Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 6, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1361 4.3 警告
Network 		getkirby kirby getkirbyのkirbyにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-42174 2026-05-20 13:30 2026-05-9 Show GitHub Exploit DB Packet Storm
1362 7.5 重要
Network 		OpenBao OpenBao OpenBaoにおける保存または転送前の重要な情報の削除に関する脆弱性 CWE-212
保存または転送前の重要な情報の不適切な削除 		CVE-2026-42186 2026-05-20 13:30 2026-05-14 Show GitHub Exploit DB Packet Storm
1363 7.5 重要
Network 		Ruby-lang.org Net::IMAP Ruby-lang.orgのNet::IMAPにおけるアルゴリズムの複雑さに関する脆弱性 CWE-407
アルゴリズムの複雑性 		CVE-2026-42245 2026-05-20 13:30 2026-05-9 Show GitHub Exploit DB Packet Storm
1364 7.4 重要
Network 		Ruby-lang.org Net::IMAP Ruby-lang.orgのNet::IMAPにおける複数の脆弱性 CWE-392
CWE-393
CWE-636
CWE-754
CWE-841
CVE-2026-42246 2026-05-20 13:30 2026-05-9 Show GitHub Exploit DB Packet Storm
1365 9.8 緊急
Network 		ollama ollama Ollamaにおけるダウンロードしたコードの完全性検証不備に関する脆弱性 CWE-494
ダウンロードしたコードの完全性検証不備 		CVE-2026-42248 2026-05-20 13:30 2026-04-29 Show GitHub Exploit DB Packet Storm
1366 9.8 緊急
Network 		ollama ollama Ollamaにおける複数の脆弱性 CWE-22
CWE-494
CVE-2026-42249 2026-05-20 13:30 2026-04-29 Show GitHub Exploit DB Packet Storm
1367 9.8 緊急
Network 		Ruby-lang.org Net::IMAP Ruby-lang.orgのNet::IMAPにおける複数の脆弱性 CWE-77
CWE-93
CVE-2026-42257 2026-05-20 13:30 2026-05-9 Show GitHub Exploit DB Packet Storm
1368 9.8 緊急
Network 		Ruby-lang.org Net::IMAP Ruby-lang.orgのNet::IMAPにおける複数の脆弱性 CWE-77
CWE-93
CVE-2026-42258 2026-05-20 13:30 2026-05-9 Show GitHub Exploit DB Packet Storm
1369 7.1 重要
Network 		Quantum Nous New API Quantum NousのNew APIにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-42339 2026-05-20 13:30 2026-05-8 Show GitHub Exploit DB Packet Storm
1370 9.8 緊急
Network 		sentry sentry sentryにおけるスプーフィングによる認証回避に関する脆弱性 CWE-290
スプーフィングによる認証回避 		CVE-2026-42354 2026-05-20 13:30 2026-05-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
345281 - wikyblog wikyblog Session fixation vulnerability in WikyBlog 1.7.3 rc2 allows remote attackers to hijack web sessions by setting the jsessionid parameter to (1) index.php/Comment/Main, (2) index.php/Comment/Main/Home_… CWE-287
Improper Authentication 		CVE-2010-0756 2017-08-17 10:32 2010-02-27 Show GitHub Exploit DB Packet Storm
345282 - wikyblog wikyblog Unrestricted file upload vulnerability in index.php/Attach in WikyBlog 1.7.3rc2 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension using the … NVD-CWE-Other
CVE-2010-0757 2017-08-17 10:32 2010-02-27 Show GitHub Exploit DB Packet Storm
345283 - wikyblog wikyblog Per: http://cwe.mitre.org/data/definitions/434.html CWE-434: Unrestricted Upload of File with Dangerous Type NVD-CWE-Other
CVE-2010-0757 2017-08-17 10:32 2010-02-27 Show GitHub Exploit DB Packet Storm
345284 - softbizscripts softbiz_jobs_and_recruitment_script SQL injection vulnerability in news_desc.php in Softbiz Jobs allows remote attackers to execute arbitrary SQL commands via the id parameter. CWE-89
SQL Injection 		CVE-2010-0758 2017-08-17 10:32 2010-02-27 Show GitHub Exploit DB Packet Storm
345285 - greatjoomla scriptegrator_plugin Directory traversal vulnerability in plugins/system/cdscriptegrator/libraries/highslide/js/jsloader.php in the Core Design Scriptegrator plugin 1.4.1 for Joomla! allows remote attackers to read, and … CWE-22
Path Traversal 		CVE-2010-0759 2017-08-17 10:32 2010-02-27 Show GitHub Exploit DB Packet Storm
345286 - kuwaitphp esmile SQL injection vulnerability in index.php in KuwaitPHP eSmile allows remote attackers to execute arbitrary SQL commands via the cid parameter in a show action. CWE-89
SQL Injection 		CVE-2010-0764 2017-08-17 10:32 2010-03-3 Show GitHub Exploit DB Packet Storm
345287 - fipsasp fipsforum fipsForum 2.6 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for _database/forumFips.mdb. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2010-0765 2017-08-17 10:32 2010-03-3 Show GitHub Exploit DB Packet Storm
345288 - ibm websphere_application_server Cross-site scripting (XSS) vulnerability in the Administration Console in IBM WebSphere Application Server (WAS) 6.0 before 6.0.2.41, 6.1 before 6.1.0.31, and 7.0 before 7.0.0.9 allows remote attacke… CWE-79
Cross-site Scripting 		CVE-2010-0768 2017-08-17 10:32 2010-04-2 Show GitHub Exploit DB Packet Storm
345289 - ibm websphere_application_server IBM WebSphere Application Server (WAS) 6.0 before 6.0.2.41, 6.1 before 6.1.0.31, and 7.0 before 7.0.0.9 does not properly define wsadmin scripting J2CConnectionFactory objects, which allows local use… CWE-255
Credentials Management 		CVE-2010-0769 2017-08-17 10:32 2010-04-2 Show GitHub Exploit DB Packet Storm
345290 - ibm websphere_application_server IBM WebSphere Application Server (WAS) 6.0 before 6.0.2.41, 6.1 before 6.1.0.31, and 7.0 before 7.0.0.9 allows remote authenticated users to cause a denial of service (ORB ListenerThread hang) by abo… CWE-399
 Resource Management Errors 		CVE-2010-0770 2017-08-17 10:32 2010-04-2 Show GitHub Exploit DB Packet Storm