Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 28, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
133571	5.4	警告 Network	OpenText	Content Server	OpenText Content Server におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2021-3010	2021-11-16 17:26	2021-02-19	Show	GitHub Exploit DB Packet Storm

133572	9.8	緊急 Network	LMA ISIDA	ISIDA RETRIEVER	LMA ISIDA Retriever における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2021-26904	2021-11-16 17:26	2021-02-24	Show	GitHub Exploit DB Packet Storm

133573	7.8	重要 Local	ownCloud	ownCloud	ownCloud における制御されていない検索パスの要素に関する脆弱性	CWE-427 制御されていない検索パスの要素	CVE-2020-28646	2021-11-16 17:26	2020-11-16	Show	GitHub Exploit DB Packet Storm

133574	4.4	警告 Local	ZTE	ZXR10 8900E ファームウェア	ZXR10 8900E における有効期限後のメモリの解放の欠如に関する脆弱性	CWE-401 有効期限後のメモリの解放の欠如	CVE-2021-21724	2021-11-16 17:26	2021-02-25	Show	GitHub Exploit DB Packet Storm

133575	6.1	警告 Network	Debian aio-libs project Fedora Project	Debian GNU/Linux Fedora aiohttp	aiohttp におけるオープンリダイレクトの脆弱性	CWE-601 オープンリダイレクト	CVE-2021-21330	2021-11-16 17:26	2021-02-25	Show	GitHub Exploit DB Packet Storm

133576	8.8	重要 Network	Mozilla Foundation	Mozilla Firefox	Firefox における脆弱性	CWE-noinfo 情報不足	CVE-2021-23972	2021-11-16 17:26	2021-02-23	Show	GitHub Exploit DB Packet Storm

133577	6.5	警告 Network	Mozilla Foundation	Mozilla Firefox	Firefox における到達可能なアサーションに関する脆弱性	CWE-617 到達可能なアサーション	CVE-2021-23970	2021-11-16 17:26	2021-02-23	Show	GitHub Exploit DB Packet Storm

133578	4.3	警告 Network	Debian Mozilla Foundation	Debian GNU/Linux Mozilla Thunderbird Mozilla Firefox ESR Mozilla Firefox	Mozilla Firefox および Thunderbird における脆弱性	CWE-noinfo 情報不足	CVE-2021-23969	2021-11-16 17:26	2021-02-23	Show	GitHub Exploit DB Packet Storm

133579	6.1	警告 Network	LMA ISIDA	ISIDA RETRIEVER	LMA ISIDA Retriever におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2021-26903	2021-11-16 17:26	2021-02-24	Show	GitHub Exploit DB Packet Storm

133580	3.3	低 Local	Google	Android	Samsung モバイルデバイスにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2021-25336	2021-11-16 16:53	2021-03-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 29, 2026, 4:19 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1501	6.5	MEDIUM Network	-	-	Daytona is a secure and elastic infrastructure runtime for AI-generated code execution and agent workflows. Prior to 0.185.0, a cross-tenant authorization flaw in Daytona's notification WebSocket gat…	CWE-639 CWE-863 Authorization Bypass Through User-Controlled Key Incorrect Authorization	CVE-2026-54324	2026-06-25 22:16	2026-06-24	Show	GitHub Exploit DB Packet Storm

1502	7.0	HIGH Network	-	-	Daytona is a secure and elastic infrastructure runtime for AI-generated code execution and agent workflows. From 0.101.0 until 0.184.0, sandbox previews that were switched from public to private coul…	CWE-613 CWE-863 Insufficient Session Expiration Incorrect Authorization	CVE-2026-54321	2026-06-25 22:16	2026-06-24	Show	GitHub Exploit DB Packet Storm

1503	4.2	MEDIUM Network	-	-	Caddy is an extensible server platform that uses TLS by default. Prior to 2.11.4, Caddy’s stripHTML template function cannot reliably remove all HTML tags from input strings. Certain malformed HTML, …	CWE-116 Improper Encoding or Escaping of Output	CVE-2026-52846	2026-06-25 22:16	2026-06-24	Show	GitHub Exploit DB Packet Storm

1504	-		-	-	In the Linux kernel, the following vulnerability has been resolved: net/smc: fix sleep-inside-lock in __smc_setsockopt() causing local DoS A logic flaw in __smc_setsockopt() allows a local unprivil…	-	CVE-2026-53274	2026-06-25 18:16	2026-06-25	Show	GitHub Exploit DB Packet Storm

1505	-		-	-	In the Linux kernel, the following vulnerability has been resolved: erofs: fix use-after-free on sbi->sync_decompress z_erofs_decompress_kickoff() can race with filesystem unmount, causing a use-af…	-	CVE-2026-53272	2026-06-25 18:16	2026-06-25	Show	GitHub Exploit DB Packet Storm

1506	-		-	-	In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix NULL-deref of opinfo->conn in oplock/lease break notifiers smb2_oplock_break_noti() and smb2_lease_break_noti() read o…	-	CVE-2026-53271	2026-06-25 18:16	2026-06-25	Show	GitHub Exploit DB Packet Storm

1507	-		-	-	In the Linux kernel, the following vulnerability has been resolved: netfilter: synproxy: add mutex to guard hook reference counting As the synproxy infrastructure register netfilter hooks on-demand…	-	CVE-2026-53269	2026-06-25 18:16	2026-06-25	Show	GitHub Exploit DB Packet Storm

1508	-		-	-	In the Linux kernel, the following vulnerability has been resolved: 6lowpan: fix off-by-one in multicast context address compression The second memcpy in lowpan_iphc_mcast_ctx_addr_compress() uses …	-	CVE-2026-53263	2026-06-25 18:16	2026-06-25	Show	GitHub Exploit DB Packet Storm

1509	-		-	-	In the Linux kernel, the following vulnerability has been resolved: devlink: Release nested relation on devlink free devlink relation state is normally released from devl_unregister(), which calls …	-	CVE-2026-53261	2026-06-25 18:16	2026-06-25	Show	GitHub Exploit DB Packet Storm

1510	-		-	-	In the Linux kernel, the following vulnerability has been resolved: wifi: fix leak if split 6 GHz scanning fails rdev->int_scan_req is leaked if cfg80211_scan() fails. Note that it's supposed to b…	-	CVE-2026-53258	2026-06-25 18:16	2026-06-25	Show	GitHub Exploit DB Packet Storm