Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 26, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
131731 7.8 重要
Local 		Canonical Ubuntu Ubuntu Linux Kernel における有効期限後のメモリの解放の欠如に関する脆弱性 CWE-401
CWE-415
CVE-2021-3492 2021-12-17 12:15 2021-04-12 Show GitHub Exploit DB Packet Storm
131732 7.8 重要
Local 		Canonical Ubuntu Ubuntu Kernel における権限管理に関する脆弱性 CWE-269
不適切な権限管理 		CVE-2021-3493 2021-12-17 12:13 2021-04-15 Show GitHub Exploit DB Packet Storm
131733 6.5 警告
Network 		Curveball a12n-server a12n-server における権限管理に関する脆弱性 CWE-269
不適切な権限管理 		CVE-2021-29452 2021-12-17 12:13 2021-04-16 Show GitHub Exploit DB Packet Storm
131734 9.1 緊急
Network 		ManyDesigns Portofino Portofino におけるデジタル署名の検証に関する脆弱性 CWE-347
デジタル署名の不適切な検証 		CVE-2021-29451 2021-12-17 12:13 2021-04-2 Show GitHub Exploit DB Packet Storm
131735 8.8 重要
Network 		Mendix Mendix Mendix アプリケーションにおける権限管理に関する脆弱性 CWE-269
不適切な権限管理 		CVE-2021-27394 2021-12-17 12:13 2021-04-14 Show GitHub Exploit DB Packet Storm
131736 7.8 重要
Local 		Google Bazel vscode-bazel における誤った領域へのリソースの漏えいに関する脆弱性 CWE-668
誤った領域へのリソースの漏えい 		CVE-2021-22539 2021-12-17 12:13 2021-04-15 Show GitHub Exploit DB Packet Storm
131737 6.1 警告
Network 		QNAP Systems QNAP QTS QTS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2018-19942 2021-12-17 12:13 2018-12-7 Show GitHub Exploit DB Packet Storm
131738 5.9 警告
Network 		jose project jose jose-node-cjs-runtime における観測可能な不一致に関する脆弱性 CWE-203
セキュリティ関連の処理に対するレスポンスの違いに起因する情報漏えい 		CVE-2021-29446 2021-12-17 12:13 2021-04-15 Show GitHub Exploit DB Packet Storm
131739 6.5 警告
Network 		Matrix
Fedora Project		 Synapse
Fedora 		Synapse における入力確認に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2021-21394 2021-12-17 12:12 2021-02-9 Show GitHub Exploit DB Packet Storm
131740 6.5 警告
Network 		MediaWiki MediaWiki MediaWiki における引用されない検索パスまたは要素に関する脆弱性 CWE-428
引用されない検索パスまたは要素 		CVE-2021-31553 2021-12-17 12:05 2021-02-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 27, 2026, 4:35 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
901 7.5 HIGH
Network 		- - ATEN Unizon writeFileToHttpServletResponse Directory Traversal Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installat… New CWE-22
Path Traversal 		CVE-2026-9776 2026-06-25 23:23 2026-06-25 Show GitHub Exploit DB Packet Storm
902 7.2 HIGH
Network 		- - ATEN Unizon restoreDB Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of ATEN Unizon. Authentic… New CWE-22
Path Traversal 		CVE-2026-9777 2026-06-25 23:23 2026-06-25 Show GitHub Exploit DB Packet Storm
903 7.2 HIGH
Network 		- - ATEN Unizon ImportDeviceList Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of ATEN Unizon. Au… New CWE-22
Path Traversal 		CVE-2026-9778 2026-06-25 23:23 2026-06-25 Show GitHub Exploit DB Packet Storm
904 7.2 HIGH
Network 		- - ATEN Unizon doCryptoHugeFileToFile Improper Verification of Cryptographic Signature Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affect… New CWE-347
 Improper Verification of Cryptographic Signature 		CVE-2026-9779 2026-06-25 23:23 2026-06-25 Show GitHub Exploit DB Packet Storm
905 6.3 MEDIUM
Network 		openwebui open_webui Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.6, several direct, index-addressed Ollama proxy routes accept a caller-supplied url_idx… New CWE-863
 Incorrect Authorization 		CVE-2026-54021 2026-06-25 23:23 2026-06-24 Show GitHub Exploit DB Packet Storm
906 - - - SiYuan is an open-source personal knowledge management system. Prior to 3.7.0, Lute's HTML sanitizer does not remove <iframe> elements. Combined with the SiYuan Electron client's permissive security … New CWE-79
Cross-site Scripting 		CVE-2026-54759 2026-06-25 23:22 2026-06-25 Show GitHub Exploit DB Packet Storm
907 7.5 HIGH
Network 		- - SiYuan is an open-source personal knowledge management system. Prior to 3.7.0, the patch for CVE-2026-41894 ("Path Traversal via Double URL Encoding") sanitized the /export/ route but the identical r… New CWE-22
CWE-23
CWE-1188
Path Traversal
 Relative Path Traversal
 Insecure Default Initialization of Resource 		CVE-2026-54066 2026-06-25 23:22 2026-06-25 Show GitHub Exploit DB Packet Storm
908 5.5 MEDIUM
Network 		- - Fortra File Integrity Monitoring (FIM), formerly Tripwire Enterprise, versions prior to 9.4.0.1 contain a stored cross-site scripting (XSS) vulnerability in the Asset View UI component. An authentica… New CWE-79
Cross-site Scripting 		CVE-2026-12163 2026-06-25 23:22 2026-06-24 Show GitHub Exploit DB Packet Storm
909 4.4 MEDIUM
Local 		- - Fortra File Integrity Monitoring (FIM), formerly Tripwire Enterprise, versions prior to 9.4.0 may assign incorrect or elevated effective permissions to users created by the tetool import command whil… New CWE-266
 Incorrect Privilege Assignment 		CVE-2026-12164 2026-06-25 23:22 2026-06-24 Show GitHub Exploit DB Packet Storm
910 6.1 MEDIUM
Network 		- - NocoDB is software for building databases as spreadsheets. Prior to 2026.04.1, a reflected XSS vulnerability exists in the Page Leaving Warning page. The ncRedirectUrl and ncBackUrl query parameters … New CWE-79
Cross-site Scripting 		CVE-2026-46547 2026-06-25 23:21 2026-06-24 Show GitHub Exploit DB Packet Storm