Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 28, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
201 6.5 警告
Network 		PEVANS (Paul Evans ) Metrics::Any::Adapter::SignalFx PEVANS (Paul Evans )のMetrics::Any::Adapter::SignalFxにおける複数の脆弱性 CWE-150
CWE-93
CVE-2026-50637
CVE-2026-50638
CVE-2026-50639
CVE-2026-9270 		2026-06-26 11:51 2026-06-10 Show GitHub Exploit DB Packet Storm
202 7.5 重要
Network 		Devolutions UniGetUI DevolutionsのUniGetUIにおける誤って解決された名前や参照の使用に関する脆弱性 CWE-706
誤って解決された名前や参照の使用 		CVE-2026-10696 2026-06-26 11:51 2026-06-17 Show GitHub Exploit DB Packet Storm
203 7.8 重要
Local 		デル AIOps Collector デルのAIOps Collectorにおけるデフォルトの認証情報の使用に関する脆弱性 CWE-1392
デフォルトの認証情報の使用 		CVE-2026-32652 2026-06-26 11:50 2026-06-17 Show GitHub Exploit DB Packet Storm
204 9.1 緊急
Network 		UI UniFi OS Server UIのUniFi OS Serverにおける入力確認に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2026-33000 2026-06-26 11:50 2026-05-22 Show GitHub Exploit DB Packet Storm
205 7.7 重要
Network 		UI UniFi Dream Machine Special Edition Firmware (UDM-SE)
UniFi Cloud Gateway Ultra Firmware (UCG-Ultra)
UniFi Network Video Re… 		UIのEnterprise Fortress Gateway Firmware (EFG)等の複数製品におけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-34911 2026-06-26 11:50 2026-05-22 Show GitHub Exploit DB Packet Storm
206 8.8 重要
Adjacent 		Palo Alto Networks IDIRA Privilege Cloud Connector Palo Alto NetworksのIDIRA Privilege Cloud Connectorにおける証明書検証に関する脆弱性 CWE-295
不正な証明書検証 		CVE-2026-45170 2026-06-26 11:50 2026-06-12 Show GitHub Exploit DB Packet Storm
207 8.8 重要
Network 		Palo Alto Networks IDIRA Privileged Session Manager (PSM) Palo Alto NetworksのIDIRA Privileged Session Manager (PSM)におけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-45171 2026-06-26 11:50 2026-06-11 Show GitHub Exploit DB Packet Storm
208 8.8 重要
Network 		Palo Alto Networks Privileged Session Manager (PSM) Palo Alto NetworksのPrivileged Session Manager (PSM)におけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-45172 2026-06-26 11:50 2026-06-11 Show GitHub Exploit DB Packet Storm
209 8.2 重要
Local 		マイクロソフト Microsoft MANA Network Driver Microsoft Azure ネットワーク アダプターの特権昇格の脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-45476 2026-06-26 11:50 2026-06-9 Show GitHub Exploit DB Packet Storm
210 7.8 重要
Local 		Leejet Stable-diffusion.cpp LeejetのStable-diffusion.cppにおける複数の脆弱性 CWE-122
CWE-787
CVE-2026-47747 2026-06-26 11:50 2026-06-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 29, 2026, 4:19 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
254271 4.3 MEDIUM
Network 		mybb mybb MyBB Group MyBB contains a Incorrect Access Control vulnerability in Private forums that can result in Users can view posts from private forums without having the password. This attack appear to be e… CWE-269
 Improper Privilege Management 		CVE-2018-1000503 2024-11-21 12:40 2018-06-27 Show GitHub Exploit DB Packet Storm
254272 7.2 HIGH
Network 		mybb mybb MyBB Group MyBB contains a File Inclusion vulnerability in Admin panel (Tools and Maintenance -> Task Manager -> Add New Task) that can result in Allows Local File Inclusion on modern PHP versions an… CWE-829
 Inclusion of Functionality from Untrusted Control Sphere 		CVE-2018-1000502 2024-11-21 12:40 2018-06-27 Show GitHub Exploit DB Packet Storm
254273 9.8 CRITICAL
Network 		instant-update instant_update_cms Instant Update CMS contains a Password Reset Vulnerability vulnerability in /iu-application/controllers/administration/auth.php that can result in Account Tackover. This attack appear to be exploitab… CWE-640
 Weak Password Recovery Mechanism for Forgotten Password 		CVE-2018-1000501 2024-11-21 12:40 2018-06-27 Show GitHub Exploit DB Packet Storm
254274 8.1 HIGH
Network 		busybox busybox Busybox contains a Missing SSL certificate validation vulnerability in The "busybox wget" applet that can result in arbitrary code execution. This attack appear to be exploitable via Simply download … CWE-295
Improper Certificate Validation  		CVE-2018-1000500 2024-11-21 12:40 2018-06-27 Show GitHub Exploit DB Packet Storm
254275 9.8 CRITICAL
Network 		xiongmaitech uc-httpd Buffer overflow in XiongMai uc-httpd 1.0.0 has unspecified impact and attack vectors, a different vulnerability than CVE-2017-16725. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2018-10088 2024-11-21 12:40 2018-06-8 Show GitHub Exploit DB Packet Storm
254276 8.8 HIGH
Network 		cgminer_project
bfgminer 		cgminer
bfgminer 		The remote management interface of cgminer 4.10.0 and bfgminer 5.5.0 allows an authenticated remote attacker to execute arbitrary code due to a stack-based buffer overflow in the addpool, failover-on… CWE-787
 Out-of-bounds Write 		CVE-2018-10058 2024-11-21 12:40 2018-06-6 Show GitHub Exploit DB Packet Storm
254277 6.5 MEDIUM
Network 		bfgminer
cgminer_project 		bfgminer
cgminer 		The remote management interface of cgminer 4.10.0 and bfgminer 5.5.0 allows an authenticated remote attacker to write the miner configuration file to arbitrary locations on the server due to missing … CWE-22
Path Traversal 		CVE-2018-10057 2024-11-21 12:40 2018-06-6 Show GitHub Exploit DB Packet Storm
254278 5.5 MEDIUM
Local 		kubernetes kubernetes In Kubernetes versions 1.5.x, 1.6.x, 1.7.x, 1.8.x, and prior to version 1.9.6, the kubectl cp command insecurely handles tar data returned from the container, and can be caused to overwrite arbitrary… CWE-20
 Improper Input Validation  		CVE-2018-1002100 2024-11-21 12:40 2018-06-2 Show GitHub Exploit DB Packet Storm
254279 5.5 MEDIUM
Local 		graphviz
fedoraproject
canonical 		graphviz
fedora
ubuntu_linux 		NULL pointer dereference vulnerability in the rebuild_vlists function in lib/dotgen/conc.c in the dotgen library in Graphviz 2.40.1 allows remote attackers to cause a denial of service (application c… CWE-476
 NULL Pointer Dereference 		CVE-2018-10196 2024-11-21 12:40 2018-05-31 Show GitHub Exploit DB Packet Storm
254280 6.1 MEDIUM
Network 		dolibarr dolibarr Cross-site scripting (XSS) vulnerability in Dolibarr before 7.0.2 allows remote attackers to inject arbitrary web script or HTML via the foruserlogin parameter to adherents/cartes/carte.php. CWE-79
Cross-site Scripting 		CVE-2018-10095 2024-11-21 12:40 2018-05-23 Show GitHub Exploit DB Packet Storm