Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 29, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
134521 5.6 警告
Network 		JSDom JSDom JSDom における脆弱性 CWE-noinfo
情報不足 		CVE-2021-20066 2021-11-5 18:02 2021-02-16 Show GitHub Exploit DB Packet Storm
134522 4.4 警告
Local 		OPC Foundation UA .NET Standard OPC UA .NET Standard Stack における証明書検証に関する脆弱性 CWE-295
不正な証明書検証 		CVE-2020-29457 2021-11-5 18:02 2020-12-2 Show GitHub Exploit DB Packet Storm
134523 7.8 重要
Local 		Apache Software Foundation
Sebastian Hildebrandt		 Apache Cordova
systeminformation 		systeminformation における OS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2021-21315 2021-11-5 18:02 2021-02-14 Show GitHub Exploit DB Packet Storm
134524 9.8 緊急
Network 		ピーアンドエフ
Hilscher		 PCV100-F200-B25-V1D-6011 ファームウェア
PXV100-F200-B25-V1D ファームウェア
PCV80-F200-B25-V1D ファームウェア
PCV50-F200-B25-V1D ファームウェア
EtherNet/IP Adapter ファームウェア
PXV100I-F20… 		Hilscher EtherNet/IP Core V2 における境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2021-20987 2021-11-5 18:02 2021-02-16 Show GitHub Exploit DB Packet Storm
134525 7.5 重要
Network 		ピーアンドエフ
Hilscher		 PXV100-F200-B17-V1D-3636 ファームウェア
PGV100-F200A-B17-V1D ファームウェア
PCV80-F200-B17-V1D ファームウェア
PCV50-F200-B17-V1D ファームウェア
PGV150I-F200A-B17-V1D ファームウェア
PROFINET … 		Hilscher PROFINET IO Device における境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2021-20986 2021-11-5 18:02 2021-02-16 Show GitHub Exploit DB Packet Storm
134526 8.8 重要
Network 		PELCO Digital Sentry Server Pelco Digital Sentry Server における境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2021-27232 2021-11-5 18:02 2021-02-10 Show GitHub Exploit DB Packet Storm
134527 9.8 緊急
Network 		Testes de Codigo Testes de Codigo Testes de Codigo における不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2021-25648 2021-11-5 18:02 2021-02-15 Show GitHub Exploit DB Packet Storm
134528 9.8 緊急
Network 		Mutare Software Mutare Voice Mutare Voice におけるコードインジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2021-27236 2021-11-5 18:02 2021-02-5 Show GitHub Exploit DB Packet Storm
134529 4.9 警告
Network 		Mutare Software Mutare Voice Mutare Voice における脆弱性 CWE-noinfo
情報不足 		CVE-2021-27235 2021-11-5 18:02 2021-02-5 Show GitHub Exploit DB Packet Storm
134530 9.8 緊急
Network 		Mutare Software Mutare Voice Mutare Voice における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2021-27234 2021-11-5 18:02 2021-02-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 29, 2026, 4:19 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
511 6.1 MEDIUM
Network 		angularjs angularjs Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to 22.0.1, 21.2.17, and 20.3.25, Angular's HttpTransferCache … New CWE-328
CWE-345
 Use of Weak Hash
 Insufficient Verification of Data Authenticity 		CVE-2026-54266 2026-06-27 04:37 2026-06-23 Show GitHub Exploit DB Packet Storm
512 7.5 HIGH
Network 		aiohttp aiohttp AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to 3.14.1, if an attacker sends large incomplete websocket frame payloads, it may be possible to bypass the usual… New CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2026-54274 2026-06-27 04:37 2026-06-23 Show GitHub Exploit DB Packet Storm
513 7.5 HIGH
Network 		aiohttp aiohttp AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to 3.14.1, the server_hostname TLS SNI check can be bypassed when an existing connection is reused. If an applica… New CWE-297
 Improper Validation of Certificate with Host Mismatch 		CVE-2026-54275 2026-06-27 04:36 2026-06-23 Show GitHub Exploit DB Packet Storm
514 7.5 HIGH
Network 		aiohttp aiohttp AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to 3.14.1, host-only cookies that are saved with CookieJar.save() and then restored later with CookieJar.load() l… New CWE-665
 Improper Initialization 		CVE-2026-54279 2026-06-27 04:36 2026-06-23 Show GitHub Exploit DB Packet Storm
515 7.5 HIGH
Network 		aiohttp aiohttp AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to 3.14.1, payload resources are not closed correctly when a client disconnects in the middle of a write. If a pa… New CWE-404
 Improper Resource Shutdown or Release 		CVE-2026-54280 2026-06-27 04:35 2026-06-23 Show GitHub Exploit DB Packet Storm
516 6.1 MEDIUM
Network 		angularjs angularjs Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to 22.0.1, 21.2.17, and 20.3.25, to optimize client-side boot… New CWE-79
CWE-471
Cross-site Scripting
 Modification of Assumed-Immutable Data (MAID) 		CVE-2026-54267 2026-06-27 04:35 2026-06-23 Show GitHub Exploit DB Packet Storm
517 6.1 MEDIUM
Network 		angularjs angularjs Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to 22.0.1, 21.2.17, and 20.3.25, an issue in the @angular/com… New CWE-79
Cross-site Scripting 		CVE-2026-54265 2026-06-27 04:35 2026-06-23 Show GitHub Exploit DB Packet Storm
518 6.1 MEDIUM
Network 		angularjs angularjs Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to 22.0.0-rc.2, 21.2.15, 20.3.22, and 19.2.23, an issue in th… New CWE-79
Cross-site Scripting 		CVE-2026-52725 2026-06-27 04:34 2026-06-23 Show GitHub Exploit DB Packet Storm
519 5.8 MEDIUM
Network 		guzzlephp guzzle Guzzle is an extensible PHP HTTP client. Prior to 7.12.1, CookieJar incorrectly accepts cookies with a dot-only Domain attribute and whitespace-padded variants. SetCookie::matchesDomain() removes lea… New CWE-346
CWE-1286
 Origin Validation Error
 Improper Validation of Syntactic Correctness of Input 		CVE-2026-55767 2026-06-27 04:34 2026-06-24 Show GitHub Exploit DB Packet Storm
520 5.9 MEDIUM
Network 		guzzlephp guzzle Guzzle is an extensible PHP HTTP client. Prior to 7.12.1, in certain configurations, traffic expected to be protected by TLS on the hop to the proxy is transmitted in cleartext. Proxy authentication … New CWE-311
CWE-319
CWE-636
Missing Encryption of Sensitive Data
Cleartext Transmission of Sensitive Information
 Not Failing Securely ('Failing Open') 		CVE-2026-55568 2026-06-27 04:34 2026-06-24 Show GitHub Exploit DB Packet Storm