Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 29, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2081	6.5	警告 Network	Apache Software Foundation	Apache CXF	Apache Software FoundationのApache CXFにおける認証に関する脆弱性	CWE-287 CWE-noinfo	CVE-2026-50623	2026-06-15 11:15	2026-06-12	Show	GitHub Exploit DB Packet Storm

2082	5.3	警告 Network	Apache Software Foundation	Apache CXF	Apache Software FoundationのApache CXFにおけるCRLF インジェクションの脆弱性	CWE-93 CRLF インジェクション	CVE-2026-50629	2026-06-15 11:15	2026-06-12	Show	GitHub Exploit DB Packet Storm

2083	6.5	警告 Network	Apache Software Foundation	Apache CXF	Apache Software FoundationのApache CXFにおけるHTTP レスポンス分割に関する脆弱性	CWE-113 HTTP レスポンスの分割	CVE-2026-50630	2026-06-15 11:15	2026-06-12	Show	GitHub Exploit DB Packet Storm

2084	7.4	重要 Network	Apache Software Foundation	Apache CXF	Apache Software FoundationのApache CXFにおけるTime-of-check Time-of-use (TOCTOU) 競合状態の脆弱性	CWE-367 Time-of-check Time-of-use (TOCTOU) 競合状態	CVE-2026-50631	2026-06-15 11:15	2026-06-12	Show	GitHub Exploit DB Packet Storm

2085	8.1	重要 Network	Apache Software Foundation	Apache CXF	Apache Software FoundationのApache CXFにおける入力確認に関する脆弱性	CWE-20 CWE-noinfo	CVE-2026-50632	2026-06-15 11:15	2026-06-12	Show	GitHub Exploit DB Packet Storm

2086	8.1	重要 Network	Apache Software Foundation	Apache CXF	Apache Software FoundationのApache CXFにおける入力確認に関する脆弱性	CWE-20 CWE-noinfo	CVE-2026-50633	2026-06-15 11:15	2026-06-12	Show	GitHub Exploit DB Packet Storm

2087	6.5	警告 Network	Apache Software Foundation	Apache CXF	Apache Software FoundationのApache CXFにおけるデジタル署名の検証に関する脆弱性	CWE-347 デジタル署名の不適切な検証	CVE-2026-50634	2026-06-15 11:15	2026-06-12	Show	GitHub Exploit DB Packet Storm

2088	7.5	重要 Network	Apache Software Foundation	Apache CXF	Apache Software FoundationのApache CXFにおけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-50645	2026-06-15 11:15	2026-06-12	Show	GitHub Exploit DB Packet Storm

2089	8.8	重要 Network	OpenClaw	OpenClaw	OpenClawにおけるTime-of-check Time-of-use (TOCTOU) 競合状態の脆弱性	CWE-367 Time-of-check Time-of-use (TOCTOU) 競合状態	CVE-2026-53806	2026-06-15 11:15	2026-06-11	Show	GitHub Exploit DB Packet Storm

2090	8.8	重要 Network	OpenClaw	OpenClaw	OpenClawにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-53807	2026-06-15 11:14	2026-06-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 29, 2026, 4:19 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
651	-		-	-	An Improper Authorization vulnerability exists in PayloadCMS version 3.84.1 due to insufficient access control on the account unlock operation. New	CWE-307 mproper Restriction of Excessive Authentication Attempts	CVE-2026-11779	2026-06-27 03:16	2026-06-27	Show	GitHub Exploit DB Packet Storm

652	7.5	HIGH Network	-	-	Kernel driver ProcessMonitorDriver.sys in Safetica's endpoint client x64 , versions 10.5.75.0 and 11.11.4.0, allows unprivileged user to abuse IOCTL path and terminate protected system processes. New	-	CVE-2026-0828	2026-06-27 03:16	2026-06-27	Show	GitHub Exploit DB Packet Storm

653	9.8	CRITICAL Network	-	-	Server side template inject (SSTI) in the expression evaluation component in Genshi Template Engine version 0.7.9 allows a remote attacker to achieve remote code execution (RCE) via crafted template … New	-	CVE-2026-0685	2026-06-27 03:16	2026-06-27	Show	GitHub Exploit DB Packet Storm

654	7.5	HIGH Network	-	-	Contributor Local File Inclusion in Splash - Sport Club WordPress Theme for Basketball, Football, Hockey <= 4.4.3 versions. New	CWE-98 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')	CVE-2025-68063	2026-06-27 03:16	2026-06-27	Show	GitHub Exploit DB Packet Storm

655	8.8	HIGH Network	-	-	Unauthenticated Cross Site Request Forgery (CSRF) in Eagle Booking <= 1.3.4.3 versions. New	CWE-352 Origin Validation Error	CVE-2025-68052	2026-06-27 03:16	2026-06-27	Show	GitHub Exploit DB Packet Storm

656	4.3	MEDIUM Network	-	-	Subscriber Broken Access Control in Restaurant Menu by MotoPress <= 2.4.11 versions. New	CWE-862 Missing Authorization	CVE-2025-63078	2026-06-27 03:16	2026-06-27	Show	GitHub Exploit DB Packet Storm

657	5.4	MEDIUM Network	-	-	Contributor Broken Access Control in Forget About Shortcode Buttons <= 2.1.3 versions. New	CWE-862 Missing Authorization	CVE-2025-63041	2026-06-27 03:16	2026-06-27	Show	GitHub Exploit DB Packet Storm

658	9.6	CRITICAL Network	-	-	The default JVM can access files and directories under `/tmp/` including the `$TemporaryDirectory` of other users on the same cloud instance (`/tmp/UserTemporaryFiles/`). The `-init` file for the th… New	-	CVE-2025-11919	2026-06-27 03:16	2026-06-27	Show	GitHub Exploit DB Packet Storm

659	-		-	-	AutoGPT is a workflow automation platform for creating, deploying, and managing continuous artificial intelligence agents. Prior to 0.6.32, there is a DoS vulnerability in ExtractTextInformationBlock… New	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2025-32423	2026-06-27 03:13	2026-06-27	Show	GitHub Exploit DB Packet Storm

660	8.5	HIGH Network	-	-	AutoGPT is a workflow automation platform for creating, deploying, and managing continuous artificial intelligence agents. Prior to 0.6.52, an authenticated user can bypass the SSRF / private-IP prot… New	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-56663	2026-06-27 03:13	2026-06-27	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed