Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 29, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
41	9.1	緊急 Network	langchain	langgraph-sdk	langchainのlanggraph-sdkにおける複数の脆弱性 New	CWE-22 CWE-22 CWE-863	CVE-2026-48776	2026-06-29 11:24	2026-06-17	Show	GitHub Exploit DB Packet Storm

42	8.8	重要 Network	angular	Angular Language Service	angularのAngular Language Serviceにおける複数の脆弱性 New	CWE-427 CWE-494 CWE-79 CWE-94	CVE-2026-49241	2026-06-29 11:24	2026-06-22	Show	GitHub Exploit DB Packet Storm

43	6.1	警告 Network	Angular	AngularJS	AngularのAngularJSにおける複数の脆弱性 New	CWE-200 CWE-441 CWE-524	CVE-2026-50169	2026-06-29 11:24	2026-06-22	Show	GitHub Exploit DB Packet Storm

44	6.1	警告 Network	Angular	AngularJS	AngularのAngularJSにおける複数の脆弱性 New	CWE-400 CWE-834	CVE-2026-50171	2026-06-29 11:24	2026-06-22	Show	GitHub Exploit DB Packet Storm

45	8.8	重要 Network	angular	Angular Language Service	angularのAngular Language Serviceにおける複数の脆弱性 New	CWE-79 CWE-94	CVE-2026-50178	2026-06-29 11:24	2026-06-22	Show	GitHub Exploit DB Packet Storm

46	6.1	警告 Network	Angular	AngularJS	AngularのAngularJSにおける複数の脆弱性 New	CWE-200 CWE-524	CVE-2026-50184	2026-06-29 11:24	2026-06-22	Show	GitHub Exploit DB Packet Storm

47	6.1	警告 Network	Angular	AngularJS	AngularのAngularJSにおけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-50555	2026-06-29 11:24	2026-06-22	Show	GitHub Exploit DB Packet Storm

48	6.1	警告 Network	Angular	AngularJS	AngularのAngularJSにおけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-50556	2026-06-29 11:24	2026-06-22	Show	GitHub Exploit DB Packet Storm

49	6.1	警告 Network	Angular	AngularJS	AngularのAngularJSにおけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-50557	2026-06-29 11:24	2026-06-22	Show	GitHub Exploit DB Packet Storm

50	6.1	警告 Network	Angular	AngularJS	AngularのAngularJSにおけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-52725	2026-06-29 11:24	2026-06-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 29, 2026, 4:19 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
254361	9.8	CRITICAL Network	protonmail	protonvpn	ProtonVPN 1.3.3 for Windows suffers from a SYSTEM privilege escalation vulnerability through the "ProtonVPN Service" service. This service establishes an NetNamedPipe endpoint that allows arbitrary i…	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2018-10169	2024-11-21 12:40	2018-04-17	Show	GitHub Exploit DB Packet Storm

254362	7.8	HIGH Local	debian libreoffice redhat canonical	debian_linux libreoffice enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server ubuntu_linux	The SwCTBWrapper::Read function in sw/source/filter/ww8/ww8toolbar.cxx in LibreOffice before 5.4.6.1 and 6.x before 6.0.2.1 does not validate a customizations index, which allows remote attackers to …	CWE-787 CWE-129 Out-of-bounds Write Improper Validation of Array Index	CVE-2018-10120	2024-11-21 12:40	2018-04-16	Show	GitHub Exploit DB Packet Storm

254363	7.8	HIGH Local	libreoffice debian redhat canonical	libreoffice debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server ubuntu_linux	sot/source/sdstor/stgstrms.cxx in LibreOffice before 5.4.5.1 and 6.x before 6.0.1.1 uses an incorrect integer data type in the StgSmallStrm class, which allows remote attackers to cause a denial of s…	CWE-416 Use After Free	CVE-2018-10119	2024-11-21 12:40	2018-04-16	Show	GitHub Exploit DB Packet Storm

254364	8.8	HIGH Network	h2database cognitect	h2 datomic	H2 1.4.197, as used in Datomic before 0.9.5697 and other products, allows remote code execution because CREATE ALIAS can execute arbitrary Java code. NOTE: the vendor's position is "h2 is not designe…	CWE-20 Improper Input Validation	CVE-2018-10054	2024-11-21 12:40	2018-04-12	Show	GitHub Exploit DB Packet Storm

254365	4.8	MEDIUM Network	iscripts	supportdesk	iScripts SupportDesk v4.3 has XSS via the admin/inteligentsearchresult.php txtinteligentsearch parameter.	CWE-79 Cross-site Scripting	CVE-2018-10052	2024-11-21 12:40	2018-04-12	Show	GitHub Exploit DB Packet Storm

254366	5.4	MEDIUM Network	iscripts	supportdesk	iScripts SupportDesk v4.3 has XSS via the staff/inteligentsearchresult.php txtinteligentsearch parameter.	CWE-79 Cross-site Scripting	CVE-2018-10051	2024-11-21 12:40	2018-04-12	Show	GitHub Exploit DB Packet Storm

254367	7.2	HIGH Network	iscripts	eswap	iScripts eSwap v2.4 has SQL injection via the "registration_settings.php" ddlFree parameter in the Admin Panel.	CWE-89 SQL Injection	CVE-2018-10050	2024-11-21 12:40	2018-04-12	Show	GitHub Exploit DB Packet Storm

254368	4.8	MEDIUM Network	iscripts	eswap	iScripts eSwap v2.4 has XSS via the "registration_settings.php" txtDate parameter in the Admin Panel.	CWE-79 Cross-site Scripting	CVE-2018-10049	2024-11-21 12:40	2018-04-12	Show	GitHub Exploit DB Packet Storm

254369	8.8	HIGH Network	iscripts	eswap	iScripts eSwap v2.4 has CSRF via "registration_settings.php" in the Admin Panel.	CWE-352 Origin Validation Error	CVE-2018-10048	2024-11-21 12:40	2018-04-12	Show	GitHub Exploit DB Packet Storm

254370	4.8	MEDIUM Network	cmsmadesimple	cms_made_simple	CMS Made Simple (aka CMSMS) 2.2.7 has Stored XSS in admin/siteprefs.php via the metadata parameter.	CWE-79 Cross-site Scripting	CVE-2018-10033	2024-11-21 12:40	2018-04-12	Show	GitHub Exploit DB Packet Storm