Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 29, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
5211 7.5 重要
Network 		libexpat project libexpat libexpat projectのlibexpatにおけるアルゴリズムの複雑さに関する脆弱性 CWE-407
アルゴリズムの複雑性 		CVE-2026-45186 2026-05-18 12:10 2026-05-10 Show GitHub Exploit DB Packet Storm
5212 9.8 緊急
Network 		vm2 project vm2 vm2 projectのvm2における誤った領域へのリソースの漏えいに関する脆弱性 CWE-668
誤った領域へのリソースの漏えい 		CVE-2026-45411 2026-05-18 12:10 2026-05-13 Show GitHub Exploit DB Packet Storm
5213 5.9 警告
Network 		Haxx cURL HaxxのcURLにおける複数の脆弱性 CWE-295
CWE-319
CVE-2026-4873 2026-05-18 12:10 2026-05-13 Show GitHub Exploit DB Packet Storm
5214 5.9 警告
Network 		Haxx cURL HaxxのcURLにおける認証情報の不十分な保護に関する脆弱性 CWE-522
認証情報の不十分な保護 		CVE-2026-6253 2026-05-18 12:10 2026-05-13 Show GitHub Exploit DB Packet Storm
5215 7.5 重要
Network 		Haxx cURL HaxxのcURLにおける重要な情報の平文での送信に関する脆弱性 CWE-319
重要な情報の平文での送信 		CVE-2026-6276 2026-05-18 12:10 2026-05-13 Show GitHub Exploit DB Packet Storm
5216 5.3 警告
Network 		Haxx cURL HaxxのcURLにおける不特定の脆弱性 CWE-noinfo
情報不足 		CVE-2026-6429 2026-05-18 12:10 2026-05-13 Show GitHub Exploit DB Packet Storm
5217 7.5 重要
Network 		PgBouncer PgBouncer PgBouncerにおける整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2026-6664 2026-05-18 12:10 2026-05-9 Show GitHub Exploit DB Packet Storm
5218 9.8 緊急
Network 		PgBouncer PgBouncer PgBouncerにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-121
スタックオーバーフロー 		CVE-2026-6665 2026-05-18 12:10 2026-05-9 Show GitHub Exploit DB Packet Storm
5219 7.5 重要
Network 		PgBouncer PgBouncer PgBouncerにおけるNULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2026-6666 2026-05-18 12:09 2026-05-9 Show GitHub Exploit DB Packet Storm
5220 4.3 警告
Network 		PgBouncer PgBouncer PgBouncerにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-6667 2026-05-18 12:09 2026-05-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 29, 2026, 4:19 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1571 - - - In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix NULL deref and buffer over-read in SDP debugfs [Why & How] dp_sdp_message_debugfs_write() dereferences conne… - CVE-2026-53135 2026-06-25 18:16 2026-06-25 Show GitHub Exploit DB Packet Storm
1572 - - - In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_fib: fix stale stack leak via the OIFNAME register For NFT_FIB_RESULT_OIFNAME the destination register is declared… - CVE-2026-53134 2026-06-25 18:16 2026-06-25 Show GitHub Exploit DB Packet Storm
1573 - - - A vulnerability in the iCagenda extension for Joomla allows the upload of arbitrary files in the file attachment feature, ultimately resulting in PHP code upload and execution. CWE-284
Improper Access Control 		CVE-2026-48939 2026-06-25 14:16 2026-06-20 Show GitHub Exploit DB Packet Storm
1574 9.9 CRITICAL
Network 		- - Execution with unnecessary privileges in Azure Synapse allows an authorized attacker to elevate privileges over a network. CWE-250
 Execution with Unnecessary Privileges 		CVE-2026-48584 2026-06-25 14:16 2026-06-20 Show GitHub Exploit DB Packet Storm
1575 7.8 HIGH
Local 		- - Dell Server Hardware Manager, versions prior to 3.2.2, contains an Improper Access Control vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, lea… CWE-284
Improper Access Control 		CVE-2026-46461 2026-06-25 14:16 2026-06-19 Show GitHub Exploit DB Packet Storm
1576 - - - Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. - CVE-2025-8106 2026-06-25 08:16 2026-06-25 Show GitHub Exploit DB Packet Storm
1577 - - - Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. - CVE-2026-47093 2026-06-25 07:16 2026-06-25 Show GitHub Exploit DB Packet Storm
1578 5.3 MEDIUM
Network 		- - The WP Go Maps – Most Popular Map Plugin plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 10.1.01. This is due to the plugin not properly verifying tha… CWE-862
 Missing Authorization 		CVE-2026-12238 2026-06-25 06:16 2026-06-20 Show GitHub Exploit DB Packet Storm
1579 7.5 HIGH
Network 		vitejs
voidzero 		vite
vite\+ 		Vite is a frontend tooling framework for JavaScript. Prior to 8.0.16, 7.3.5, and 6.4.3, the contents of files that are specified by server.fs.deny can be returned to the browser on Windows. Vite’s de… CWE-22
CWE-200
Path Traversal
Information Exposure 		CVE-2026-53571 2026-06-25 05:44 2026-06-23 Show GitHub Exploit DB Packet Storm
1580 5.3 MEDIUM
Network 		protobufjs_project protobufjs
protobufjs-cli 		protobufjs compiles protobuf definitions into JavaScript (JS) functions. Prior to 8.6.0 and 7.6.3, protobufjs accepted certain schema-derived names that could collide with properties used by protobuf… CWE-674
CWE-754
 Uncontrolled Recursion
 Improper Check for Unusual or Exceptional Conditions 		CVE-2026-54269 2026-06-25 05:40 2026-06-23 Show GitHub Exploit DB Packet Storm