Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 28, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
151	8.1	重要 Network	Kidocode Sdn Bhd	Crawl4AI	Kidocode Sdn BhdのCrawl4AIにおけるパストラバーサルの脆弱性 New	CWE-22 パス・トラバーサル	CVE-2026-56258	2026-06-26 11:53	2026-06-23	Show	GitHub Exploit DB Packet Storm

152	6.1	警告 Network	Kidocode Sdn Bhd	Crawl4AI	Kidocode Sdn BhdのCrawl4AIにおけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-56263	2026-06-26 11:53	2026-06-23	Show	GitHub Exploit DB Packet Storm

153	7.7	重要 Network	flowiseai	flowise	flowiseaiのflowiseにおける不正な認証に関する脆弱性 New	CWE-863 不正な認証	CVE-2026-56268	2026-06-26 11:53	2026-06-22	Show	GitHub Exploit DB Packet Storm

154	9.9	緊急 Network	flowiseai	flowise	flowiseaiのflowiseにおけるOS コマンドインジェクションの脆弱性 New	CWE-78 OSコマンド・インジェクション	CVE-2026-56274	2026-06-26 11:53	2026-06-23	Show	GitHub Exploit DB Packet Storm

155	7.1	重要 Network	flowiseai	flowise	flowiseaiのflowiseにおけるサーバサイドのリクエストフォージェリの脆弱性 New	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-56275	2026-06-26 11:53	2026-06-23	Show	GitHub Exploit DB Packet Storm

156	5.5	警告 Local	nuxt	nuxt	Nuxtにおける不適切なデフォルトパーミッションに関する脆弱性 New	CWE-276 不適切なデフォルトパーミッション	CVE-2026-56301	2026-06-26 11:53	2026-06-23	Show	GitHub Exploit DB Packet Storm

157	6.5	警告 Network	Matthieu Maitre	Picklescan	Matthieu MaitreのPicklescanにおける信頼できないデータのデシリアライゼーションに関する脆弱性 New	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2026-56304	2026-06-26 11:53	2026-06-20	Show	GitHub Exploit DB Packet Storm

158	6.1	警告 Network	nuxt	nuxt	Nuxtにおけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-56317	2026-06-26 11:53	2026-06-20	Show	GitHub Exploit DB Packet Storm

159	6.1	警告 Network	nuxt	nuxt	Nuxtにおけるオープンリダイレクトの脆弱性 New	CWE-601 オープンリダイレクト	CVE-2026-56326	2026-06-26 11:53	2026-06-22	Show	GitHub Exploit DB Packet Storm

160	9.9	緊急 Network	n8n	n8n	n8nにおけるサーバサイドのリクエストフォージェリの脆弱性 New	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-56348	2026-06-26 11:53	2026-06-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 28, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
256451	7.5	HIGH Network	microsoft	sql_server	Microsoft SQL Server Analysis Services in Microsoft SQL Server 2012, Microsoft SQL Server 2014, and Microsoft SQL Server 2016 allows an information disclosure vulnerability when it improperly enforce…	CWE-200 Information Exposure	CVE-2017-8516	2024-11-21 12:34	2017-08-9	Show	GitHub Exploit DB Packet Storm

256452	8.8	HIGH Local	microsoft	edge	Microsoft Edge in Microsoft Windows 10 1511, 1607, 1703, and Windows Server 2016 allows an attacker to escape from the AppContainer sandbox, aka "Microsoft Edge Elevation of Privilege Vulnerability".…	NVD-CWE-noinfo	CVE-2017-8503	2024-11-21 12:34	2017-08-9	Show	GitHub Exploit DB Packet Storm

256453	7.8	HIGH Local	microsoft	outlook	Microsoft Outlook 2007 SP3, Outlook 2010 SP2, Outlook 2013 SP1, Outlook 2013 RT SP1, and Outlook 2016 as packaged in Microsoft Office allows a remote code execution vulnerability due to the way Micro…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-8663	2024-11-21 12:34	2017-08-2	Show	GitHub Exploit DB Packet Storm

256454	5.5	MEDIUM Local	microsoft	outlook	Microsoft Outlook 2007 SP3, Outlook 2010 SP2, Outlook 2013 SP1, Outlook 2013 RT SP1, and Outlook 2016 as packaged in Microsoft Office allows an information disclosure vulnerability due to the way tha…	CWE-200 Information Exposure	CVE-2017-8572	2024-11-21 12:34	2017-08-2	Show	GitHub Exploit DB Packet Storm

256455	7.8	HIGH Local	microsoft	outlook	Microsoft Outlook 2007 SP3, Outlook 2010 SP2, Outlook 2013 SP1, Outlook 2013 RT SP1, and Outlook 2016 as packaged in Microsoft Office allows a security feature bypass vulnerability due to the way tha…	CWE-20 Improper Input Validation	CVE-2017-8571	2024-11-21 12:34	2017-08-2	Show	GitHub Exploit DB Packet Storm

256456	7.8	HIGH Local	mediacoderhq	audiocoder	Buffer overflow in AudioCoder 0.8.46 allows remote attackers to execute arbitrary code via a crafted .m3u file.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-8870	2024-11-21 12:34	2017-07-28	Show	GitHub Exploit DB Packet Storm

256457	7.8	HIGH Local	mediacoder	mediacoder	Buffer overflow in MediaCoder 0.8.48.5888 allows remote attackers to execute arbitrary code via a crafted .m3u file.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-8869	2024-11-21 12:34	2017-07-27	Show	GitHub Exploit DB Packet Storm

256458	6.5	MEDIUM Network	netapp	oncommand_api_services	NetApp OnCommand API Services before 1.2P3 logs the LDAP BIND password when a user attempts to log in using the REST API, which allows remote authenticated users to obtain sensitive password informat…	NVD-CWE-noinfo	CVE-2017-8919	2024-11-21 12:34	2017-07-26	Show	GitHub Exploit DB Packet Storm

256459	6.1	MEDIUM Network	owncloud	owncloud	ownCloud Server before 8.2.12, 9.0.x before 9.0.10, 9.1.x before 9.1.6, and 10.0.x before 10.0.2 are vulnerable to XSS on error pages by injecting code in url parameters.	CWE-79 Cross-site Scripting	CVE-2017-8896	2024-11-21 12:34	2017-07-18	Show	GitHub Exploit DB Packet Storm

256460	6.1	MEDIUM Network	microsoft	exchange_server	Microsoft Exchange Server 2010 SP3, Exchange Server 2013 SP3, Exchange Server 2013 CU16, and Exchange Server 2016 CU5 allows an open redirect vulnerability that could lead to spoofing, aka "Microsoft…	CWE-601 Open Redirect	CVE-2017-8621	2024-11-21 12:34	2017-07-12	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed