Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 29, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
31 8.8 重要
Network 		Dokku Dokku Dokkuにおけるリンク解釈に関する脆弱性 New CWE-59
リンク解釈の問題 		CVE-2026-45405 2026-06-29 11:24 2026-06-26 Show GitHub Exploit DB Packet Storm
32 8.8 重要
Network 		Dokku Dokku DokkuにおけるEval インジェクションに関する脆弱性 New CWE-95
Evalインジェクション 		CVE-2026-45406 2026-06-29 11:24 2026-06-26 Show GitHub Exploit DB Packet Storm
33 5.5 警告
Local 		Dokku Dokku Dokkuにおける認証情報の不十分な保護に関する脆弱性 New CWE-522
認証情報の不十分な保護 		CVE-2026-45407 2026-06-29 11:24 2026-06-26 Show GitHub Exploit DB Packet Storm
34 9 緊急
Network 		Dokku Dokku DokkuにおけるOS コマンドインジェクションの脆弱性 New CWE-78
OSコマンド・インジェクション 		CVE-2026-45408 2026-06-29 11:24 2026-06-26 Show GitHub Exploit DB Packet Storm
35 6.1 警告
Network 		Angular AngularJS AngularのAngularJSにおけるサーバサイドのリクエストフォージェリの脆弱性 New CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-46417 2026-06-29 11:24 2026-06-22 Show GitHub Exploit DB Packet Storm
36 7.8 重要
Local 		デル Server Hardware Manager デルのServer Hardware Managerにおけるアクセス制御に関する脆弱性 New CWE-284
CWE-Other
CVE-2026-46461 2026-06-29 11:24 2026-06-19 Show GitHub Exploit DB Packet Storm
37 9.1 緊急
Network 		オラクル JD Edwards EnterpriseOne Human Resources Management オラクルのJD Edwards EnterpriseOne Human Resources Managementにおける複数の脆弱性 New CWE-284
CWE-306
CVE-2026-46892 2026-06-29 11:24 2026-06-17 Show GitHub Exploit DB Packet Storm
38 9.9 緊急
Network 		オラクル JD Edwards EnterpriseOne General Ledger オラクルのJD Edwards EnterpriseOne General Ledgerにおける権限管理に関する脆弱性 New CWE-269
不適切な権限管理 		CVE-2026-46893 2026-06-29 11:24 2026-06-17 Show GitHub Exploit DB Packet Storm
39 7.5 重要
Network 		マイクロソフト Microsoft Cost Management Microsoft Cost Management Information Disclosure Vulnerability New CWE-200
情報漏えい 		CVE-2026-47633 2026-06-29 11:24 2026-06-18 Show GitHub Exploit DB Packet Storm
40 8.8 重要
Adjacent 		radvd radvd radvdにおけるスタックベースのバッファオーバーフローの脆弱性 New CWE-121
スタックオーバーフロー 		CVE-2026-48715 2026-06-29 11:24 2026-06-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 29, 2026, 4:19 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
3941 7.0 HIGH
Local 		milvus milvus A vulnerability has been found in milvus-io milvus up to 2.6.13. This vulnerability affects unknown code of the file internal/metastore/kv/rootcoord/kv_catalog.go of the component Grantee ID Hash Han… CWE-327
CWE-328
 Use of a Broken or Risky Cryptographic Algorithm
 Use of Weak Hash 		CVE-2026-10814 2026-06-11 02:32 2026-06-5 Show GitHub Exploit DB Packet Storm
3942 4.3 MEDIUM
Network 		google chrome Inappropriate implementation in File Input in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafte… CWE-451
 User Interface (UI) Misrepresentation of Critical Information 		CVE-2026-11228 2026-06-11 02:25 2026-06-5 Show GitHub Exploit DB Packet Storm
3943 6.5 MEDIUM
Network 		google chrome Type Confusion in XML in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted XML file. (Chromium security seve… CWE-843
Type Confusion 		CVE-2026-11196 2026-06-11 02:25 2026-06-5 Show GitHub Exploit DB Packet Storm
3944 5.5 MEDIUM
Local 		microsoft windows_11_24h2
windows_11_25h2
windows_11_26h1
windows_server_2025 		Out-of-bounds read in Windows DWM Core Library allows an authorized attacker to disclose information locally. CWE-125
Out-of-bounds Read 		CVE-2026-48566 2026-06-11 02:19 2026-06-10 Show GitHub Exploit DB Packet Storm
3945 7.9 HIGH
Local 		microsoft windows_10_1607
windows_10_1809
windows_10_21h2
windows_10_22h2
windows_11_23h2
windows_11_24h2
windows_11_25h2
windows_11_26h1
windows_server_2012
windows_server_2016
w… 		Protection mechanism failure in Windows Secure Boot allows an authorized attacker to bypass a security feature locally. CWE-693
 Protection Mechanism Failure 		CVE-2026-48568 2026-06-11 02:18 2026-06-10 Show GitHub Exploit DB Packet Storm
3946 7.9 HIGH
Local 		microsoft windows_10_1607
windows_10_1809
windows_10_21h2
windows_10_22h2
windows_11_23h2
windows_11_24h2
windows_11_25h2
windows_11_26h1
windows_server_2012
windows_server_2016
w… 		Protection mechanism failure in Windows Secure Boot allows an authorized attacker to bypass a security feature locally. CWE-693
 Protection Mechanism Failure 		CVE-2026-48570 2026-06-11 02:17 2026-06-10 Show GitHub Exploit DB Packet Storm
3947 8.3 HIGH
Network 		- - Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. In versions 8.2.6.4 and prior, there is an authentication bypass vulnerability via 'api' substring in URL + unau… CWE-287
CWE-306
CWE-697
Improper Authentication
Missing Authentication for Critical Function
 Incorrect Comparison 		CVE-2026-45567 2026-06-11 02:16 2026-06-11 Show GitHub Exploit DB Packet Storm
3948 6.1 MEDIUM
Network 		- - Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. In versions 8.2.6.4 and prior, the login flow allow-lists next URLs by rejecting strings containing https:// or … CWE-601
Open Redirect 		CVE-2026-45566 2026-06-11 02:16 2026-06-11 Show GitHub Exploit DB Packet Storm
3949 6.5 MEDIUM
Network 		- - Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. In versions 8.2.6.4 and prior, the /smon/agent/{version,uptime,status,checks}/<server_ip> family of routes takes… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-45561 2026-06-11 02:16 2026-06-11 Show GitHub Exploit DB Packet Storm
3950 6.1 MEDIUM
Network 		- - Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. In versions 8.2.6.4 and prior, wrap_line (app/modules/common/common.py:181-186) and highlight_word (app/modules/… CWE-79
Cross-site Scripting 		CVE-2026-45560 2026-06-11 02:16 2026-06-11 Show GitHub Exploit DB Packet Storm