Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 29, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
134361	5.9	警告 Network	AzeoTech, Inc.	DAQFactory	DAQFactory における重要な情報の平文での送信に関する脆弱性	CWE-319 重要な情報の平文での送信	CVE-2021-42699	2021-11-10 18:12	2021-11-4	Show	GitHub Exploit DB Packet Storm

134362	6.3	警告 Local	AzeoTech, Inc.	DAQFactory	DAQFactory における不変と仮定されるデータの変更に関する脆弱性	CWE-471 不変と仮定されるデータの変更	CVE-2021-42701	2021-11-10 18:12	2021-11-4	Show	GitHub Exploit DB Packet Storm

134363	7.8	重要 Local	AzeoTech, Inc.	DAQFactory	DAQFactory における本質的に危険な機能の使用に関する脆弱性	CWE-242 本質的に危険な機能の使用	CVE-2021-42543	2021-11-10 18:12	2021-11-4	Show	GitHub Exploit DB Packet Storm

134364	5.3	警告 Network	Joomla!	Joomla!	Joomla! における入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2021-26029	2021-11-10 17:58	2021-03-2	Show	GitHub Exploit DB Packet Storm

134365	5.4	警告 Network	IBM	Rational DOORS Next Generation Engineering Lifecycle Management Rational Team Concert Engineering Test management DOORS Next Rational&…	複数の IBM Engineering 製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2020-4975	2021-11-10 17:37	2021-02-26	Show	GitHub Exploit DB Packet Storm

134366	9.8	緊急 Network	CGAL Fedora Project	Computational Geometry Algorithms Library Fedora	CGAL libcgal における境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2020-28601	2021-11-10 17:30	2020-11-13	Show	GitHub Exploit DB Packet Storm

134367	9.8	緊急 Network	CGAL Fedora Project	Computational Geometry Algorithms Library Fedora	CGAL libcgal における境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2020-28636	2021-11-10 17:16	2020-11-13	Show	GitHub Exploit DB Packet Storm

134368	9.8	緊急 Network	CGAL Fedora Project	Computational Geometry Algorithms Library Fedora	CGAL libcgal における境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2020-35628	2021-11-10 17:13	2020-12-22	Show	GitHub Exploit DB Packet Storm

134369	9.8	緊急 Network	CGAL Fedora Project	Computational Geometry Algorithms Library Fedora	CGAL libcgal における型の取り違えに関する脆弱性	CWE-125 CWE-843	CVE-2020-35636	2021-11-10 17:08	2020-12-22	Show	GitHub Exploit DB Packet Storm

134370	4.4	警告 Local	Fedora Project Linux レッドハット	Red Hat Enterprise Linux Fedora Messaging Real-time Grid Red Hat OpenShift Container Platform Linux Kernel	Linux Kernel における NULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2020-25639	2021-11-10 16:40	2020-09-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 30, 2026, 4:22 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
731	6.1	MEDIUM Network	pylonsproject	webob	WebOb provides objects for HTTP requests and responses. Prior to 1.8.10, the normalization of the HTTP Location header during a redirect is vulnerable to an open redirect: WebOb joins the redirect ta… New	CWE-601 Open Redirect	CVE-2026-44889	2026-06-27 05:08	2026-06-23	Show	GitHub Exploit DB Packet Storm

732	8.6	HIGH Network	chimurai	http-proxy-middleware	http-proxy-middleware is node.js http-proxy middleware. From 0.16.0 until 2.0.10, 3.0.6, and 4.1.0, http-proxy-middleware documents router proxy-table entries as host, path, or host+path selectors, b… New	CWE-20 CWE-187 Improper Input Validation Partial String Comparison	CVE-2026-55602	2026-06-27 05:06	2026-06-23	Show	GitHub Exploit DB Packet Storm

733	7.5	HIGH Network	nltk	nltk	NLTK (Natural Language Toolkit) is a suite of open source Python modules, data sets, and tutorials supporting research and development in Natural Language Processing. Prior to 3.10.0-rc1, nltk.data.l… New	CWE-22 Path Traversal	CVE-2026-54293	2026-06-27 05:06	2026-06-23	Show	GitHub Exploit DB Packet Storm

734	6.1	MEDIUM Network	ibm	engineering_workflow_management	IBM Engineering Workflow Management 7.0.2 through 7.0.2 Interim Fix 035, 7.0.3 through 7.0.3 Interim Fix 017, and 7.1 through 7.1 Interim Fix 004 is vulnerable to HTTP header injection, caused by imp… New	CWE-644 Improper Neutralization of HTTP Headers for Scripting Syntax	CVE-2024-51454	2026-06-27 05:05	2026-06-23	Show	GitHub Exploit DB Packet Storm

735	5.5	MEDIUM Local	langchain	langchain	LangChain is a framework for building agents and LLM-powered applications. Prior to 1.3.9, several LangChain components that resolve filesystem paths or expand search patterns do not consistently con… New	CWE-22 CWE-59 Path Traversal Link Following	CVE-2026-55443	2026-06-27 05:05	2026-06-23	Show	GitHub Exploit DB Packet Storm

736	3.6	LOW Local	babel	babel	Babel is a compiler for writing next generation JavaScript. Prior to 8.0.0-rc.6 and 7.29.6, @babel/core affected by an arbitrary file read via a sourceMappingURL comment. Using @babel/core to compile… New	CWE-22 CWE-200 Path Traversal Information Exposure	CVE-2026-49356	2026-06-27 05:04	2026-06-23	Show	GitHub Exploit DB Packet Storm

737	7.5	HIGH Network	protobufjs_project	protobufjs	protobufjs compiles protobuf definitions into JavaScript (JS) functions. Prior to 7.6.1 and 8.4.1, protobufjs could recurse without a depth limit while converting decoded messages to plain objects or… New	CWE-674 Uncontrolled Recursion	CVE-2026-48712	2026-06-27 05:04	2026-06-23	Show	GitHub Exploit DB Packet Storm

738	5.5	MEDIUM Local	isaacs	tar	node-tar is a full-featured Tar for Node.js. Prior to 7.5.16, tar (node-tar) applies a PAX extended header's size= record (and other PAX overrides) to the next header entry of any type, including int… New	CWE-436 Interpretation Conflict	CVE-2026-53655	2026-06-27 05:03	2026-06-23	Show	GitHub Exploit DB Packet Storm

739	8.2	HIGH Network	docling	docling	Docling simplifies document processing by parsing diverse formats and providing integrations with the generative AI ecosystem. FIn versions >= 2.82.0, < 2.91.0, if the HTML backend was explicitly con… New	CWE-94 CWE-918 Code Injection Server-Side Request Forgery (SSRF)	CVE-2026-44016	2026-06-27 05:02	2026-06-25	Show	GitHub Exploit DB Packet Storm

740	7.5	HIGH Network	faraday_project	faraday	Faraday is an HTTP client library abstraction layer that provides a common interface over many adapters. From 1.0.0 until 1.10.6 and 2.14.3, Faraday::NestedParamsEncoder, the default nested query par… New	CWE-674 Uncontrolled Recursion	CVE-2026-54297	2026-06-27 05:01	2026-06-25	Show	GitHub Exploit DB Packet Storm