Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
5351 9.1 緊急
Network 		LibreNMS LibreNMS LibreNMSにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2024-51092 2026-05-14 10:23 2026-05-8 Show GitHub Exploit DB Packet Storm
5352 9.8 緊急
Network 		The PHP Group PHP The PHP GroupのPHPにおけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2025-14179 2026-05-14 10:23 2026-05-10 Show GitHub Exploit DB Packet Storm
5353 7.5 重要
Network 		IBM watsonx.data IBMのwatsonx.dataにおける意図するエンドポイントとの通信チャネルの制限に関する脆弱性 CWE-923
意図するエンドポイントとの通信チャネルの不適切な制限 		CVE-2025-36180 2026-05-14 10:23 2026-04-30 Show GitHub Exploit DB Packet Storm
5354 5.5 警告
Local 		IBM watsonx.data IBMのwatsonx.dataにおける認証情報の平文保存に関する脆弱性 CWE-256
平文でパスワードを保存 		CVE-2025-36335 2026-05-14 10:23 2026-04-30 Show GitHub Exploit DB Packet Storm
5355 7.5 重要
Network 		アップル iOS
iPadOS 		アップルのiPadOS等の複数製品におけるユーザインターフェースにおける重要情報の誤った表示に関する脆弱性 CWE-451
ユーザインターフェースにおける重要情報の誤った表示 		CVE-2025-46311 2026-05-14 10:23 2026-05-12 Show GitHub Exploit DB Packet Storm
5356 4.7 警告
Network 		ISPConfig ISPConfig ISPConfigにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2025-52206 2026-05-14 10:23 2026-05-5 Show GitHub Exploit DB Packet Storm
5357 7.3 重要
Network 		AstrBot AstrBot AstrBotにおけるハードコードされた暗号鍵の使用に関する脆弱性 CWE-321
ハードコードされた暗号鍵の使用 		CVE-2025-55449 2026-05-14 10:23 2026-05-8 Show GitHub Exploit DB Packet Storm
5358 7.2 重要
Network 		Check MK Check MK Check MKにおける認証情報の不十分な保護に関する脆弱性 CWE-522
認証情報の不十分な保護 		CVE-2025-64998 2026-05-14 10:22 2026-03-24 Show GitHub Exploit DB Packet Storm
5359 6.5 警告
Network 		Apache Software Foundation CloudStack Apache Software FoundationのCloudStackにおける認可されていない行為者への個人情報の漏えいに関する脆弱性 CWE-359
認可されていないアクターへの個人情報の漏えい 		CVE-2025-66171 2026-05-14 10:22 2026-05-8 Show GitHub Exploit DB Packet Storm
5360 8.1 重要
Network 		Apache Software Foundation CloudStack Apache Software FoundationのCloudStackにおける認可されていない行為者への個人情報の漏えいに関する脆弱性 CWE-359
認可されていないアクターへの個人情報の漏えい 		CVE-2025-66172 2026-05-14 10:22 2026-05-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 27, 2026, 4:35 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1261 7.6 HIGH
Network 		- - Capgo before 12.128.2 contains a potential privilege escalation vulnerability in the public.apply_usage_overage SECURITY DEFINER function, which performs sensitive billing operations without enforcin… New CWE-269
 Improper Privilege Management 		CVE-2026-56239 2026-06-25 02:17 2026-06-21 Show GitHub Exploit DB Packet Storm
1262 9.6 CRITICAL
Network 		langflow langflow Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to 1.9.2, by controlling a files that are digested into the RAG, an attacker can direct the node to read any file … New CWE-61
CWE-200
 UNIX Symbolic Link (Symlink) Following
Information Exposure 		CVE-2026-55447 2026-06-25 02:17 2026-06-24 Show GitHub Exploit DB Packet Storm
1263 - - - In the Linux kernel, the following vulnerability has been resolved: fs/omfs: reject s_sys_blocksize smaller than OMFS_DIR_START omfs_fill_super() rejects oversized s_sys_blocksize values (> PAGE_SI… New - CVE-2026-53130 2026-06-25 02:17 2026-06-25 Show GitHub Exploit DB Packet Storm
1264 - - - In the Linux kernel, the following vulnerability has been resolved: fs/mbcache: cancel shrink work before destroying the cache mb_cache_destroy() calls shrinker_free() and then frees all cache entr… New - CVE-2026-53129 2026-06-25 02:17 2026-06-25 Show GitHub Exploit DB Packet Storm
1265 - - - In the Linux kernel, the following vulnerability has been resolved: drbd: Balance RCU calls in drbd_adm_dump_devices() Make drbd_adm_dump_devices() call rcu_read_lock() before rcu_read_unlock() is … New - CVE-2026-53128 2026-06-25 02:17 2026-06-25 Show GitHub Exploit DB Packet Storm
1266 - - - In the Linux kernel, the following vulnerability has been resolved: block: fix zones_cond memory leak on zone revalidation error paths When blk_revalidate_disk_zones() fails after disk_revalidate_z… New - CVE-2026-53127 2026-06-25 02:17 2026-06-25 Show GitHub Exploit DB Packet Storm
1267 - - - In the Linux kernel, the following vulnerability has been resolved: blk-cgroup: fix disk reference leak in blkcg_maybe_throttle_current() Add the missing put_disk() on the error path in blkcg_maybe… New - CVE-2026-53126 2026-06-25 02:17 2026-06-25 Show GitHub Exploit DB Packet Storm
1268 - - - In the Linux kernel, the following vulnerability has been resolved: md: fix array_state=clear sysfs deadlock When "clear" is written to array_state, md_attr_store() breaks sysfs active protection s… New - CVE-2026-53125 2026-06-25 02:17 2026-06-25 Show GitHub Exploit DB Packet Storm
1269 - - - In the Linux kernel, the following vulnerability has been resolved: ublk: reset per-IO canceled flag on each fetch If a ublk server starts recovering devices but dies before issuing fetch commands … New - CVE-2026-53124 2026-06-25 02:17 2026-06-25 Show GitHub Exploit DB Packet Storm
1270 - - - In the Linux kernel, the following vulnerability has been resolved: md: wake raid456 reshape waiters before suspend During raid456 reshape, direct IO across the reshape position can sleep in raid5_… New - CVE-2026-53123 2026-06-25 02:17 2026-06-25 Show GitHub Exploit DB Packet Storm