア Hame SD1 Wi-Fi ファームウェアにおける脆弱なパスワードの要求に関する脆弱性 CWE-521
脆弱なパスワードポリシー 		CVE-2021-26797 2022-01-4 12:02 2021-04-22 Show GitHub Exploit DB Packet Storm
131502 9.8 緊急
Network 		safe-flat project safe-flat safe-flat における脆弱性 CWE-Other
その他 		CVE-2021-25927 2022-01-4 12:02 2021-01-24 Show GitHub Exploit DB Packet Storm
131503 6.1 警告
Network 		cPanel cPanel cPanel におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2021-31803 2022-01-4 12:02 2021-03-15 Show GitHub Exploit DB Packet Storm
131504 9.8 緊急
Network 		Akuvox C315 ファームウェア Akuvox C315 におけるコマンドインジェクションの脆弱性 CWE-77
コマンドインジェクション 		CVE-2021-31726 2022-01-4 12:02 2021-04-24 Show GitHub Exploit DB Packet Storm
131505 7 重要
Local 		pvrsrvkm.ko project pvrsrvkm.ko pvrsrvkm.ko における境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2021-31795 2022-01-4 12:02 2021-03-31 Show GitHub Exploit DB Packet Storm
131506 7.5 重要
Network 		VOID Sistemas Aural Rec Monitor Void Aural Rec Monitor における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2021-25899 2022-01-4 12:02 2021-04-21 Show GitHub Exploit DB Packet Storm
131507 7.5 重要
Network 		VOID Sistemas Aural Rec Monitor Void Aural Rec Monitor における重要な情報の平文保存に関する脆弱性 CWE-312
CWE-798
CVE-2021-25898 2022-01-4 12:02 2021-04-21 Show GitHub Exploit DB Packet Storm
131508 7.8 重要
Local 		SUSE hawk2 複数の SUSE Linux Enterprise High Availability 用 hawk2 におけるアクセスパーミションでの一時ファイル作成に関する脆弱性 CWE-378
不適切なアクセスパーミションでの一時ファイル作成 		CVE-2021-25314 2022-01-4 12:02 2021-02-12 Show GitHub Exploit DB Packet Storm
131509 7.5 重要
Network 		シスコシステムズ Cisco Firepower Threat Defense ソフトウェア
Cisco Adaptive Security Appliance ソフトウェア 		Cisco Adaptive Security Appliance ソフトウェアおよび Cisco Firepower Threat Defense ソフトウェアにおけるセッション期限に関する脆弱性 CWE-613
不適切なセッション期限 		CVE-2021-1501 2022-01-4 12:02 2021-04-28 Show GitHub Exploit DB Packet Storm
131510 5.3 警告
Network 		Snort.org
シスコシステムズ		 Cisco IOS XE
Cisco Firepower Threat Defense ソフトウェア
Snort 		複数の Cisco 製品における例外的な状態の処理に関する脆弱性 CWE-755
例外的な状態における不適切な処理 		CVE-2021-1495 2022-01-4 12:02 2021-04-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 29, 2026, 4:19 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
631 7.1 HIGH
Network 		- - Unauthenticated Cross Site Scripting (XSS) in MapPress Maps for WordPress <= 2.97.3 versions. New CWE-79
Cross-site Scripting 		CVE-2026-56011 2026-06-27 03:17 2026-06-27 Show GitHub Exploit DB Packet Storm
632 7.5 HIGH
Network 		- - Echo is a Go web framework. Prior to 4.15.3 and 5.2.0, Echo's router and static file handler disagree on URL path decoding. The router matches routes using the raw encoded path (preserving %2F as-is)… New CWE-22
Path Traversal 		CVE-2026-55677 2026-06-27 03:17 2026-06-27 Show GitHub Exploit DB Packet Storm
633 8.6 HIGH
Local 		- - mise manages dev tools like node, python, cmake, and terraform. Prior to 2026.6.4, mise's trust feature gates config files (mise.toml, .tool-versions) through trust_check, but task-include files are … New CWE-78
CWE-94
CWE-732
OS Command 
Code Injection
 Incorrect Permission Assignment for Critical Resource 		CVE-2026-55441 2026-06-27 03:17 2026-06-27 Show GitHub Exploit DB Packet Storm
634 7.3 HIGH
Network 		- - Unauthenticated Broken Access Control in Newsletters <= 4.13 versions. New CWE-862
 Missing Authorization 		CVE-2026-54840 2026-06-27 03:17 2026-06-27 Show GitHub Exploit DB Packet Storm
635 7.5 HIGH
Network 		- - Unauthenticated Sensitive Data Exposure in Trinity Backup &#8211; Backup, Migrate, Restore, Clone &amp; Schedule Backups <= 2.0.9 versions. New CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2026-54839 2026-06-27 03:17 2026-06-27 Show GitHub Exploit DB Packet Storm
636 7.5 HIGH
Network 		- - Unauthenticated Broken Access Control in Gutenverse Companion <= 2.5.0 versions. New CWE-862
 Missing Authorization 		CVE-2026-54832 2026-06-27 03:17 2026-06-27 Show GitHub Exploit DB Packet Storm
637 9.3 CRITICAL
Network 		- - Unauthenticated SQL Injection in GeoDirectory <= 2.8.162 versions. New CWE-89
SQL Injection 		CVE-2026-54831 2026-06-27 03:17 2026-06-27 Show GitHub Exploit DB Packet Storm
638 9.3 CRITICAL
Network 		- - Unauthenticated SQL Injection in JetBooking <= 4.0.4.1 versions. New CWE-89
SQL Injection 		CVE-2026-54820 2026-06-27 03:17 2026-06-27 Show GitHub Exploit DB Packet Storm
639 5.5 MEDIUM
Local 		- - mise manages dev tools like node, python, cmake, and terraform. Prior to 2026.6.1, the mise HTTP backend builds its install symlink destination from the raw resolved version string for non-latest ver… New CWE-22
Path Traversal 		CVE-2026-54557 2026-06-27 03:17 2026-06-27 Show GitHub Exploit DB Packet Storm
640 7.5 HIGH
Network 		- - Dragonfly is an in-memory data store built for modern application workloads. Prior to 1.39.0, a crafted RESTORE payload triggers an out-of-bounds read in DragonflyDB's listpack collection loaders, cr… New CWE-125
Out-of-bounds Read 		CVE-2026-54341 2026-06-27 03:17 2026-06-27 Show GitHub Exploit DB Packet Storm