Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 29, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
51 6.1 警告
Local 		Google Chrome-devtools-mcp GoogleのChrome-devtools-mcpにおけるリンク解釈に関する脆弱性 New CWE-59
リンク解釈の問題 		CVE-2026-53765 2026-06-29 11:23 2026-06-24 Show GitHub Exploit DB Packet Storm
52 6.1 警告
Local 		Google Chrome-devtools-mcp GoogleのChrome-devtools-mcpにおける複数の脆弱性 New CWE-22
CWE-59
CVE-2026-53766 2026-06-29 11:23 2026-06-24 Show GitHub Exploit DB Packet Storm
53 6.1 警告
Network 		Angular AngularJS AngularのAngularJSにおける複数の脆弱性 New CWE-200
CWE-359
CVE-2026-54264 2026-06-29 11:23 2026-06-22 Show GitHub Exploit DB Packet Storm
54 6.1 警告
Network 		Angular AngularJS AngularのAngularJSにおけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-54265 2026-06-29 11:23 2026-06-22 Show GitHub Exploit DB Packet Storm
55 6.1 警告
Network 		Angular AngularJS AngularのAngularJSにおける複数の脆弱性 New CWE-328
CWE-345
CVE-2026-54266 2026-06-29 11:23 2026-06-22 Show GitHub Exploit DB Packet Storm
56 6.1 警告
Network 		Angular AngularJS AngularのAngularJSにおける複数の脆弱性 New CWE-471
CWE-79
CVE-2026-54267 2026-06-29 11:23 2026-06-22 Show GitHub Exploit DB Packet Storm
57 7.5 重要
Network 		Angular AngularJS AngularのAngularJSにおける複数の脆弱性 New CWE-1333
CWE-400
CVE-2026-54268 2026-06-29 11:23 2026-06-22 Show GitHub Exploit DB Packet Storm
58 9.9 緊急
Network 		Dokku Dokku DokkuにおけるOS コマンドインジェクションの脆弱性 New CWE-78
OSコマンド・インジェクション 		CVE-2026-54636 2026-06-29 11:23 2026-06-26 Show GitHub Exploit DB Packet Storm
59 7.5 重要
Network 		Rubyconcurrency Concurrent Ruby RubyconcurrencyのConcurrent Rubyにおける無限ループに関する脆弱性 New CWE-835
無限ループ 		CVE-2026-54904 2026-06-29 11:23 2026-06-24 Show GitHub Exploit DB Packet Storm
60 5.5 警告
Local 		Rubyconcurrency Concurrent Ruby RubyconcurrencyのConcurrent Rubyにおけるラップアラウンドエラーに関する脆弱性 New CWE-128
ラップアラウンドエラー 		CVE-2026-54905 2026-06-29 11:23 2026-06-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 29, 2026, 4:19 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
3941 7.0 HIGH
Local 		milvus milvus A vulnerability has been found in milvus-io milvus up to 2.6.13. This vulnerability affects unknown code of the file internal/metastore/kv/rootcoord/kv_catalog.go of the component Grantee ID Hash Han… CWE-327
CWE-328
 Use of a Broken or Risky Cryptographic Algorithm
 Use of Weak Hash 		CVE-2026-10814 2026-06-11 02:32 2026-06-5 Show GitHub Exploit DB Packet Storm
3942 4.3 MEDIUM
Network 		google chrome Inappropriate implementation in File Input in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafte… CWE-451
 User Interface (UI) Misrepresentation of Critical Information 		CVE-2026-11228 2026-06-11 02:25 2026-06-5 Show GitHub Exploit DB Packet Storm
3943 6.5 MEDIUM
Network 		google chrome Type Confusion in XML in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted XML file. (Chromium security seve… CWE-843
Type Confusion 		CVE-2026-11196 2026-06-11 02:25 2026-06-5 Show GitHub Exploit DB Packet Storm
3944 5.5 MEDIUM
Local 		microsoft windows_11_24h2
windows_11_25h2
windows_11_26h1
windows_server_2025 		Out-of-bounds read in Windows DWM Core Library allows an authorized attacker to disclose information locally. CWE-125
Out-of-bounds Read 		CVE-2026-48566 2026-06-11 02:19 2026-06-10 Show GitHub Exploit DB Packet Storm
3945 7.9 HIGH
Local 		microsoft windows_10_1607
windows_10_1809
windows_10_21h2
windows_10_22h2
windows_11_23h2
windows_11_24h2
windows_11_25h2
windows_11_26h1
windows_server_2012
windows_server_2016
w… 		Protection mechanism failure in Windows Secure Boot allows an authorized attacker to bypass a security feature locally. CWE-693
 Protection Mechanism Failure 		CVE-2026-48568 2026-06-11 02:18 2026-06-10 Show GitHub Exploit DB Packet Storm
3946 7.9 HIGH
Local 		microsoft windows_10_1607
windows_10_1809
windows_10_21h2
windows_10_22h2
windows_11_23h2
windows_11_24h2
windows_11_25h2
windows_11_26h1
windows_server_2012
windows_server_2016
w… 		Protection mechanism failure in Windows Secure Boot allows an authorized attacker to bypass a security feature locally. CWE-693
 Protection Mechanism Failure 		CVE-2026-48570 2026-06-11 02:17 2026-06-10 Show GitHub Exploit DB Packet Storm
3947 8.3 HIGH
Network 		- - Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. In versions 8.2.6.4 and prior, there is an authentication bypass vulnerability via 'api' substring in URL + unau… CWE-287
CWE-306
CWE-697
Improper Authentication
Missing Authentication for Critical Function
 Incorrect Comparison 		CVE-2026-45567 2026-06-11 02:16 2026-06-11 Show GitHub Exploit DB Packet Storm
3948 6.1 MEDIUM
Network 		- - Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. In versions 8.2.6.4 and prior, the login flow allow-lists next URLs by rejecting strings containing https:// or … CWE-601
Open Redirect 		CVE-2026-45566 2026-06-11 02:16 2026-06-11 Show GitHub Exploit DB Packet Storm
3949 6.5 MEDIUM
Network 		- - Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. In versions 8.2.6.4 and prior, the /smon/agent/{version,uptime,status,checks}/<server_ip> family of routes takes… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-45561 2026-06-11 02:16 2026-06-11 Show GitHub Exploit DB Packet Storm
3950 6.1 MEDIUM
Network 		- - Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. In versions 8.2.6.4 and prior, wrap_line (app/modules/common/common.py:181-186) and highlight_word (app/modules/… CWE-79
Cross-site Scripting 		CVE-2026-45560 2026-06-11 02:16 2026-06-11 Show GitHub Exploit DB Packet Storm