Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 10, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2041 5.3 警告
Network 		Northern.tech cfengine Northern.techのcfengineにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-24711 2026-05-21 10:55 2026-05-14 Show GitHub Exploit DB Packet Storm
2042 7.3 重要
Network 		Northern.tech cfengine Northern.techのcfengineにおけるコマンドインジェクションの脆弱性 CWE-77
コマンドインジェクション 		CVE-2026-24712 2026-05-21 10:55 2026-05-14 Show GitHub Exploit DB Packet Storm
2043 9.8 緊急
Network 		Open JS Foundation WebdriverIO Open JS FoundationのWebdriverIOにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-25244 2026-05-21 10:55 2026-05-18 Show GitHub Exploit DB Packet Storm
2044 6.5 警告
Network 		マイクロソフト Power Automate for Desktop Microsoft Power Automate デスクトップの情報漏えいの脆弱性 CWE-200
情報漏えい 		CVE-2026-40374 2026-05-21 10:55 2026-05-12 Show GitHub Exploit DB Packet Storm
2045 7.8 重要
Local 		protobufjs project protobufjs-cli protobufjs projectのprotobufjs-cliにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-42290 2026-05-21 10:55 2026-05-13 Show GitHub Exploit DB Packet Storm
2046 6.1 警告
Network 		beaugunderson ip-address beaugundersonのip-addressにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-42338 2026-05-21 10:55 2026-05-12 Show GitHub Exploit DB Packet Storm
2047 7.6 重要
Network 		PocketBase PocketBase PocketBaseにおける認証に関する脆弱性 CWE-287
不適切な認証 		CVE-2026-44166 2026-05-21 10:55 2026-05-12 Show GitHub Exploit DB Packet Storm
2048 7.2 重要
Network 		German Cancer Research Center (DKFZ) nnU-Net German Cancer Research Center (DKFZ)のnnU-Netにおけるインジェクションに関する脆弱性 CWE-74
インジェクション 		CVE-2026-44246 2026-05-21 10:55 2026-05-12 Show GitHub Exploit DB Packet Storm
2049 8.7 重要
Network 		protobufjs project protobufjs-cli protobufjs projectのprotobufjs-cliにおけるコードインジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2026-44295 2026-05-21 10:55 2026-05-13 Show GitHub Exploit DB Packet Storm
2050 9.8 緊急
Network 		WGDashboard WGDashboard WGDashboardにおける入力確認に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2026-44343 2026-05-21 10:55 2026-05-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
355151 - castle_rock_computing snmpc SNMPc 6.0.8 and earlier performs authentication to the server on the client side, which allows remote attackers to gain privileges by decrypting the password that is returned by the server. NVD-CWE-Other
CVE-2003-0745 2008-09-11 04:20 2003-10-20 Show GitHub Exploit DB Packet Storm
355152 - py-membres py-membres secure.php in PY-Membres 4.2 and earlier allows remote attackers to bypass authentication by setting the adminpy parameter. NVD-CWE-Other
CVE-2003-0750 2008-09-11 04:20 2003-10-20 Show GitHub Exploit DB Packet Storm
355153 - py-membres py-membres SQL injection vulnerability in pass_done.php for PY-Membres 4.2 and earlier allows remote attackers to execute arbitrary SQL queries via the email parameter. NVD-CWE-Other
CVE-2003-0751 2008-09-11 04:20 2003-10-20 Show GitHub Exploit DB Packet Storm
355154 - newsphp newsphp nphpd.php in newsPHP 216 and earlier allows remote attackers to read arbitrary files via a full pathname to the target file in the nphp_config[LangFile] parameter. NVD-CWE-Other
CVE-2003-0753 2008-09-11 04:20 2003-10-20 Show GitHub Exploit DB Packet Storm
355155 - newsphp newsphp nphpd.php in newsPHP 216 and earlier allows remote attackers to bypass authentication via an HTTP request with a modified nphp_users array, which is used for authentication. NVD-CWE-Other
CVE-2003-0754 2008-09-11 04:20 2003-10-20 Show GitHub Exploit DB Packet Storm
355156 - gtkftpd gtkftp Buffer overflow in sys_cmd.c for gtkftpd 1.0.4 and earlier allows remote attackers to execute arbitrary code by creating long directory names and listing them with a LIST command. NVD-CWE-Other
CVE-2003-0755 2008-09-11 04:20 2003-10-20 Show GitHub Exploit DB Packet Storm
355157 - sitebuilder sitebuilder Directory traversal vulnerability in sitebuilder.cgi in SiteBuilder 1.4 allows remote attackers to read arbitrary files via .. (dot dot) sequences in the selectedpage parameter. NVD-CWE-Other
CVE-2003-0756 2008-09-11 04:20 2003-10-20 Show GitHub Exploit DB Packet Storm
355158 - foxweb foxweb Buffer overflow in (1) foxweb.dll and (2) foxweb.exe of Foxweb 2.5 allows remote attackers to execute arbitrary code via a long URL (PATH_INFO value). NVD-CWE-Other
CVE-2003-0762 2008-09-11 04:20 2003-09-17 Show GitHub Exploit DB Packet Storm
355159 - sane sane
sane-backend 		saned in sane-backends 1.0.7 and earlier does not quickly handle connection drops, which allows remote attackers to cause a denial of service (segmentation fault) when invalid memory is accessed. NVD-CWE-Other
CVE-2003-0774 2008-09-11 04:20 2003-09-22 Show GitHub Exploit DB Packet Storm
355160 - sane sane
sane-backend 		saned in sane-backends 1.0.7 and earlier calls malloc with an arbitrary size value if a connection is dropped before the size value has been sent, which allows remote attackers to cause a denial of s… NVD-CWE-Other
CVE-2003-0775 2008-09-11 04:20 2003-09-22 Show GitHub Exploit DB Packet Storm