Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 29, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
261	7.5	重要 Network	AIOHTTP	AIOHTTP	AIOHTTPにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 New	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-54274	2026-06-29 11:12	2026-06-22	Show	GitHub Exploit DB Packet Storm

262	7.5	重要 Network	AIOHTTP	AIOHTTP	AIOHTTPにおけるホストの不一致による証明書の検証に関する脆弱性 New	CWE-297 ホストの不一致による証明書の不適切な検証	CVE-2026-54275	2026-06-29 11:12	2026-06-22	Show	GitHub Exploit DB Packet Storm

263	7.5	重要 Network	AIOHTTP	AIOHTTP	AIOHTTPにおける高圧縮データの処理 (データ増幅)に関する脆弱性 New	CWE-409 高圧縮データの不適切な処理 (データ増幅)	CVE-2026-54278	2026-06-29 11:12	2026-06-22	Show	GitHub Exploit DB Packet Storm

264	7.5	重要 Network	AIOHTTP	AIOHTTP	AIOHTTPにおける初期化に関する脆弱性 New	CWE-665 不適切な初期化	CVE-2026-54279	2026-06-29 11:12	2026-06-22	Show	GitHub Exploit DB Packet Storm

265	7.5	重要 Network	AIOHTTP	AIOHTTP	AIOHTTPにおけるリソースの不適切なシャットダウンおよびリリースに関する脆弱性 New	CWE-404 リソースの不適切なシャットダウンおよびリリース	CVE-2026-54280	2026-06-29 11:12	2026-06-22	Show	GitHub Exploit DB Packet Storm

266	5.3	警告 Network	Encode	Starlette	EncodeのStarletteにおける誤って解決された名前や参照の使用に関する脆弱性 New	CWE-706 誤って解決された名前や参照の使用	CVE-2026-54282	2026-06-29 11:12	2026-06-22	Show	GitHub Exploit DB Packet Storm

267	7.5	重要 Network	Encode	Starlette	EncodeのStarletteにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 New	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-54283	2026-06-29 11:12	2026-06-22	Show	GitHub Exploit DB Packet Storm

268	7.5	重要 Network	NLTK	NLTK	NLTKにおけるパストラバーサルの脆弱性 New	CWE-22 パス・トラバーサル	CVE-2026-54293	2026-06-29 11:12	2026-06-22	Show	GitHub Exploit DB Packet Storm

269	7.5	重要 Network	Faraday Project	Faraday	Faraday ProjectのFaradayにおける再帰制御に関する脆弱性 New	CWE-674 不適切な再帰制御	CVE-2026-54297	2026-06-29 11:12	2026-06-24	Show	GitHub Exploit DB Packet Storm

270	5.4	警告 Network	n8n	n8n	n8nにおけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-54301	2026-06-29 11:12	2026-06-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 29, 2026, 4:19 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
190631	5.4	MEDIUM Network	wordpress	wordpress	WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. In affected versions the widgets editor introduced in WordPress 5.8 beta 1 ha…	-	CVE-2021-39202	2024-11-21 15:18	2021-09-10	Show	GitHub Exploit DB Packet Storm

190632	5.4	MEDIUM Network	wordpress debian	wordpress debian_linux	WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. ### Impact The issue allows an authenticated but low-privileged user (like co…	-	CVE-2021-39201	2024-11-21 15:18	2021-09-10	Show	GitHub Exploit DB Packet Storm

190633	8.6	HIGH Network	envoyproxy pomerium	envoy pomerium	Pomerium is an open source identity-aware access proxy. Envoy, which Pomerium is based on, can abnormally terminate if an H/2 GOAWAY and SETTINGS frame are received in the same IO event. This can lea…	-	CVE-2021-39162	2024-11-21 15:18	2021-09-10	Show	GitHub Exploit DB Packet Storm

190634	5.3	MEDIUM Network	wordpress debian	wordpress debian_linux	WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. In affected versions output data of the function wp_die() can be leaked under…	-	CVE-2021-39200	2024-11-21 15:18	2021-09-10	Show	GitHub Exploit DB Packet Storm

190635	5.3	MEDIUM Network	atlassian	data_center jira jira_server jira_data_center	Affected versions of Atlassian Jira Server and Data Center allow anonymous remote attackers to view users' emails via an Information Disclosure vulnerability in the /rest/api/2/search endpoint. The a…	NVD-CWE-noinfo	CVE-2021-39122	2024-11-21 15:18	2021-09-8	Show	GitHub Exploit DB Packet Storm

190636	4.3	MEDIUM Network	atlassian	jira data_center jira_server jira_data_center	Affected versions of Atlassian Jira Server and Data Center allow authenticated remote attackers to enumerate the keys of private Jira projects via an Information Disclosure vulnerability in the /rest…	NVD-CWE-noinfo	CVE-2021-39121	2024-11-21 15:18	2021-09-8	Show	GitHub Exploit DB Packet Storm

190637	5.5	MEDIUM Local	atlassian	jira_server jira_data_center	Affected versions of Atlassian Jira Server and Data Center allow remote attackers to impact the application's availability via a Denial of Service (DoS) vulnerability in the GIF Image Reader componen…	NVD-CWE-noinfo	CVE-2021-39116	2024-11-21 15:18	2021-09-8	Show	GitHub Exploit DB Packet Storm

190638	6.5	MEDIUM Network	kaml_project	kaml	kaml is an open source implementation of the YAML format with support for kotlinx.serialization. In affected versions attackers that could provide arbitrary YAML input to an application that uses kam…	-	CVE-2021-39194	2024-11-21 15:18	2021-09-8	Show	GitHub Exploit DB Packet Storm

190639	6.1	MEDIUM Network	remark	remark-html	remark-html is an open source nodejs library which compiles Markdown to HTML. In affected versions the documentation of remark-html has mentioned that it was safe by default. In practice the default …	-	CVE-2021-39199	2024-11-21 15:18	2021-09-8	Show	GitHub Exploit DB Packet Storm

190640	6.5	MEDIUM Network	pcapture_project	pcapture	pcapture is an open source dumpcap web service interface . In affected versions this vulnerability allows an authenticated but unprivileged user to use the REST API to capture and download packets wi…	CWE-754 Improper Check for Unusual or Exceptional Conditions	CVE-2021-39196	2024-11-21 15:18	2021-09-8	Show	GitHub Exploit DB Packet Storm