Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 27, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
133241 8.8 重要
Network 		Quadbase Systems Inc. EspressReports ES Quadbase EspressReports ES におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2020-24984 2021-11-22 17:59 2020-08-28 Show GitHub Exploit DB Packet Storm
133242 7.8 重要
Local 		- Interactive Graphical SCADA System におけるバッファエラーの脆弱性 CWE-119
バッファエラー 		CVE-2021-22710 2021-11-22 17:59 2021-03-9 Show GitHub Exploit DB Packet Storm
133243 6.5 警告
Network 		Bloomreach Bloomreach Experience Manager Bloomreach Experience Manager におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2020-14989 2021-11-22 17:59 2020-06-22 Show GitHub Exploit DB Packet Storm
133244 6.8 警告
Physics 		Xilinx Inc. Zynq-7000S ファームウェア
Zynq-7000 ファームウェア 		Zync-7000 SOC デバイスにおける古典的バッファオーバーフローの脆弱性 CWE-120
古典的バッファオーバーフロー 		CVE-2021-27208 2021-11-22 17:58 2021-03-15 Show GitHub Exploit DB Packet Storm
133245 8.1 重要
Network 		レッドハット
Fedora Project
Dogtag PKI		 Red Hat Certificate System
Fedora
Dogtag PKI 		pki-core における不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2021-20179 2021-11-22 17:58 2021-03-15 Show GitHub Exploit DB Packet Storm
133246 9.8 緊急
Network 		DomainMOD DomainMOD DomainMOD におけるセッション期限に関する脆弱性 CWE-613
不適切なセッション期限 		CVE-2020-35358 2021-11-22 17:58 2020-12-14 Show GitHub Exploit DB Packet Storm
133247 5.4 警告
Network 		gitea project gitea Gitea におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2021-28378 2021-11-22 17:57 2021-03-6 Show GitHub Exploit DB Packet Storm
133248 7.8 重要
Local 		Linux
Fedora Project		 Linux Kernel
Fedora 		Linux Kernel における権限管理に関する脆弱性 CWE-269
不適切な権限管理 		CVE-2021-28375 2021-11-22 17:57 2021-03-10 Show GitHub Exploit DB Packet Storm
133249 7.5 重要
Network 		Tiny Tiny RSS Tiny Tiny RSS Tiny Tiny RSS における不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2021-28373 2021-11-22 17:57 2021-03-11 Show GitHub Exploit DB Packet Storm
133250 7.5 重要
Network 		Debian courier-authlib
Debian GNU/Linux 		Debian courier-authlib パッケージにおける重要な情報の平文保存に関する脆弱性 CWE-312
重要な情報の平文保存 		CVE-2021-28374 2021-11-22 17:57 2021-03-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 27, 2026, 4:35 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1491 8.1 HIGH
Network 		n8n n8n n8n is an open source workflow automation platform. Prior to 1.123.43, 2.22.1, and 2.20.7, the OAuth1 and OAuth2 credential reconnect endpoints authorized access using credential:read rather than cre… CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2026-45732 2026-06-24 22:56 2026-06-24 Show GitHub Exploit DB Packet Storm
1492 9.0 CRITICAL
Network 		n8n n8n n8n is an open source workflow automation platform. Prior to 1.123.43, 2.22.1, and 2.20.7, an attacker with write access to the git repository connected to an n8n Source Control configuration could c… CWE-89
SQL Injection 		CVE-2026-44792 2026-06-24 22:55 2026-06-24 Show GitHub Exploit DB Packet Storm
1493 8.8 HIGH
Network 		n8n n8n n8n is an open source workflow automation platform. Prior to 1.123.43, 2.22.1, and 2.20.7, an authenticated user with permission to create or modify workflows could inject CLI flags on the Git node's… CWE-88
Argument Injection 		CVE-2026-44790 2026-06-24 22:54 2026-06-24 Show GitHub Exploit DB Packet Storm
1494 9.3 CRITICAL
Network 		langflow langflow Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to 1.9.1, unauthenticated users can upload any amount of data to the server without any limitations. No need for a… CWE-200
CWE-306
CWE-400
Information Exposure
Missing Authentication for Critical Function
 Uncontrolled Resource Consumption 		CVE-2026-55450 2026-06-24 22:50 2026-06-24 Show GitHub Exploit DB Packet Storm
1495 7.5 HIGH
Network 		langflow langflow Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to 1.0.19, an attacker can send a /api/v1/files/upload/ request without any authentication token/cookies and abuse… CWE-400
 Uncontrolled Resource Consumption 		CVE-2026-55446 2026-06-24 22:50 2026-06-24 Show GitHub Exploit DB Packet Storm
1496 6.1 MEDIUM
Physics 		langflow langflow Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to 1.7.0, the logout button does not clear the session. The previous user stays logged in unless another user expl… CWE-613
 Insufficient Session Expiration 		CVE-2026-55423 2026-06-24 22:50 2026-06-24 Show GitHub Exploit DB Packet Storm
1497 9.9 CRITICAL
Network 		langflow langflow Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to 1.9.2, an Insecure Direct Object Reference (IDOR) vulnerability in /api/v1/responses endpoint allows an authent… CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2026-55255 2026-06-24 22:47 2026-06-24 Show GitHub Exploit DB Packet Storm
1498 5.3 MEDIUM
Network 		- - Hono before 4.12.12 does not validate cookie names on the write path in the setCookie(), serialize(), and serializeSigned() functions, allowing invalid characters such as control characters (e.g. \r … CWE-20
 Improper Input Validation  		CVE-2026-56762 2026-06-24 22:16 2026-06-23 Show GitHub Exploit DB Packet Storm
1499 - - - In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix FSCTL permission bypass by adding a permission check for FSCTL_SET_SPARSE FSCTL_SET_SPARSE in fsctl_set_sparse() modif… - CVE-2026-52944 2026-06-24 19:17 2026-06-24 Show GitHub Exploit DB Packet Storm
1500 - - - In the Linux kernel, the following vulnerability has been resolved: net: skbuff: fix missing zerocopy reference in pskb_carve helpers pskb_carve_inside_header() and pskb_carve_inside_nonlinear() bo… - CVE-2026-52943 2026-06-24 19:17 2026-06-24 Show GitHub Exploit DB Packet Storm