Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 2:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
191 6.1 警告
Network
pgadmin pgAdmin 4 pgAdmin ProjectのpgAdmin 4におけるオープンリダイレクトの脆弱性 New CWE-601
オープンリダイレクト
CVE-2026-12049 2026-06-30 11:23 2026-06-19 Show GitHub Exploit DB Packet Storm
192 8.8 重要
Network
pgadmin pgAdmin 4 pgAdmin ProjectのpgAdmin 4におけるSQL インジェクションの脆弱性 New CWE-89
SQLインジェクション
CVE-2026-12050 2026-06-30 11:23 2026-06-19 Show GitHub Exploit DB Packet Storm
193 4.4 警告
Local
Fortra File Integrity Monitoring FortraのFile Integrity Monitoringにおける不適切な権限設定に関する脆弱性 New CWE-266
不適切な権限設定
CVE-2026-12164 2026-06-30 11:23 2026-06-23 Show GitHub Exploit DB Packet Storm
194 2.7
Network
Devolutions Devolutions Server DevolutionsのDevolutions Serverにおける入力で指定された数量の不適切な検証に関する脆弱性 New CWE-1284
入力で指定された数量の不適切な検証
CVE-2026-12755 2026-06-30 11:23 2026-06-25 Show GitHub Exploit DB Packet Storm
195 6.5 警告
Adjacent
TP-LINK Technologies tapo c200 ファームウェア TP-LINK Technologiesのtapo c200 ファームウェアにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 New CWE-770
制限またはスロットリング無しのリソースの割り当て
CVE-2026-12760 2026-06-30 11:23 2026-06-24 Show GitHub Exploit DB Packet Storm
196 5.5 警告
Local
オートデスク株式会社 Revit オートデスク株式会社のRevitにおけるNULL ポインタデリファレンスに関する脆弱性 New CWE-476
NULL ポインタデリファレンス
CVE-2026-1288 2026-06-30 11:23 2026-06-17 Show GitHub Exploit DB Packet Storm
197 7.2 重要
Network
Devolutions Devolutions Remote Desktop Manager DevolutionsのDevolutions Remote Desktop Managerにおける誤って解決された名前や参照の使用に関する脆弱性 New CWE-706
誤って解決された名前や参照の使用
CVE-2026-13372 2026-06-30 11:23 2026-06-26 Show GitHub Exploit DB Packet Storm
198 5.4 警告
Network
- シスコシステムズのCisco Catalyst SD-WAN Managerにおけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2026-20108 2026-06-30 11:23 2026-03-25 Show GitHub Exploit DB Packet Storm
199 6.4 警告
Network
シスコシステムズ Cisco IoT Field Network Director シスコシステムズのCisco IoT Field Network Directorにおけるコマンドインジェクションの脆弱性 New CWE-77
コマンドインジェクション
CVE-2026-20169 2026-06-30 11:23 2026-05-6 Show GitHub Exploit DB Packet Storm
200 9.9 緊急
Network
シスコシステムズ Cisco Identity Services Engine (ISE) シスコシステムズのCisco Identity Services Engine (ISE)におけるコマンドインジェクションの脆弱性 New CWE-77
コマンドインジェクション
CVE-2026-20186 2026-06-30 11:23 2026-04-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
191061 9.8 CRITICAL
Network
openzeppelin contracts OpenZepplin is a library for smart contract development. In affected versions a vulnerability in TimelockController allowed an actor with the executor role to escalate privileges. Further details abo… CWE-269
 Improper Privilege Management
CVE-2021-39168 2024-11-21 15:18 2021-08-27 Show GitHub Exploit DB Packet Storm
191062 9.8 CRITICAL
Network
openzeppelin contracts OpenZepplin is a library for smart contract development. In affected versions a vulnerability in TimelockController allowed an actor with the executor role to escalate privileges. Further details abo… CWE-269
 Improper Privilege Management
CVE-2021-39167 2024-11-21 15:18 2021-08-27 Show GitHub Exploit DB Packet Storm
191063 6.5 MEDIUM
Network
chachethq cachet Cachet is an open source status page. With Cachet prior to and including 2.3.18, there is a SQL injection which is in the `SearchableTrait#scopeSearch()`. Attackers without authentication can utilize… - CVE-2021-39165 2024-11-21 15:18 2021-08-27 Show GitHub Exploit DB Packet Storm
191064 5.4 MEDIUM
Network
discourse discourse Discourse is an open source platform for community discussion. In affected versions category names can be used for Cross-site scripting(XSS) attacks. This is mitigated by Discourse's default Content … CWE-79
Cross-site Scripting
CVE-2021-39161 2024-11-21 15:18 2021-08-27 Show GitHub Exploit DB Packet Storm
191065 9.8 CRITICAL
Network
jupyter binderhub BinderHub is a kubernetes-based cloud service that allows users to share reproducible interactive computing environments from code repositories. In affected versions a remote code execution vulnerabi… CWE-78
OS Command 
CVE-2021-39159 2024-11-21 15:18 2021-08-26 Show GitHub Exploit DB Packet Storm
191066 8.8 HIGH
Network
jupyterhub nbgitpuller nbgitpuller is a Jupyter server extension to sync a git repository one-way to a local path. Due to unsanitized input, visiting maliciously crafted links could result in arbitrary code execution in th… CWE-78
OS Command 
CVE-2021-39160 2024-11-21 15:18 2021-08-26 Show GitHub Exploit DB Packet Storm
191067 5.4 MEDIUM
Network
basercms basercms baserCMS is an open source content management system with a focus on Japanese language support. In affected versions there is a cross-site scripting vulnerability in the file upload function of the m… - CVE-2021-39136 2024-11-21 15:18 2021-08-26 Show GitHub Exploit DB Packet Storm
191068 4.8 MEDIUM
Network
atlassian data_center
jira
jira_server
jira_data_center
Affected versions of Atlassian Jira Server and Data Center allow remote attackers to redirect users to a malicious URL via a reverse tabnapping vulnerability in the Project Shortcuts feature. The aff… CWE-601
Open Redirect
CVE-2021-39112 2024-11-21 15:18 2021-08-25 Show GitHub Exploit DB Packet Storm
191069 7.5 HIGH
Network
istio istio Istio is an open source platform for providing a uniform way to integrate microservices, manage traffic flow across microservices, enforce policies and aggregate telemetry data. Istio 1.11.0, 1.10.3 … CWE-706
 Use of Incorrectly-Resolved Name or Reference
CVE-2021-39156 2024-11-21 15:18 2021-08-25 Show GitHub Exploit DB Packet Storm
191070 7.5 HIGH
Network
istio istio Istio is an open source platform for providing a uniform way to integrate microservices, manage traffic flow across microservices, enforce policies and aggregate telemetry data. According to [RFC 434… CWE-178
CWE-863
 Improper Handling of Case Sensitivity
 Incorrect Authorization
CVE-2021-39155 2024-11-21 15:18 2021-08-25 Show GitHub Exploit DB Packet Storm