Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 30, 2026, 12:08 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
134821 7.8 重要
Local 		アドビシステムズ Adobe Acrobat DC
Adobe Acrobat
Adobe Acrobat Reader DC 		Adobe Reader および Acrobat における解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2021-39837 2021-11-2 17:42 2021-09-14 Show GitHub Exploit DB Packet Storm
134822 7.8 重要
Local 		アドビシステムズ Adobe Acrobat DC
Adobe Acrobat
Adobe Acrobat Reader DC 		Adobe Reader および Acrobat における制御されていない検索パスの要素に関する脆弱性 CWE-427
制御されていない検索パスの要素 		CVE-2021-35982 2021-11-2 17:42 2021-09-14 Show GitHub Exploit DB Packet Storm
134823 7.8 重要
Local 		アドビシステムズ Adobe Acrobat DC
Adobe Acrobat
Adobe Acrobat Reader DC 		Adobe Reader および Acrobat における解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2021-40726 2021-11-2 17:42 2021-09-14 Show GitHub Exploit DB Packet Storm
134824 7.8 重要
Local 		アドビシステムズ Adobe Acrobat DC
Adobe Acrobat
Adobe Acrobat Reader DC 		Adobe Reader および Acrobat における解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2021-40725 2021-11-2 17:42 2021-09-14 Show GitHub Exploit DB Packet Storm
134825 7.8 重要
Local 		MB CONNECT LINE mymbCONNECT24
mbCONNECT24 		MB CONNECT LINE 製 mymbCONNECT24 および mbCONNECT24 におけるハードコードされた認証情報の使用に関する脆弱性 CWE-798
ハードコードされた認証情報の使用 		CVE-2020-35567 2021-11-2 17:39 2020-07-16 Show GitHub Exploit DB Packet Storm
134826 4.3 警告
Network 		MB CONNECT LINE mymbCONNECT24
mbCONNECT24 		MB CONNECT LINE 製 mymbCONNECT24 および mbCONNECT24 における情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2020-35568 2021-11-2 17:31 2020-07-16 Show GitHub Exploit DB Packet Storm
134827 8.8 重要
Network 		Google
Outlook.com		 Microsoft Edge Chromium
Google Chrome 		Chromium CVE-2021-21122: Use after free in Blink CWE-416
解放済みメモリの使用 		CVE-2021-21122 2021-11-2 17:28 2021-01-19 Show GitHub Exploit DB Packet Storm
134828 5.7 警告
Adjacent 		Tufin SecureTrack Tufin SecureChange におけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2020-13462 2021-11-2 17:28 2020-05-25 Show GitHub Exploit DB Packet Storm
134829 4.3 警告
Adjacent 		Tufin SecureTrack Tufin SecureTrack における脆弱性 CWE-noinfo
情報不足 		CVE-2020-13461 2021-11-2 17:28 2020-05-25 Show GitHub Exploit DB Packet Storm
134830 5.5 警告
Local 		アドビシステムズ Adobe Acrobat DC
Adobe Acrobat
Adobe Acrobat Reader DC 		Adobe Reader および Acrobat における NULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2021-39849 2021-11-2 17:28 2021-09-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 30, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
281 5.3 MEDIUM
Network 		- - Unauthenticated Content Injection in Auros Core <= 5.3.1 versions. Update CWE-80
Basic XSS 		CVE-2025-64637 2026-06-30 01:16 2026-06-27 Show GitHub Exploit DB Packet Storm
282 9.8 CRITICAL
Network 		rclone rclone Rclone is a command-line program to sync files and directories to and from different cloud storage providers. From 1.46.0 until 1.74.3, rclone rcd --rc-serve accepts unauthenticated GET and HEAD requ… Update CWE-306
CWE-78
Missing Authentication for Critical Function
OS Command  		CVE-2026-49980 2026-06-30 01:11 2026-06-25 Show GitHub Exploit DB Packet Storm
283 2.7 LOW
Network 		appsmith appsmith Appsmith is a platform to build admin panels, internal tools, and dashboards. Prior to 1.99, the POST /api/v1/admin/send-test-email endpoint accepts attacker-controlled smtpHost and smtpPort values a… Update CWE-209
CWE-918
Information Exposure Through an Error Message
Server-Side Request Forgery (SSRF)  		CVE-2026-49979 2026-06-30 01:06 2026-06-25 Show GitHub Exploit DB Packet Storm
284 6.5 MEDIUM
Network 		librechat librechat LibreChat is an enhanced ChatGPT clone that supports multiple AI providers. Prior to 0.8.4-rc1, the fix for CVE-2024-11171 (commit bb58a2d0) added limits: { fileSize } to createMulterInstance() in th… Update CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2026-54024 2026-06-30 01:03 2026-06-26 Show GitHub Exploit DB Packet Storm
285 5.4 MEDIUM
Network 		librechat librechat LibreChat is an enhanced ChatGPT clone that supports multiple AI providers. Prior to 0.8.4-rc1, there is a vulnerability in LibreChat's markdown artifact preview pipeline. The marked library v15.0.12… Update CWE-79
Cross-site Scripting 		CVE-2026-54025 2026-06-30 01:02 2026-06-26 Show GitHub Exploit DB Packet Storm
286 7.1 HIGH
Network 		librechat librechat LibreChat is an enhanced ChatGPT clone that supports multiple AI providers. Prior to 0.8.4-rc1, the POST /api/auth/2fa/backup/regenerate endpoint regenerates all 2FA backup codes without requiring an… Update CWE-306
Missing Authentication for Critical Function 		CVE-2026-54040 2026-06-30 01:00 2026-06-26 Show GitHub Exploit DB Packet Storm
287 6.5 MEDIUM
Network 		librechat librechat LibreChat is an enhanced ChatGPT clone that supports multiple AI providers. Prior to 0.8.4-rc1, the fix for CVE-2025-7105 added forkIpLimiter and forkUserLimiter rate limiters to POST /api/convos/for… Update CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2026-54037 2026-06-30 00:54 2026-06-26 Show GitHub Exploit DB Packet Storm
288 6.5 MEDIUM
Network 		librechat librechat LibreChat is an enhanced ChatGPT clone that supports multiple AI providers. Prior to 0.8.4-rc1, LibreChat allows users to configure custom OpenAI-compatible API endpoints by setting a baseURL. This U… Update CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-54033 2026-06-30 00:39 2026-06-26 Show GitHub Exploit DB Packet Storm
289 6.5 MEDIUM
Network 		librechat librechat LibreChat is an enhanced ChatGPT clone that supports multiple AI providers. Prior to 0.8.4-rc1, the DELETE /api/messages/:conversationId/:messageId endpoint allows any authenticated user to delete an… Update CWE-862
 Missing Authorization 		CVE-2026-54029 2026-06-30 00:36 2026-06-26 Show GitHub Exploit DB Packet Storm
290 5.4 MEDIUM
Network 		- - nghttp2's nghttpx proxy through 1.69.0 forwards an HTTP/1.1 Upgrade request that also carries a Content-Length header and body onto reusable keep-alive backend connections, re-adding the Upgrade and … New CWE-444
HTTP Request Smuggling 		CVE-2026-58055 2026-06-30 00:16 2026-06-28 Show GitHub Exploit DB Packet Storm