Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 3, 2026, 6:08 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
218481	4.3	警告	Blackbam	-	WordPress 用 Improved user search in backend プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-5196	2014-08-14 17:13	2014-08-8	Show	GitHub Exploit DB Packet Storm

218482	4.9	警告	ゾール・メディカル	-	ZOLL 除細動器 X シリーズにおけるデバイスの設定を変更される脆弱性	CWE-255 証明書・パスワード管理	CVE-2013-7395	2014-08-14 17:08	2013-08-1	Show	GitHub Exploit DB Packet Storm

218483	4.9	警告	ゾール・メディカル	-	ZOLL 除細動器の複数のシリーズにおけるデバイスの設定を変更される脆弱性	CWE-255 証明書・パスワード管理	CVE-2007-6756	2014-08-14 17:07	2007-05-1	Show	GitHub Exploit DB Packet Storm

218484	4	警告	ヒューレット・パッカード	-	HP NonStop Safeguard Security Software におけるプログラムのアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-2629	2014-08-14 16:12	2014-08-5	Show	GitHub Exploit DB Packet Storm

218485	7.2	危険	IBM	-	IBM Security AppScan Source の Automation Server における権限を取得される脆弱性	CWE-noinfo 情報不足	CVE-2014-3072	2014-08-14 15:59	2014-07-30	Show	GitHub Exploit DB Packet Storm

218486	7.5	危険	MegaLab.it	-	MegaLab The Uploader の login.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-2944	2014-08-14 15:54	2011-07-28	Show	GitHub Exploit DB Packet Storm

218487	6.8	警告	シトリックス・システムズ	-	Citrix Access Gateway Enterprise Edition Plug-in for Windows の nsepacom ActiveX コントロールの StartEpa メソッドにおける整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2011-2593	2014-08-14 15:48	2011-07-19	Show	GitHub Exploit DB Packet Storm

218488	4.3	警告	Brian Nez	-	Microcart におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-4241	2014-08-14 15:42	2012-07-23	Show	GitHub Exploit DB Packet Storm

218489	10	危険	マイクロソフトアドビシステムズ Google	-	Adobe Flash Player および Adobe AIR における ASLR 保護メカニズムを回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-0545	2014-08-14 14:46	2014-08-12	Show	GitHub Exploit DB Packet Storm

218490	10	危険	マイクロソフトアドビシステムズ Google	-	Adobe Flash Player および Adobe AIR における ASLR 保護メカニズムを回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-0544	2014-08-14 14:46	2014-08-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1001	7.3	HIGH Network	-	-	A flaw has been found in code-projects Online Hospital Management System 1.php. This impacts the function login_user of the file login_1.php. Executing a manipulation of the argument Username can lea… New	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-10208	2026-06-2 00:15	2026-06-1	Show	GitHub Exploit DB Packet Storm

1002	6.3	MEDIUM Network	-	-	A vulnerability has been found in code-projects Online Hospital Management System 1.0. Affected is an unknown function of the file appointmentdetail.php of the component Appointment Handler. The mani… New	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-10209	2026-06-2 00:15	2026-06-1	Show	GitHub Exploit DB Packet Storm

1003	6.3	MEDIUM Network	-	-	A vulnerability was found in AstrBotDevs AstrBot 4.23.6. Affected by this vulnerability is the function _sanitize_prompt_description of the file astrbot/core/skills/skill_manager.py. The manipulation… New	CWE-74 CWE-707 Injection Improper Enforcement of Message or Data Structure	CVE-2026-10210	2026-06-2 00:15	2026-06-1	Show	GitHub Exploit DB Packet Storm

1004	6.3	MEDIUM Network	-	-	A vulnerability was determined in AstrBotDevs AstrBot 4.23.6. Affected by this issue is the function _normalize_rw_path of the file astrbot/core/tools/computer_tools/fs.py. This manipulation causes i… New	CWE-285 CWE-863 Improper Authorization Incorrect Authorization	CVE-2026-10211	2026-06-2 00:15	2026-06-1	Show	GitHub Exploit DB Packet Storm

1005	6.3	MEDIUM Network	-	-	A vulnerability was identified in AstrBotDevs AstrBot 4.24.2. This affects the function astr_main_agent of the file astrbot/core/astr_main_agent.py. Such manipulation of the argument session_id leads… New	CWE-285 CWE-639 Improper Authorization Authorization Bypass Through User-Controlled Key	CVE-2026-10212	2026-06-2 00:15	2026-06-1	Show	GitHub Exploit DB Packet Storm

1006	5.4	MEDIUM Network	-	-	A security flaw has been discovered in AstrBotDevs AstrBot 4.23.6. This vulnerability affects unknown code of the file /api/skills/delete of the component API Endpoint. Performing a manipulation of t… New	CWE-22 Path Traversal	CVE-2026-10213	2026-06-2 00:15	2026-06-1	Show	GitHub Exploit DB Packet Storm

1007	7.3	HIGH Network	-	-	A weakness has been identified in zhayujie chatgpt-on-wechat up to 2.0.8. This issue affects the function _get_safety_warning of the file agent/tools/bash/bash.py of the component Bash Tool. Executin… New	CWE-77 CWE-78 Command Injection OS Command	CVE-2026-10214	2026-06-2 00:15	2026-06-1	Show	GitHub Exploit DB Packet Storm

1008	4.3	MEDIUM Network	-	-	A security vulnerability has been detected in Dolibarr ERP CRM up to 23.0.1. Impacted is the function checkUserAccessToObject of the file htdocs/holiday/class/api_holidays.class.php of the component … New	CWE-266 CWE-285 Incorrect Privilege Assignment Improper Authorization	CVE-2026-10215	2026-06-2 00:15	2026-06-1	Show	GitHub Exploit DB Packet Storm

1009	3.7	LOW Network	-	-	A vulnerability was detected in unitedbyai droidclaw up to 0.5.3. The affected element is an unknown function of the file server/src/routes/pairing.ts of the component claim Endpoint. The manipulatio… New	CWE-307 CWE-799 mproper Restriction of Excessive Authentication Attempts Improper Control of Interaction Frequency	CVE-2026-10216	2026-06-2 00:15	2026-06-1	Show	GitHub Exploit DB Packet Storm

1010	6.3	MEDIUM Network	-	-	A flaw has been found in nextlevelbuilder GoClaw up to 3.11.3. The impacted element is the function handleSave of the file internal/http/tts_config.go of the component RoleAdmin Gateway. This manipul… New	CWE-266 CWE-269 Incorrect Privilege Assignment Improper Privilege Management	CVE-2026-10217	2026-06-2 00:15	2026-06-1	Show	GitHub Exploit DB Packet Storm