Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 28, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2961 5.3 警告
Network 		libxls project libxls libxls projectのlibxlsにおける初期化されていないリソースの使用に関する脆弱性 CWE-908
初期化されていないリソースの使用 		CVE-2026-26825 2026-06-8 11:48 2026-06-3 Show GitHub Exploit DB Packet Storm
2962 7.5 重要
Network 		SolarWinds Web Help Desk SolarWindsのWeb Help Deskにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-28299 2026-06-8 11:47 2026-06-2 Show GitHub Exploit DB Packet Storm
2963 7.5 重要
Network 		SolarWinds Serv-U SolarWindsのServ-Uにおけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2026-28318 2026-06-8 11:47 2026-06-4 Show GitHub Exploit DB Packet Storm
2964 7.1 重要
Network 		librechat librechat LibreChatにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-31942 2026-06-8 11:47 2026-06-2 Show GitHub Exploit DB Packet Storm
2965 9.6 緊急
Network 		librechat librechat LibreChatにおける情報漏えいに関する脆弱性 CWE-200
CWE-noinfo
CVE-2026-32625 2026-06-8 11:47 2026-06-2 Show GitHub Exploit DB Packet Storm
2966 4.7 警告
Network 		Shopify React Router ShopifyのReact Routerにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-33245 2026-06-8 11:47 2026-06-2 Show GitHub Exploit DB Packet Storm
2967 7.5 重要
Network 		Python Software Foundation Python Python Software FoundationのPythonにおける複数の脆弱性 CWE-116
CWE-20
CVE-2026-3644 2026-06-8 11:47 2026-03-16 Show GitHub Exploit DB Packet Storm
2968 6.1 警告
Network 		Shopify React Router ShopifyのReact Routerにおけるオープンリダイレクトの脆弱性 CWE-601
オープンリダイレクト 		CVE-2026-40181 2026-06-8 11:47 2026-06-2 Show GitHub Exploit DB Packet Storm
2969 7.8 重要
Local 		Linaro OP-TEE Trusted OS LinaroのOP-TEE Trusted OSにおける解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-40290 2026-06-8 11:47 2026-06-3 Show GitHub Exploit DB Packet Storm
2970 7.7 重要
Network 		lfprojects mlflow lfprojectsのmlflowにおける送信データへの重要な情報の挿入に関する脆弱性 CWE-201
送信データへの重要な情報の挿入 		CVE-2026-4035 2026-06-8 11:47 2026-06-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 29, 2026, 4:19 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1 3.5 LOW
Network 		- - A vulnerability has been found in code-projects Project Management System 1.0. This vulnerability affects unknown code of the file /mail.php of the component Mail Compose Page. Such manipulation lead… New CWE-79
CWE-94
Cross-site Scripting
Code Injection 		CVE-2026-13504 2026-06-29 01:16 2026-06-29 Show GitHub Exploit DB Packet Storm
2 5.3 MEDIUM
Network 		- - A vulnerability was detected in antlr ANTLR4 up to 4.13.2. Affected by this issue is the function getImportedVocabFile of the file tool/src/org/antlr/v4/parse/TokenVocabParser.java of the component t… New CWE-22
Path Traversal 		CVE-2026-13503 2026-06-29 01:16 2026-06-29 Show GitHub Exploit DB Packet Storm
3 4.5 MEDIUM
Local 		- - A flaw has been found in antlr ANTLR4 up to 4.13.2. This affects the function ObjectInputStream.readObject of the file antlr4-maven-plugin/src/main/java/org/antlr/mojo/antlr4/GrammarDependencies.java… New CWE-362
CWE-367
Race Condition
 Time-of-check Time-of-use (TOCTOU) Race Condition 		CVE-2026-13502 2026-06-29 00:16 2026-06-29 Show GitHub Exploit DB Packet Storm
4 5.3 MEDIUM
Local 		- - A security vulnerability has been detected in antlr ANTLR4 up to 4.13.2. Affected by this vulnerability is the function GoTarget of the file tool/src/org/antlr/v4/codegen/target/GoTarget.java of the … New CWE-74
CWE-77
Injection
Command Injection 		CVE-2026-13501 2026-06-29 00:16 2026-06-29 Show GitHub Exploit DB Packet Storm
5 7.3 HIGH
Network 		- - A weakness has been identified in antlr ANTLR4 up to 4.13.2. Affected is an unknown function of the file tool/src/org/antlr/v4/codegen/model/OutputFile.java of the component Grammar Action Block Hand… New CWE-74
CWE-94
Injection
Code Injection 		CVE-2026-13500 2026-06-29 00:16 2026-06-29 Show GitHub Exploit DB Packet Storm
6 4.3 MEDIUM
Network 		- - A security flaw has been discovered in yashpokharna2555 restaurent-management-system. This impacts an unknown function of the file login_register.php of the component Registration Handler. Performing… New CWE-79
CWE-94
Cross-site Scripting
Code Injection 		CVE-2026-13499 2026-06-28 23:16 2026-06-28 Show GitHub Exploit DB Packet Storm
7 7.3 HIGH
Network 		- - A vulnerability was identified in yashpokharna2555 restaurent-management-system. This affects an unknown function of the file /forgotpassword.php of the component POST Parameter Handler. Such manipul… New CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-13498 2026-06-28 22:16 2026-06-28 Show GitHub Exploit DB Packet Storm
8 6.3 MEDIUM
Network 		- - A vulnerability was determined in itsourcecode Hospital Management System 1.0. The impacted element is an unknown function of the file /appointment.php. This manipulation of the argument editid cause… New CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-13497 2026-06-28 22:16 2026-06-28 Show GitHub Exploit DB Packet Storm
9 6.3 MEDIUM
Network 		- - A vulnerability was found in itsourcecode Hospital Management System 1.0. The affected element is an unknown function of the file /ajaxmedicine.php. The manipulation of the argument medicineid result… New CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-13496 2026-06-28 22:16 2026-06-28 Show GitHub Exploit DB Packet Storm
10 4.7 MEDIUM
Network 		- - A vulnerability has been found in itsourcecode Hospital Management System 1.0. Impacted is an unknown function of the file /adminprofile.php. The manipulation of the argument loginid leads to sql inj… New CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-13495 2026-06-28 22:16 2026-06-28 Show GitHub Exploit DB Packet Storm