Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 25, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
131591 8.8 重要
Network 		Fedora Project
Nextcloud		 Fedora
Nextcloud Desktop Client 		Nextcloud Desktop Client におけるインジェクションに関する脆弱性 CWE-74
インジェクション 		CVE-2021-22879 2021-12-16 11:30 2021-02-9 Show GitHub Exploit DB Packet Storm
131592 3.3
Local 		SUSE s390-tools SUSE Linux Enterprise Server 用 s390-tools における安全でない一時ファイルに関する脆弱性 CWE-377
安全でない一時ファイル 		CVE-2021-25316 2021-12-16 11:30 2021-02-25 Show GitHub Exploit DB Packet Storm
131593 9.8 緊急
Network 		QNAP Systems Surveillance Station QNAP NAS デバイスにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2021-28797 2021-12-16 11:30 2021-02-17 Show GitHub Exploit DB Packet Storm
131594 9.8 緊急
Network 		Facebook Thrift Facebook Thrift における無効なポインタや参照の解放に関する脆弱性 CWE-763
無効なポインタや参照の解放 		CVE-2021-24028 2021-12-16 11:30 2021-02-19 Show GitHub Exploit DB Packet Storm
131595 9.8 緊急
Network 		Motorola Solutions, Inc MH702x ファームウェア Motorola MH702x デバイスにおける証明書検証に関する脆弱性 CWE-295
不正な証明書検証 		CVE-2021-3460 2021-12-16 11:30 2021-04-13 Show GitHub Exploit DB Packet Storm
131596 4.9 警告
Network 		Perforce Software Helix ALM Perforce Helix ALM における DTD の再帰的なエンティティ参照の不適切な制限に関する脆弱性 CWE-776
DTD の再帰的なエンティティ参照の不適切な制限 		CVE-2021-28973 2021-12-16 11:23 2021-04-1 Show GitHub Exploit DB Packet Storm
131597 9.8 緊急
Network 		OpenClinic GA OpenClinic GA OpenClinic GA におけるコマンドインジェクションの脆弱性 CWE-77
コマンドインジェクション 		CVE-2020-27227 2021-12-16 11:10 2020-10-19 Show GitHub Exploit DB Packet Storm
131598 7.5 重要
Network 		ASUSTeK Computer Inc.
Asuswrt-Merlin firmware project		 RT-AX68U ファームウェア
RT-AX86U ファームウェア
RT-AX58U ファームウェア
RT-AX82U ファームウェア
RT-AX55 ファームウェア
ZenWiFi AX (XT8) ファームウェア
RT-AX56U ファームウェア
RT-AX88… 		複数の ASUS ルータ製品のファームウェアにおける過度なイテレーションの脆弱性 CWE-834
過度なイテレーション 		CVE-2021-3128 2021-12-16 11:10 2021-04-12 Show GitHub Exploit DB Packet Storm
131599 6.5 警告
Network 		GitLab.org GitLab GitLab におけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2021-22190 2021-12-16 11:10 2021-04-11 Show GitHub Exploit DB Packet Storm
131600 6.5 警告
Network 		フォーティネット Fortiweb Fortinet FortiWeb における情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2020-15942 2021-12-16 11:10 2020-07-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 25, 2026, 4:04 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
591 6.5 MEDIUM
Network 		- - Cap-go Console < 12.28.2 contains a denial-of-service vulnerability in its account deletion flow that allows an attacker to block authentication and onboarding functions by triggering account deletio… CWE-645
 Overly Restrictive Account Lockout Mechanism 		CVE-2026-53982 2026-06-16 05:50 2026-06-13 Show GitHub Exploit DB Packet Storm
592 10.0 CRITICAL
Network 		- - SimpleHelp versions 5.5.15 and prior and 6.0 pre-release versions contain an authentication bypass vulnerability in the OIDC authentication flow. When OIDC authentication is configured, identity toke… CWE-347
 Improper Verification of Cryptographic Signature 		CVE-2026-48558 2026-06-16 05:50 2026-06-13 Show GitHub Exploit DB Packet Storm
593 4.3 MEDIUM
Network 		- - Capgo before 12.128.2 fails to delete previously uploaded profile images from backend storage when users replace or remove them. Attackers can access orphaned image files through previously generated… CWE-459
 Incomplete Cleanup 		CVE-2026-53867 2026-06-16 05:50 2026-06-13 Show GitHub Exploit DB Packet Storm
594 7.5 HIGH
Network 		- - Capgo before 12.128.2 contains a denial of service vulnerability allowing attackers to register accounts using arbitrary email addresses without verification, then initiate deletion to lock emails in… CWE-306
Missing Authentication for Critical Function 		CVE-2026-53868 2026-06-16 05:50 2026-06-13 Show GitHub Exploit DB Packet Storm
595 - - - The Iptanus File Upload WordPress plugin before 5.1.7 does not implement proper file handling when the duplicatepolicy setting is configured to "maintain both." Due to a Time-of-Check to Time-of-Use … - CVE-2025-15546 2026-06-16 05:50 2026-06-14 Show GitHub Exploit DB Packet Storm
596 7.8 HIGH
Local 		- - Heap buffer out-of-bounds read vulnerability in Avira Antivirus engine when scanning a malformed PDF file may allow Local Execution of Code or Denial-of-Service of the antivirus engine process. This… CWE-125
Out-of-bounds Read 		CVE-2025-7002 2026-06-16 05:49 2026-06-13 Show GitHub Exploit DB Packet Storm
597 7.8 HIGH
Local 		- - Heap buffer out-of-bounds read vulnerability in Avira Antivirus engine when scanning a malformed PDF file may allow Local Execution of Code or Denial-of-Service of the antivirus engine process. This… CWE-125
Out-of-bounds Read 		CVE-2025-7003 2026-06-16 05:49 2026-06-13 Show GitHub Exploit DB Packet Storm
598 7.8 HIGH
Local 		- - Heap buffer out-of-bounds read vulnerability in Avira Antivirus engine when scanning a malformed Windows MSI file may allow Local Execution of Code or Denial-of-Service of the antivirus engine proces… CWE-125
Out-of-bounds Read 		CVE-2025-7017 2026-06-16 05:49 2026-06-13 Show GitHub Exploit DB Packet Storm
599 5.5 MEDIUM
Local 		- - Null pointer dereference vulnerability in Avira Antivirus engine when scanning a malformed Windows PE file may allow Denial-of-Service of the antivirus engine process. This issue affects Avira Antiv… CWE-476
 NULL Pointer Dereference 		CVE-2025-7018 2026-06-16 05:49 2026-06-13 Show GitHub Exploit DB Packet Storm
600 7.8 HIGH
Local 		- - Heap buffer out-of-bounds write vulnerability in Avast Antivirus when scanning a malformed Windows PE file may allow Local Execution of Code or Denial-of-Service of the antivirus process. This issue… CWE-787
 Out-of-bounds Write 		CVE-2025-7004 2026-06-16 05:49 2026-06-13 Show GitHub Exploit DB Packet Storm