Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 30, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
241 9.8 緊急
Network 		JetBrains Hub JetBrainsのHubにおける重要な機能に対する認証の欠如に関する脆弱性 New CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2026-50242 2026-06-29 11:13 2026-06-19 Show GitHub Exploit DB Packet Storm
242 7.5 重要
Network 		AIOHTTP AIOHTTP AIOHTTPにおける複数の脆弱性 New CWE-113
CWE-93
CVE-2026-50269 2026-06-29 11:13 2026-06-22 Show GitHub Exploit DB Packet Storm
243 9.8 緊急
Network 		Anysphere Cursor AnysphereのCursorにおけるパストラバーサルの脆弱性 New CWE-22
パス・トラバーサル 		CVE-2026-50548 2026-06-29 11:13 2026-06-25 Show GitHub Exploit DB Packet Storm
244 9.8 緊急
Network 		Anysphere Cursor AnysphereのCursorにおけるリンク解釈に関する脆弱性 New CWE-59
リンク解釈の問題 		CVE-2026-50549 2026-06-29 11:13 2026-06-25 Show GitHub Exploit DB Packet Storm
245 7.5 重要
Network 		Quarkus Quarkus Quarkusにおける複数の脆弱性 New CWE-287
CWE-863
CWE-863
CVE-2026-50559 2026-06-29 11:13 2026-06-19 Show GitHub Exploit DB Packet Storm
246 9.6 緊急
Network 		yt-dlp project yt-dlp yt-dlp projectのyt-dlpにおけるインジェクションに関する脆弱性 New CWE-74
インジェクション 		CVE-2026-50574 2026-06-29 11:13 2026-06-23 Show GitHub Exploit DB Packet Storm
247 8.1 重要
Network 		- Light Code LabsのCaddyにおける複数の脆弱性 New CWE-287
CWE-290
CWE-444
CVE-2026-52845 2026-06-29 11:13 2026-06-23 Show GitHub Exploit DB Packet Storm
248 5.4 警告
Network 		GitLab.org GitLab GitLab.orgのGitLabにおけるユーザ制御の鍵による認証回避に関する脆弱性 New CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-5309 2026-06-29 11:13 2026-06-25 Show GitHub Exploit DB Packet Storm
249 9.8 緊急
Network 		Zoom Video Communications, Inc. Zoom Workplace Zoom Video Communications, Inc.のZoom Workplaceにおけるカスタム URL スキームのハンドラの不適切な認可に関する脆弱性 New CWE-939
カスタム URL スキームのハンドラの不適切な認可 		CVE-2026-53407 2026-06-29 11:13 2026-06-12 Show GitHub Exploit DB Packet Storm
250 5.3 警告
Network 		The FastAPI Expert python-multipart The FastAPI Expertのpython-multipartにおける複数の脆弱性 New CWE-20
CWE-436
CVE-2026-53537 2026-06-29 11:13 2026-06-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 30, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
254281 8.1 HIGH
Network 		artica integria_ims Artica Integria IMS version 5.0 MR56 Package 58, likely earlier versions contains a CWE-640: Weak Password Recovery Mechanism for Forgotten Password vulnerability in Password recovery process, line 4… CWE-640
 Weak Password Recovery Mechanism for Forgotten Password 		CVE-2018-1000812 2024-11-21 12:40 2018-12-21 Show GitHub Exploit DB Packet Storm
254282 8.8 HIGH
Network 		bludit bludit bludit version 3.0.0 contains a Unrestricted Upload of File with Dangerous Type vulnerability in Content Upload in Pages Editor that can result in Remote Command Execution. This attack appear to be e… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2018-1000811 2024-11-21 12:40 2018-12-21 Show GitHub Exploit DB Packet Storm
254283 9.8 CRITICAL
Network 		paloaltonetworks expedition The Palo Alto Networks Expedition Migration tool 1.0.107 and earlier may allow an unauthenticated attacker with remote access to run system level commands on the device hosting this service/applicati… CWE-269
 Improper Privilege Management 		CVE-2018-10143 2024-11-21 12:40 2018-12-12 Show GitHub Exploit DB Packet Storm
254284 8.8 HIGH
Network 		jenkins
redhat 		pipeline\
openshift_container_platform 		A sandbox bypass vulnerability exists in Pipeline: Groovy Plugin 2.59 and earlier in groovy-sandbox/src/main/java/org/kohsuke/groovy/sandbox/SandboxTransformer.java, groovy-cps/lib/src/main/java/com/… CWE-269
 Improper Privilege Management 		CVE-2018-1000866 2024-11-21 12:40 2018-12-10 Show GitHub Exploit DB Packet Storm
254285 8.8 HIGH
Network 		jenkins
redhat 		script_security
openshift_container_platform 		A sandbox bypass vulnerability exists in Script Security Plugin 1.47 and earlier in groovy-sandbox/src/main/java/org/kohsuke/groovy/sandbox/SandboxTransformer.java that allows attackers with Job/Conf… CWE-269
 Improper Privilege Management 		CVE-2018-1000865 2024-11-21 12:40 2018-12-10 Show GitHub Exploit DB Packet Storm
254286 6.5 MEDIUM
Network 		jenkins
redhat 		jenkins
openshift_container_platform 		A denial of service vulnerability exists in Jenkins 2.153 and earlier, LTS 2.138.3 and earlier in CronTab.java that allows attackers with Overall/Read permission to have a request handling thread ent… CWE-835
 Loop with Unreachable Exit Condition ('Infinite Loop') 		CVE-2018-1000864 2024-11-21 12:40 2018-12-10 Show GitHub Exploit DB Packet Storm
254287 8.2 HIGH
Network 		jenkins
redhat 		jenkins
openshift_container_platform 		A data modification vulnerability exists in Jenkins 2.153 and earlier, LTS 2.138.3 and earlier in User.java, IdStrategy.java that allows attackers to submit crafted user names that can cause an impro… CWE-22
Path Traversal 		CVE-2018-1000863 2024-11-21 12:40 2018-12-10 Show GitHub Exploit DB Packet Storm
254288 4.3 MEDIUM
Network 		jenkins
redhat 		jenkins
openshift_container_platform 		An information exposure vulnerability exists in Jenkins 2.153 and earlier, LTS 2.138.3 and earlier in DirectoryBrowserSupport.java that allows attackers with the ability to control build output to br… CWE-200
Information Exposure 		CVE-2018-1000862 2024-11-21 12:40 2018-12-10 Show GitHub Exploit DB Packet Storm
254289 9.8 CRITICAL
Network 		jenkins
redhat 		jenkins
openshift_container_platform 		A code execution vulnerability exists in the Stapler web framework used by Jenkins 2.153 and earlier, LTS 2.138.3 and earlier in stapler/core/src/main/java/org/kohsuke/stapler/MetaClass.java that all… CWE-502
 Deserialization of Untrusted Data 		CVE-2018-1000861 2024-11-21 12:40 2018-12-10 Show GitHub Exploit DB Packet Storm
254290 8.8 HIGH
Network 		kubernetes minikube In Minikube versions 0.3.0-0.29.0, minikube exposes the Kubernetes Dashboard listening on the VM IP at port 30000. In VM environments where the IP is easy to predict, the attacker can use DNS rebindi… CWE-352
 Origin Validation Error 		CVE-2018-1002103 2024-11-21 12:40 2018-12-6 Show GitHub Exploit DB Packet Storm