Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 10, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
211061	3.5	注意	chris shattuck	-	Drupal 用 Navigate モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2015-5500	2015-08-25 18:16	2015-05-20	Show	GitHub Exploit DB Packet Storm

211062	4	警告	chris shattuck	-	Drupal 用 Navigate モジュールにおけるカスタムウィジェットを変更される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2015-5499	2015-08-25 18:16	2015-05-20	Show	GitHub Exploit DB Packet Storm

211063	5	警告	Shipwire API project	-	Drupal 用 Shipwire API モジュールにおける重要な情報を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2015-5498	2015-08-25 18:16	2015-05-12	Show	GitHub Exploit DB Packet Storm

211064	3.5	注意	Web Links project	-	Drupal 用 Web Links モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2015-5497	2015-08-25 18:15	2015-05-12	Show	GitHub Exploit DB Packet Storm

211065	5	警告	pass2pdf project	-	Drupal 用 pass2pdf モジュールにおけるユーザパスワードを取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2015-5496	2015-08-25 18:15	2015-05-20	Show	GitHub Exploit DB Packet Storm

211066	2.1	注意	Mobile sliding menu project	-	Drupal 用 Mobile sliding menu モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2015-5495	2015-08-25 18:15	2015-05-6	Show	GitHub Exploit DB Packet Storm

211067	3.5	注意	Webform Matrix Component project	-	Drupal 用 Webform Matrix Component モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2015-5494	2015-08-25 18:15	2015-02-27	Show	GitHub Exploit DB Packet Storm

211068	5	警告	Entityform Block project	-	Drupal 用 Entityform Block モジュールにおける特定のエンティティフォームのアクセス権を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2015-5493	2015-08-25 18:15	2015-05-6	Show	GitHub Exploit DB Packet Storm

211069	4.3	警告	Video Consultation project	-	Drupal 用 Video Consultation モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2015-5492	2015-08-25 18:15	2015-05-6	Show	GitHub Exploit DB Packet Storm

211070	3.5	注意	Dynamic display block project	-	Drupal 用 Dynamic display block モジュールにおけるアクセス制限を回避される脆弱性	CWE-200 情報漏えい	CVE-2015-5491	2015-08-25 18:15	2015-06-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
3091	3.5	LOW Network	-	-	A flaw has been found in SourceCodester Pharmacy Sales and Inventory System 1.0. Affected by this issue is the function create_supplier of the file /ShowForm/create_supplier/main. Executing a manipul…	CWE-79 CWE-94 Cross-site Scripting Code Injection	CVE-2026-10245	2026-06-1 22:14	2026-06-1	Show	GitHub Exploit DB Packet Storm

3092	3.5	LOW Network	-	-	A vulnerability has been found in SourceCodester Pharmacy Sales and Inventory System 1.0. This affects the function create_medicine_presentation of the file /ShowForm/create_medicine_presentation/mai…	CWE-79 CWE-94 Cross-site Scripting Code Injection	CVE-2026-10246	2026-06-1 22:14	2026-06-1	Show	GitHub Exploit DB Packet Storm

3093	3.5	LOW Network	-	-	A vulnerability was found in SourceCodester Pharmacy Sales and Inventory System 1.0. This vulnerability affects the function create_generic_name of the file /ShowForm/create_generic_name/main. The ma…	CWE-79 CWE-94 Cross-site Scripting Code Injection	CVE-2026-10247	2026-06-1 22:14	2026-06-1	Show	GitHub Exploit DB Packet Storm

3094	4.7	MEDIUM Network	-	-	A vulnerability was determined in SourceCodester Pharmacy Sales and Inventory System up to 1.0. This issue affects the function create_supplier of the file /Export_csv/export of the component Supplie…	CWE-74 CWE-1236 Injection Improper Neutralization of Formula Elements in a CSV File	CVE-2026-10248	2026-06-1 22:14	2026-06-1	Show	GitHub Exploit DB Packet Storm

3095	7.3	HIGH Network	-	-	A vulnerability was identified in itsourcecode Online Blood Bank Management System 1.0. Impacted is an unknown function of the file /admin/viewrequest.php. Such manipulation of the argument ID leads …	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-10249	2026-06-1 22:14	2026-06-1	Show	GitHub Exploit DB Packet Storm

3096	7.3	HIGH Network	-	-	A security flaw has been discovered in itsourcecode Online Blood Bank Management System 1.0. The affected element is an unknown function of the file /admin/campsdetails.php. Performing a manipulation…	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-10250	2026-06-1 22:14	2026-06-1	Show	GitHub Exploit DB Packet Storm

3097	5.4	MEDIUM Network	jetbrains	youtrack	In JetBrains YouTrack before 2026.1.13162 stored XSS in project notification templates was possible	CWE-79 Cross-site Scripting	CVE-2026-49368	2026-06-1 21:56	2026-05-30	Show	GitHub Exploit DB Packet Storm

3098	4.3	MEDIUM Network	jetbrains	youtrack	In JetBrains YouTrack before 2026.1.13162 information disclosure was possible on Users and Groups pages	CWE-863 Incorrect Authorization	CVE-2026-49369	2026-06-1 21:56	2026-05-30	Show	GitHub Exploit DB Packet Storm

3099	7.5	HIGH Network	jetbrains	youtrack	In JetBrains YouTrack before 2026.1.13162 information disclosure was possible on fetchApp requests	CWE-201 Insertion of Sensitive Information Into Sent Data	CVE-2026-49370	2026-06-1 21:52	2026-05-30	Show	GitHub Exploit DB Packet Storm

3100	6.1	MEDIUM Network	jetbrains	pycharm	In JetBrains PyCharm before 2025.3.4 stored XSS in Jupyter notebook Markdown cells was possible	CWE-79 Cross-site Scripting	CVE-2026-49384	2026-06-1 21:44	2026-05-30	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed