Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
132621 7.5 重要
Network 		Fedora Project
The Tor Project		 Tor
Fedora 		Tor におけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2021-28089 2021-12-2 18:08 2021-03-16 Show GitHub Exploit DB Packet Storm
132622 6.1 警告
Network 		Compass Plus TranzWare e-Commerce Payment Gateway TranzWare e-Commerce Payment Gateway におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2021-28126 2021-12-2 18:08 2021-03-17 Show GitHub Exploit DB Packet Storm
132623 7.5 重要
Network 		Compass Plus TranzWare e-Commerce Payment Gateway TranzWare e-Commerce Payment Gateway における XML 外部エンティティの脆弱性 CWE-611
XML 外部エンティティ参照の不適切な制限 		CVE-2021-28110 2021-12-2 18:08 2021-03-17 Show GitHub Exploit DB Packet Storm
132624 5.5 警告
Local 		Linux
Fedora Project		 Linux Kernel
Fedora 		Linux Kernel における過度なイテレーションの脆弱性 CWE-834
過度なイテレーション 		CVE-2021-28950 2021-12-2 18:08 2021-03-20 Show GitHub Exploit DB Packet Storm
132625 7.5 重要
Network 		Schema-Inspector project Schema-Inspector Schema-Inspector におけるリソースの枯渇に関する脆弱性 CWE-20
CWE-400
CVE-2021-21267 2021-12-2 18:08 2021-03-14 Show GitHub Exploit DB Packet Storm
132626 9.8 緊急
Network 		http-proxy-agent project
Fedora Project
レッドハット		 Red Hat Enterprise Linux
http-proxy-agent
Red Hat Software Collections
Fedora 		http-proxy-agent における初期化に関する脆弱性 CWE-665
不適切な初期化 		CVE-2019-10196 2021-12-2 18:08 2019-06-12 Show GitHub Exploit DB Packet Storm
132627 8.6 重要
Network 		Debian
Squid-cache.org		 Debian GNU/Linux
Squid 		Squid における HTTP リクエストスマグリングに関する脆弱性 CWE-20
CWE-444
CVE-2020-25097 2021-12-2 18:08 2020-09-4 Show GitHub Exploit DB Packet Storm
132628 6.1 警告
Network 		AlgolPlus Advanced Order Export For WooCommerce WooCommerce 用 Advanced Order Export におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2021-27349 2021-12-2 18:05 2021-02-22 Show GitHub Exploit DB Packet Storm
132629 8.8 重要
Network 		PortProcesses project PortProcesses portprocesses パッケージにおけるコマンドインジェクションの脆弱性 CWE-77
コマンドインジェクション 		CVE-2021-23348 2021-12-2 18:05 2021-03-31 Show GitHub Exploit DB Packet Storm
132630 8.8 重要
Network 		accusoft imagegear Accusoft ImageGear における境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2021-21782 2021-12-2 18:05 2021-03-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 28, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1491 8.1 HIGH
Network 		n8n n8n n8n is an open source workflow automation platform. Prior to 1.123.43, 2.22.1, and 2.20.7, the OAuth1 and OAuth2 credential reconnect endpoints authorized access using credential:read rather than cre… CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2026-45732 2026-06-24 22:56 2026-06-24 Show GitHub Exploit DB Packet Storm
1492 9.0 CRITICAL
Network 		n8n n8n n8n is an open source workflow automation platform. Prior to 1.123.43, 2.22.1, and 2.20.7, an attacker with write access to the git repository connected to an n8n Source Control configuration could c… CWE-89
SQL Injection 		CVE-2026-44792 2026-06-24 22:55 2026-06-24 Show GitHub Exploit DB Packet Storm
1493 8.8 HIGH
Network 		n8n n8n n8n is an open source workflow automation platform. Prior to 1.123.43, 2.22.1, and 2.20.7, an authenticated user with permission to create or modify workflows could inject CLI flags on the Git node's… CWE-88
Argument Injection 		CVE-2026-44790 2026-06-24 22:54 2026-06-24 Show GitHub Exploit DB Packet Storm
1494 9.3 CRITICAL
Network 		langflow langflow Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to 1.9.1, unauthenticated users can upload any amount of data to the server without any limitations. No need for a… CWE-200
CWE-306
CWE-400
Information Exposure
Missing Authentication for Critical Function
 Uncontrolled Resource Consumption 		CVE-2026-55450 2026-06-24 22:50 2026-06-24 Show GitHub Exploit DB Packet Storm
1495 7.5 HIGH
Network 		langflow langflow Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to 1.0.19, an attacker can send a /api/v1/files/upload/ request without any authentication token/cookies and abuse… CWE-400
 Uncontrolled Resource Consumption 		CVE-2026-55446 2026-06-24 22:50 2026-06-24 Show GitHub Exploit DB Packet Storm
1496 6.1 MEDIUM
Physics 		langflow langflow Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to 1.7.0, the logout button does not clear the session. The previous user stays logged in unless another user expl… CWE-613
 Insufficient Session Expiration 		CVE-2026-55423 2026-06-24 22:50 2026-06-24 Show GitHub Exploit DB Packet Storm
1497 9.9 CRITICAL
Network 		langflow langflow Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to 1.9.2, an Insecure Direct Object Reference (IDOR) vulnerability in /api/v1/responses endpoint allows an authent… CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2026-55255 2026-06-24 22:47 2026-06-24 Show GitHub Exploit DB Packet Storm
1498 5.3 MEDIUM
Network 		- - Hono before 4.12.12 does not validate cookie names on the write path in the setCookie(), serialize(), and serializeSigned() functions, allowing invalid characters such as control characters (e.g. \r … CWE-20
 Improper Input Validation  		CVE-2026-56762 2026-06-24 22:16 2026-06-23 Show GitHub Exploit DB Packet Storm
1499 - - - In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix FSCTL permission bypass by adding a permission check for FSCTL_SET_SPARSE FSCTL_SET_SPARSE in fsctl_set_sparse() modif… - CVE-2026-52944 2026-06-24 19:17 2026-06-24 Show GitHub Exploit DB Packet Storm
1500 - - - In the Linux kernel, the following vulnerability has been resolved: net: skbuff: fix missing zerocopy reference in pskb_carve helpers pskb_carve_inside_header() and pskb_carve_inside_nonlinear() bo… - CVE-2026-52943 2026-06-24 19:17 2026-06-24 Show GitHub Exploit DB Packet Storm