Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 22, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227201	7.5	危険	Symphony CMS	-	Symphony CMS の index.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-2143	2012-12-20 19:29	2010-06-3	Show	GitHub Exploit DB Packet Storm

227202	7.5	危険	snipegallery	-	Snipe Gallery における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2010-2126	2012-12-20 19:29	2010-06-1	Show	GitHub Exploit DB Packet Storm

227203	2.1	注意	systemseed	-	Drupal 用の Rotor Banner モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-2125	2012-12-20 19:29	2010-05-20	Show	GitHub Exploit DB Packet Storm

227204	2.1	注意	speedtech	-	Drupal 用の Storm モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-2123	2012-12-20 19:29	2010-05-19	Show	GitHub Exploit DB Packet Storm

227205	5	警告	SolarWinds	-	SolarWinds TFTP Server におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-2115	2012-12-20 19:29	2010-05-28	Show	GitHub Exploit DB Packet Storm

227206	3.5	注意	uniformserver	-	The Uniform Server におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2010-2113	2012-12-20 19:29	2010-05-28	Show	GitHub Exploit DB Packet Storm

227207	10	危険	timo gaik	-	Webby Webserver におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-2102	2012-12-20 19:29	2010-05-27	Show	GitHub Exploit DB Packet Storm

227208	7.5	危険	UnrealIRCd	-	UnrealIRCd における任意のコマンドを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-2075	2012-12-20 19:29	2010-06-15	Show	GitHub Exploit DB Packet Storm

227209	5	警告	radovan garabik	-	Pyftpd の auth_db_config.py における FTP サーバから任意のファイルを読まれる脆弱性	CWE-255 証明書・パスワード管理	CVE-2010-2073	2012-12-20 19:29	2010-06-13	Show	GitHub Exploit DB Packet Storm

227210	3.6	注意	radovan garabik	-	Pyftpd におけるサービス運用妨害 (DoS) の脆弱性	CWE-310 暗号の問題	CVE-2010-2072	2012-12-20 19:29	2010-06-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2181	4.9	MEDIUM Network	-	-	A vulnerability exists in iControl SOAP where an authenticated attacker with the Resource Administrator or Administrator role can download sensitive files. Note: Software versions which have reached…	CWE-552 Files or Directories Accessible to External Parties	CVE-2026-42063	2026-05-14 01:27	2026-05-14	Show	GitHub Exploit DB Packet Storm

2182	8.7	HIGH Network	-	-	A vulnerability exists in BIG-IP and BIG-IQ systems where a highly privileged, authenticated attacker with at least the Certificate Manager role can modify configuration objects that allow running ar…	CWE-267 Privilege Defined With Unsafe Actions	CVE-2026-42406	2026-05-14 01:27	2026-05-14	Show	GitHub Exploit DB Packet Storm

2183	4.4	MEDIUM Local	-	-	When BIG-IP DNS is provisioned, a vulnerability exists in an undisclosed TMOS Shell (tmsh) command that may allow a highly privileged authenticated attacker to view sensitive information. Note: Soft…	CWE-312 Cleartext Storage of Sensitive Information	CVE-2026-42408	2026-05-14 01:27	2026-05-14	Show	GitHub Exploit DB Packet Storm

2184	7.5	HIGH Network	-	-	When an HTTP/2 profile and an iRule containing the HTTP::redirect or HTTP::respond command are configured on a virtual server, undisclosed requests can cause the Traffic Management Microkernel (TMM) …	CWE-476 NULL Pointer Dereference	CVE-2026-42409	2026-05-14 01:27	2026-05-14	Show	GitHub Exploit DB Packet Storm

2185	4.9	MEDIUM Network	-	-	A directory traversal vulnerability exists in BIG-IP SSL Orchestrator that allows an authenticated attacker with high privilege to overwrite, delete or corrupt arbitrary local files. Note: Software …	CWE-22 Path Traversal	CVE-2026-42780	2026-05-14 01:27	2026-05-14	Show	GitHub Exploit DB Packet Storm

2186	6.5	MEDIUM Adjacent	-	-	When embedded Packet Velocity Acceleration (ePVA) acceleration is configured, undisclosed local ethernet traffic can cause an increase in ePVA and Traffic Management Microkernel (TMM) resource utiliz…	CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2026-42781	2026-05-14 01:27	2026-05-14	Show	GitHub Exploit DB Packet Storm

2187	6.7	MEDIUM Network	-	-	A vulnerability exists in BIG-IP systems that may allow an authenticated attacker with administrative access to escalate their privileges. A successful exploit may allow the attacker to cross a secur…	CWE-121 Stack-based Buffer Overflow	CVE-2026-42919	2026-05-14 01:27	2026-05-14	Show	GitHub Exploit DB Packet Storm

2188	7.5	HIGH Network	-	-	When a Client SSL profile is configured with Allow Dynamic Record Sizing on a UDP virtual server, undisclosed traffic can cause the Traffic Management Microkernel (TMM) to terminate. Note: Software …	CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2026-42920	2026-05-14 01:27	2026-05-14	Show	GitHub Exploit DB Packet Storm

2189	8.7	HIGH Network	-	-	An authenticated attacker with the Resource Administrator or Administrator role can create SNMP configuration objects through iControl SOAP resulting in privilege escalation. Note: Software versions…	CWE-78 OS Command	CVE-2026-42924	2026-05-14 01:27	2026-05-14	Show	GitHub Exploit DB Packet Storm

2190	5.8	MEDIUM Network	-	-	When NGINX Open Source is configured to proxy HTTP/2 traffic by setting proxy_http_version to 2, and also uses proxy_set_body, an attacker may be able to inject frame headers and payload bytes to the…	CWE-172 Encoding Error	CVE-2026-42926	2026-05-14 01:27	2026-05-14	Show	GitHub Exploit DB Packet Storm