Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 24, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
242361	7.5	危険	cmsqlite	-	CMSQlite の index.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-2096	2012-06-26 16:19	2010-05-27	Show	GitHub Exploit DB Packet Storm

242362	7.5	危険	cmsqlite	-	CMSQlite の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-2095	2012-06-26 16:19	2010-05-27	Show	GitHub Exploit DB Packet Storm

242363	7.5	危険	The Cacti Group	-	Cacti の graph.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-2092	2012-06-26 16:19	2010-05-27	Show	GitHub Exploit DB Packet Storm

242364	4	警告	Apache Software Foundation	-	IBM WebSphere Application Server などで使用される Apache MyFaces における任意の EL 宣言文を実行される脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-2086	2012-06-26 16:19	2010-05-27	Show	GitHub Exploit DB Packet Storm

242365	5	警告	シスコシステムズ	-	Cisco Scientific Atlanta WebSTAR DPC2100R2 ケーブルモデムの Web インターフェースにおける特権を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2010-2082	2012-06-26 16:19	2010-05-26	Show	GitHub Exploit DB Packet Storm

242366	7.5	危険	Apache Software Foundation	-	Apache ServiceMix などで使用される Apache CXF における任意のファイルを読まれ任意の HTTP リクエストをサーバに送信される脆弱性	CWE-20 不適切な入力確認	CVE-2010-2076	2012-06-26 16:19	2010-06-16	Show	GitHub Exploit DB Packet Storm

242367	3.3	注意	GNU Project	-	GNU gv における任意のファイルを上書きされる脆弱性	CWE-59 リンク解釈の問題	CVE-2010-2056	2012-06-26 16:19	2010-06-6	Show	GitHub Exploit DB Packet Storm

242368	3.3	注意	emesene	-	emesene の emesenelib/ProfileManager.py における任意のファイルを上書きされる脆弱性	CWE-59 リンク解釈の問題	CVE-2010-2053	2012-06-26 16:19	2010-06-7	Show	GitHub Exploit DB Packet Storm

242369	7.5	危険	debliteck	-	Debliteck DBCart の article.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-2051	2012-06-26 16:19	2010-05-25	Show	GitHub Exploit DB Packet Storm

242370	4.3	警告	ActiveHelper Joomla!	-	Joomla! の ActiveHelper LiveHelp (com_activehelper_livehelp) コンポーネントにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-2046	2012-06-26 16:19	2010-05-25	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2291	4.7	MEDIUM Local	-	-	The consul-template library before version 0.42.0 is vulnerable to a sandbox path bypass in the file template helper that may allow reading an out-of-sandbox file. This vulnerability (CVE-2026-5061) …	CWE-59 Link Following	CVE-2026-5061	2026-05-14 00:53	2026-05-13	Show	GitHub Exploit DB Packet Storm

2292	6.0	MEDIUM Local	-	-	HashiCorp Nomad and Nomad Enterprise prior to 2.0.1 are vulnerable to arbitrary file read and write on the client host as the Nomad process user through a symlink attack. This vulnerability (CVE-2026…	CWE-59 Link Following	CVE-2026-6959	2026-05-14 00:53	2026-05-13	Show	GitHub Exploit DB Packet Storm

2293	8.8	HIGH Network	-	-	HashiCorp Nomad and Nomad Enterprise prior to 2.0.1 are vulnerable to code execution on the client host through a path traversal attack. This vulnerability (CVE-2026-7474) is fixed in Nomad 2.0.1, 1.…	CWE-22 Path Traversal	CVE-2026-7474	2026-05-14 00:53	2026-05-13	Show	GitHub Exploit DB Packet Storm

2294	6.0	MEDIUM Local	-	-	HashiCorp Nomad’s exec2 task driver prior to 0.1.2 is vulnerable to arbitrary file read and write on the client host as the Nomad process user through a symlink attack. This vulnerability (CVE-2026-8…	CWE-59 Link Following	CVE-2026-8052	2026-05-14 00:53	2026-05-13	Show	GitHub Exploit DB Packet Storm

2295	-		-	-	Use after free for some Linux kernel driver for the Intel(R) Ethernet 800 series before version 2.3.14 within Ring 0: Kernel may allow a denial of service. Unprivileged software adversary with an aut…	CWE-416 Use After Free	CVE-2025-27723	2026-05-14 00:52	2026-05-13	Show	GitHub Exploit DB Packet Storm

2296	-		-	-	Uncontrolled search path for some Intel(R) Server Firmware Update Utility Software before version 16.0.12. within Ring 3: User Applications may allow an escalation of privilege. System software adver…	CWE-427 Uncontrolled Search Path Element	CVE-2025-35969	2026-05-14 00:52	2026-05-13	Show	GitHub Exploit DB Packet Storm

2297	-		-	-	Exposure of sensitive information caused by shared microarchitectural predictor state that influences transient execution for some Intel(R) Processors within VMX non-root (guest) operation may allow …	-	CVE-2025-35979	2026-05-14 00:52	2026-05-13	Show	GitHub Exploit DB Packet Storm

2298	-		-	-	Improper input validation for some Intel Endpoint Management Assistant (EMA) software before version 1.14.5 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged softwar…	CWE-20 Improper Input Validation	CVE-2025-35990	2026-05-14 00:52	2026-05-13	Show	GitHub Exploit DB Packet Storm

2299	-		-	-	Improper initialization in the UEFI firmware for some Intel platforms within Ring 0: Bare Metal OS may allow an information disclosure. System software adversary with a privileged user combined with …	CWE-665 Improper Initialization	CVE-2025-35991	2026-05-14 00:52	2026-05-13	Show	GitHub Exploit DB Packet Storm

2300	-		-	-	Improper buffer restrictions for some Display Virtualization for Windows OS driver software within Ring 2: Device Drivers may allow a denial of service. Unprivileged software adversary with an authen…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2025-36510	2026-05-14 00:52	2026-05-13	Show	GitHub Exploit DB Packet Storm