Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 29, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
381	8.1	重要 Network	FasterXML, LLC	Jackson-databind	FasterXML, LLCのJackson-databindにおける不完全なブラックリストに関する脆弱性 New	CWE-184 不完全なブラックリスト	CVE-2026-54513	2026-06-29 11:06	2026-06-23	Show	GitHub Exploit DB Packet Storm

382	5.3	警告 Network	FasterXML, LLC	Jackson-databind	FasterXML, LLCのJackson-databindにおけるサーバサイドのリクエストフォージェリの脆弱性 New	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-54514	2026-06-29 11:06	2026-06-23	Show	GitHub Exploit DB Packet Storm

383	5.3	警告 Network	FasterXML, LLC	Jackson-databind	FasterXML, LLCのJackson-databindにおける動的に決定されたオブジェクト属性の不適切に制御された変更に関する脆弱性 New	CWE-915 動的に決定されたオブジェクト属性の不適切に制御された変更	CVE-2026-54516	2026-06-29 11:06	2026-06-23	Show	GitHub Exploit DB Packet Storm

384	5.3	警告 Network	FasterXML, LLC	Jackson-databind	FasterXML, LLCのJackson-databindにおける不正な認証に関する脆弱性 New	CWE-863 不正な認証	CVE-2026-54517	2026-06-29 11:06	2026-06-23	Show	GitHub Exploit DB Packet Storm

385	6.5	警告 Network	FasterXML, LLC	Jackson-databind	FasterXML, LLCのJackson-databindにおける不正な認証に関する脆弱性 New	CWE-863 不正な認証	CVE-2026-54518	2026-06-29 11:06	2026-06-23	Show	GitHub Exploit DB Packet Storm

386	7.5	重要 Network	Aqua Security	Trivy	Aqua SecurityのTrivyにおけるパストラバーサルの脆弱性 New	CWE-22 パス・トラバーサル	CVE-2026-55092	2026-06-29 11:06	2026-06-25	Show	GitHub Exploit DB Packet Storm

387	6.5	警告 Adjacent	dhcpcd project	dhcpcd	dhcpcd projectのdhcpcdにおける解放済みメモリの使用に関する脆弱性 New	CWE-416 解放済みメモリの使用	CVE-2026-56113	2026-06-29 11:06	2026-06-23	Show	GitHub Exploit DB Packet Storm

388	6.5	警告 Adjacent	dhcpcd project	dhcpcd	dhcpcd projectのdhcpcdにおける境界外書き込みに関する脆弱性 New	CWE-787 境界外書き込み	CVE-2026-56114	2026-06-29 11:06	2026-06-23	Show	GitHub Exploit DB Packet Storm

389	6.5	警告 Adjacent	dhcpcd project	dhcpcd	dhcpcd projectのdhcpcdにおける有効期限後のメモリの解放の欠如に関する脆弱性 New	CWE-401 有効期限後のメモリの解放の欠如	CVE-2026-56116	2026-06-29 11:06	2026-06-23	Show	GitHub Exploit DB Packet Storm

390	5.5	警告 Local	dhcpcd project	dhcpcd	dhcpcd projectのdhcpcdにおける解放済みメモリの使用に関する脆弱性 New	CWE-416 解放済みメモリの使用	CVE-2026-56117	2026-06-29 11:06	2026-06-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 30, 2026, 4:22 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
254161	9.8	CRITICAL Network	thinkphp	thinkphp	thinkphp 3.1.3 has SQL Injection via the index.php s parameter.	CWE-89 SQL Injection	CVE-2018-10225	2024-11-21 12:41	2018-04-19	Show	GitHub Exploit DB Packet Storm

254162	6.8	MEDIUM Network	yzmcms	yzmcms	An issue was discovered in YzmCMS 3.8. There is a CSRF vulnerability that can add a tag via /index.php/admin/tag/add.html.	CWE-352 Origin Validation Error	CVE-2018-10224	2024-11-21 12:41	2018-04-19	Show	GitHub Exploit DB Packet Storm

254163	6.8	MEDIUM Network	yzmcms	yzmcms	An issue was discovered in YzmCMS 3.8. There is a CSRF vulnerability that can add an admin account via /index.php/admin/admin_manage/add.html.	CWE-352 Origin Validation Error	CVE-2018-10223	2024-11-21 12:41	2018-04-19	Show	GitHub Exploit DB Packet Storm

254164	8.8	HIGH Network	icmsdev	icms	An issue was discovered in idreamsoft iCMS V7.0. There is a CSRF vulnerability that can add a Column via /admincp.php?app=article_category&do=save&frame=iPHP.	CWE-352 Origin Validation Error	CVE-2018-10222	2024-11-21 12:41	2018-04-19	Show	GitHub Exploit DB Packet Storm

254165	5.4	MEDIUM Network	wuzhicms	wuzhicms	An issue was discovered in WUZHI CMS V4.1.0. There is a persistent XSS vulnerability that can steal the administrator cookies via the tag[tag] parameter to the index.php?m=tags&f=index&v=add&&_su=wuz…	CWE-79 Cross-site Scripting	CVE-2018-10221	2024-11-21 12:41	2018-04-19	Show	GitHub Exploit DB Packet Storm

254166	8.8	HIGH Network	mushmush	glastopf	Glastopf 3.1.3-dev has SSRF, as demonstrated by the abc.php a parameter. NOTE: the vendor indicates that this is intentional behavior because the product is a web application honeypot, and modules/ha…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2018-10220	2024-11-21 12:41	2018-04-19	Show	GitHub Exploit DB Packet Storm

254167	5.3	MEDIUM Network	baijiacms_project	baijiacms	baijiacms V3 has physical path leakage via an index.php?mod=mobile&name=member&do=index request.	CWE-200 Information Exposure	CVE-2018-10219	2024-11-21 12:41	2018-04-19	Show	GitHub Exploit DB Packet Storm

254168	5.3	MEDIUM Network	hyper	hyperstart	hyperstart 1.0.0 in HyperHQ Hyper has memory leaks in the container_setup_modules and hyper_rescan_scsi functions in container.c, related to runV 1.0.0 for Docker.	CWE-772 Missing Release of Resource after Effective Lifetime	CVE-2018-10205	2024-11-21 12:41	2018-04-19	Show	GitHub Exploit DB Packet Storm

254169	9.8	CRITICAL Network	mruby	mruby	In versions of mruby up to and including 1.4.0, a use-after-free vulnerability exists in src/io.c::File#initilialize_copy(). An attacker that can cause Ruby code to be run can possibly use this to ex…	CWE-416 Use After Free	CVE-2018-10199	2024-11-21 12:41	2018-04-19	Show	GitHub Exploit DB Packet Storm

254170	8.8	HIGH Network	purevpn	purevpn	PureVPN 6.0.1 for Windows suffers from a SYSTEM privilege escalation vulnerability in its "sevpnclient" service. When configured to use the OpenVPN protocol, the "sevpnclient" service executes "openv…	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2018-10204	2024-11-21 12:41	2018-04-19	Show	GitHub Exploit DB Packet Storm