Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 26, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 151 | 8.1 |
重要
Network |
Kidocode Sdn Bhd | Crawl4AI | Kidocode Sdn BhdのCrawl4AIにおけるパストラバーサルの脆弱性 New |
CWE-22
パス・トラバーサル |
CVE-2026-56258 | 2026-06-26 11:53 | 2026-06-23 | Show | GitHub Exploit DB Packet Storm |
| 152 | 6.1 |
警告
Network |
Kidocode Sdn Bhd | Crawl4AI | Kidocode Sdn BhdのCrawl4AIにおけるクロスサイトスクリプティングの脆弱性 New |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2026-56263 | 2026-06-26 11:53 | 2026-06-23 | Show | GitHub Exploit DB Packet Storm |
| 153 | 7.7 |
重要
Network |
flowiseai | flowise | flowiseaiのflowiseにおける不正な認証に関する脆弱性 New |
CWE-863
不正な認証 |
CVE-2026-56268 | 2026-06-26 11:53 | 2026-06-22 | Show | GitHub Exploit DB Packet Storm |
| 154 | 9.9 |
緊急
Network |
flowiseai | flowise | flowiseaiのflowiseにおけるOS コマンドインジェクションの脆弱性 New |
CWE-78
OSコマンド・インジェクション |
CVE-2026-56274 | 2026-06-26 11:53 | 2026-06-23 | Show | GitHub Exploit DB Packet Storm |
| 155 | 7.1 |
重要
Network |
flowiseai | flowise | flowiseaiのflowiseにおけるサーバサイドのリクエストフォージェリの脆弱性 New |
CWE-918
サーバサイドリクエストフォージェリ |
CVE-2026-56275 | 2026-06-26 11:53 | 2026-06-23 | Show | GitHub Exploit DB Packet Storm |
| 156 | 5.5 |
警告
Local |
nuxt | nuxt | Nuxtにおける不適切なデフォルトパーミッションに関する脆弱性 New |
CWE-276
不適切なデフォルトパーミッション |
CVE-2026-56301 | 2026-06-26 11:53 | 2026-06-23 | Show | GitHub Exploit DB Packet Storm |
| 157 | 6.5 |
警告
Network |
Matthieu Maitre | Picklescan | Matthieu MaitreのPicklescanにおける信頼できないデータのデシリアライゼーションに関する脆弱性 New |
CWE-502
信頼性のないデータのデシリアライゼーション |
CVE-2026-56304 | 2026-06-26 11:53 | 2026-06-20 | Show | GitHub Exploit DB Packet Storm |
| 158 | 6.1 |
警告
Network |
nuxt | nuxt | Nuxtにおけるクロスサイトスクリプティングの脆弱性 New |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2026-56317 | 2026-06-26 11:53 | 2026-06-20 | Show | GitHub Exploit DB Packet Storm |
| 159 | 6.1 |
警告
Network |
nuxt | nuxt | Nuxtにおけるオープンリダイレクトの脆弱性 New |
CWE-601
オープンリダイレクト |
CVE-2026-56326 | 2026-06-26 11:53 | 2026-06-22 | Show | GitHub Exploit DB Packet Storm |
| 160 | 9.9 |
緊急
Network |
n8n | n8n | n8nにおけるサーバサイドのリクエストフォージェリの脆弱性 New |
CWE-918
サーバサイドリクエストフォージェリ |
CVE-2026-56348 | 2026-06-26 11:53 | 2026-06-22 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 27, 2026, 4:35 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 190681 | 9.8 |
CRITICAL
Network |
digi | portserver_ts_16_firmware | Properly formatted POST requests to multiple resources on the HTTP and HTTPS web servers of the Digi PortServer TS 16 Rack device do not require authentication or authentication tokens. This vulnerab… |
CWE-306
Missing Authentication for Critical Function |
CVE-2021-38412 | 2024-11-21 15:17 | 2021-09-18 | Show | GitHub Exploit DB Packet Storm |
| 190682 | 7.8 |
HIGH
Local |
deltaww | dopsoft | Delta Electronic DOPSoft 2 (Version 2.00.07 and prior) lacks proper validation of user-supplied data when parsing specific project files. This could result in multiple out-of-bounds write instances. … | - | CVE-2021-38406 | 2024-11-21 15:17 | 2021-09-18 | Show | GitHub Exploit DB Packet Storm |
| 190683 | 7.8 |
HIGH
Local |
deltaww | dopsoft | Delta Electronic DOPSoft 2 (Version 2.00.07 and prior) lacks proper validation of user-supplied data when parsing specific project files. This could result in a heap-based buffer overflow. An attacke… | - | CVE-2021-38404 | 2024-11-21 15:17 | 2021-09-18 | Show | GitHub Exploit DB Packet Storm |
| 190684 | 7.8 |
HIGH
Local |
deltaww | dopsoft | Delta Electronic DOPSoft 2 (Version 2.00.07 and prior) lacks proper validation of user-supplied data when parsing specific project files. This could lead to a stack-based buffer overflow while trying… | - | CVE-2021-38402 | 2024-11-21 15:17 | 2021-09-18 | Show | GitHub Exploit DB Packet Storm |
| 190685 | 7.8 |
HIGH
Local |
microsoft |
windows_server_2008 windows_10 windows_server_2016 windows_rt_8.1 windows_server_2012 windows_server_2019 windows_server_2022 windows_7 windows_8.1 |
Windows Print Spooler Elevation of Privilege Vulnerability |
CWE-269
Improper Privilege Management |
CVE-2021-38671 | 2024-11-21 15:17 | 2021-09-15 | Show | GitHub Exploit DB Packet Storm |
| 190686 | 6.4 |
MEDIUM
Network |
microsoft |
edge_chromium edge |
Microsoft Edge (Chromium-based) Tampering Vulnerability |
NVD-CWE-noinfo
|
CVE-2021-38669 | 2024-11-21 15:17 | 2021-09-15 | Show | GitHub Exploit DB Packet Storm |
| 190687 | 7.8 |
HIGH
Local |
microsoft |
windows_server_2008 windows_10 windows_server_2016 windows_rt_8.1 windows_server_2012 windows_server_2019 windows_server_2022 windows_7 windows_8.1 |
Windows Print Spooler Elevation of Privilege Vulnerability |
CWE-269
Improper Privilege Management |
CVE-2021-38667 | 2024-11-21 15:17 | 2021-09-15 | Show | GitHub Exploit DB Packet Storm |
| 190688 | 7.8 |
HIGH
Local |
microsoft | hevc_video_extensions | HEVC Video Extensions Remote Code Execution Vulnerability |
NVD-CWE-noinfo
|
CVE-2021-38661 | 2024-11-21 15:17 | 2021-09-15 | Show | GitHub Exploit DB Packet Storm |
| 190689 | 7.8 |
HIGH
Local |
microsoft | excel | Microsoft Office Graphics Remote Code Execution Vulnerability |
NVD-CWE-noinfo
|
CVE-2021-38660 | 2024-11-21 15:17 | 2021-09-15 | Show | GitHub Exploit DB Packet Storm |
| 190690 | 7.8 |
HIGH
Local |
microsoft | 365_apps | Microsoft Office Graphics Remote Code Execution Vulnerability |
NVD-CWE-noinfo
|
CVE-2021-38659 | 2024-11-21 15:17 | 2021-09-15 | Show | GitHub Exploit DB Packet Storm |