Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 29, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
132571 4.3 警告
Network 		Jenkins プロジェクト Promoted Builds Jenkins Promoted Builds プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2021-21641 2021-12-13 14:45 2021-04-7 Show GitHub Exploit DB Packet Storm
132572 4.3 警告
Network 		Jenkins プロジェクト Jenkins Jenkins における一貫性のない構造要素の不適切な処理に関する脆弱性 CWE-240
一貫性のない構造要素の不適切な処理 		CVE-2021-21640 2021-12-13 14:45 2021-04-7 Show GitHub Exploit DB Packet Storm
132573 4.3 警告
Network 		Jenkins プロジェクト Jenkins Jenkins における入力確認に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2021-21639 2021-12-13 14:45 2021-04-7 Show GitHub Exploit DB Packet Storm
132574 6.1 警告
Network 		シスコシステムズ Cisco Unified Communications Manager IM and Presence Service
Cisco Unity Connection
Cisco Unified Communications Manager 		複数の Cisco 製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2021-1380 2021-12-13 14:45 2021-04-7 Show GitHub Exploit DB Packet Storm
132575 3.9
Local 		GNOME Project
Fedora Project		 file-roller
Fedora 		GNOME file-roller におけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2020-36314 2021-12-13 14:45 2020-11-17 Show GitHub Exploit DB Packet Storm
132576 9.8 緊急
Network 		PHPNUKE PHP-Nuke PHP-Nuke における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2021-30177 2021-12-13 14:45 2021-04-7 Show GitHub Exploit DB Packet Storm
132577 5.5 警告
Local 		Linux
Fedora Project		 Linux Kernel
Fedora 		Linux Kernel における NULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2021-30178 2021-12-13 14:45 2021-02-26 Show GitHub Exploit DB Packet Storm
132578 7.8 重要
Local 		Linux Linux Kernel Linux Kernel における解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2020-36313 2021-12-13 14:45 2020-05-31 Show GitHub Exploit DB Packet Storm
132579 8.8 重要
Network 		Skyworth Digital Holdings Ltd. RN510 ファームウェア Skyworth Digital Technology RN510 における古典的バッファオーバーフローの脆弱性 CWE-120
古典的バッファオーバーフロー 		CVE-2021-25328 2021-12-13 14:17 2021-01-19 Show GitHub Exploit DB Packet Storm
132580 3.3
Local 		IBM IBM Spectrum Scale IBM Spectrum Scale における不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2021-29671 2021-12-13 13:42 2021-04-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 30, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1531 5.3 MEDIUM
Network 		ni instrumentstudio
ni_grpc_device_server 		There is an incorrect conversion between numeric types vulnerability in NI grpc-device due to missing range checks in CodeGen.  This may silently discard high bits if a size value exceeded the target… CWE-681
 Incorrect Conversion between Numeric Types 		CVE-2026-9143 2026-06-25 23:39 2026-06-19 Show GitHub Exploit DB Packet Storm
1532 4.3 MEDIUM
Network 		openwebui open_webui Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.6, a path traversal vulnerability exists in open-webui's cache file serving endpoint th… CWE-22
Path Traversal 		CVE-2026-54014 2026-06-25 23:36 2026-06-24 Show GitHub Exploit DB Packet Storm
1533 6.4 MEDIUM
Network 		openwebui open_webui Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.6, Open WebUI's prompt version-history endpoints authorize the prompt_id in the URL but… CWE-284
CWE-639
Improper Access Control
 Authorization Bypass Through User-Controlled Key 		CVE-2026-54015 2026-06-25 23:35 2026-06-24 Show GitHub Exploit DB Packet Storm
1534 4.3 MEDIUM
Network 		openwebui open_webui Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.6, Open WebUI has a Broken Object Level Authorization (BOLA) vulnerability in the built… CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2026-54016 2026-06-25 23:31 2026-06-24 Show GitHub Exploit DB Packet Storm
1535 7.7 HIGH
Network 		openwebui open_webui Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.6, the SafePlaywrightURLLoader implements a validate_url function to prevent SSRF attac… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-54018 2026-06-25 23:30 2026-06-24 Show GitHub Exploit DB Packet Storm
1536 7.8 HIGH
Local 		- - Warp is an agentic development environment. From 0.2025.04.09.08.11.stable_00 until 0.2026.05.06.15.42.stable_01, Warp contains a command execution policy bypass in Agent code search tools. The affec… CWE-78
OS Command  		CVE-2026-48703 2026-06-25 23:29 2026-06-25 Show GitHub Exploit DB Packet Storm
1537 8.8 HIGH
Network 		- - Warp is an agentic development environment. From 0.2023.10.24.08.03.stable_00 until 0.2026.05.06.15.42.stable_01, Warp may open executable local files through the operating system default file handle… CWE-20
 Improper Input Validation  		CVE-2026-48704 2026-06-25 23:29 2026-06-25 Show GitHub Exploit DB Packet Storm
1538 8.0 HIGH
Network 		- - Warp is an agentic development environment. From 0.2025.08.06.08.12.stable_00 until 0.2026.05.06.15.42.stable_01, Warp contains a command injection in the prompt branch selector. A user who can publi… CWE-78
OS Command  		CVE-2026-48719 2026-06-25 23:29 2026-06-25 Show GitHub Exploit DB Packet Storm
1539 8.1 HIGH
Network 		- - Warp is an agentic development environment. From 0.2021.04.25.23.05.stable_00 until 0.2026.05.06.15.42.stable_01, Warp allows terminal output to request access to the local system clipboard. A malici… CWE-276
Incorrect Default Permissions  		CVE-2026-48725 2026-06-25 23:29 2026-06-25 Show GitHub Exploit DB Packet Storm
1540 7.8 HIGH
Local 		- - Warp is an agentic development environment. From 0.2024.02.20.08.01.stable_01 until 0.2026.05.06.15.42.stable_01, Warp contains a command injection issue in the Linux external editor launcher. Warp e… CWE-78
OS Command  		CVE-2026-48731 2026-06-25 23:29 2026-06-25 Show GitHub Exploit DB Packet Storm