Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 6, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
243651 7.5 危険 enanocms - Enano CMS のコメント登録インターフェースにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-0471 2012-06-26 16:19 2010-02-2 Show GitHub Exploit DB Packet Storm
243652 4.3 警告 comtrend - Comtrend CT-507IT ADSL ルータの scvrtsrv.cmd におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-0470 2012-06-26 16:19 2010-02-2 Show GitHub Exploit DB Packet Storm
243653 7.5 危険 files2links - Files2Links F2L 3000 機器における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-0469 2012-06-26 16:19 2010-02-2 Show GitHub Exploit DB Packet Storm
243654 5 警告 Chill Creations
Joomla!		 - Joomla! の ccNewsletter コンポーネントにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-0467 2012-06-26 16:19 2010-02-2 Show GitHub Exploit DB Packet Storm
243655 7.5 危険 a3malnet - magic-portal の home.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-0457 2012-06-26 16:19 2010-01-28 Show GitHub Exploit DB Packet Storm
243656 7.5 危険 fabricadigital - Publique! の cgi/cgilua.exe/sys/start.htm における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-0454 2012-06-26 16:19 2010-01-28 Show GitHub Exploit DB Packet Storm
243657 5 警告 Digium - Asterisk Open Source におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-0441 2012-06-26 16:19 2010-02-4 Show GitHub Exploit DB Packet Storm
243658 6.9 警告 chip salzenberg - Chip Salzenberg Deliver における重要な情報を取得される脆弱性 CWE-59
リンク解釈の問題 		CVE-2010-0439 2012-06-26 16:19 2010-03-26 Show GitHub Exploit DB Packet Storm
243659 4.3 警告 entente-oya
Apache Software Foundation
neogia		 - Opentaps などで使用される Apache Open For Business Project におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-0432 2012-06-26 16:19 2010-04-15 Show GitHub Exploit DB Packet Storm
243660 3.3 注意 paul vixie
fedorahosted.org		 - cronie および Vixie cron の edit_cmd 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-59
リンク解釈の問題 		CVE-2010-0424 2012-06-26 16:19 2010-02-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2921 3.7 LOW
Network 		adcisolutions node_view_permissions Improper Check for Unusual or Exceptional Conditions vulnerability in Drupal Node View Permissions allows Forceful Browsing. This issue affects Node View Permissions: from 0.0.0 before 1.7.0, from 2… CWE-754
 Improper Check for Unusual or Exceptional Conditions 		CVE-2026-8491 2026-05-28 00:00 2026-05-20 Show GitHub Exploit DB Packet Storm
2922 9.1 CRITICAL
Network 		- - Lumiverse is a full-featured AI chat application. Prior to 0.9.7, when the primary toSmbPath(fullPath) call throws, the method falls back to a dirname/basename split and only validates the directory … CWE-88
Argument Injection 		CVE-2026-44449 2026-05-27 23:57 2026-05-27 Show GitHub Exploit DB Packet Storm
2923 9.9 CRITICAL
Network 		- - Lumiverse is a full-featured AI chat application. Prior to 0.9.7, the MCP server creation endpoint validates the command field against an allowlist of binary names but forwards the args array to the … CWE-88
Argument Injection 		CVE-2026-44450 2026-05-27 23:57 2026-05-27 Show GitHub Exploit DB Packet Storm
2924 7.1 HIGH
Network 		- - The EventPress WordPress theme before 22.2 does not sanitize or escape the 'id' parameter in the eventpress_customizer_notify_dismiss_action AJAX handler before outputting it back in the response, al… CWE-79
Cross-site Scripting 		CVE-2026-6268 2026-05-27 23:55 2026-05-27 Show GitHub Exploit DB Packet Storm
2925 8.8 HIGH
Adjacent 		- - An attacker is able to downgrade the security of a Bluetooth LE connection by deleting an existing bond, spoofing the bonded device and creating a new bond. CWE-290
 Authentication Bypass by Spoofing 		CVE-2026-8676 2026-05-27 23:54 2026-05-27 Show GitHub Exploit DB Packet Storm
2926 5.8 MEDIUM
Local 		- - When the director sends a long-running request (e.g. compile_package), the agent's reply JSON is consumed by AgentClient. inject_compile_log (line 332-339) reads response['value']['result']['compile_… CWE-22
Path Traversal 		CVE-2026-41009 2026-05-27 23:54 2026-05-27 Show GitHub Exploit DB Packet Storm
2927 5.0 MEDIUM
Local 		- - AgentClient#handle_method (lines 264-303) processes every NATS reply. It calls inject_compile_log (line 273) on every response, which reads response['value']['result']['compile_log_id'] (line 332-338… CWE-284
Improper Access Control 		CVE-2026-41704 2026-05-27 23:54 2026-05-27 Show GitHub Exploit DB Packet Storm
2928 5.9 MEDIUM
Network 		- - IBM Operations Analytics - Log Analysis 1.3.5.0, 1.3.5.1, 1.3.5.2, 1.3.5.3, 1.3.6.0, 1.3.6.1, 1.3.7.0, 1.3.7.1, 1.3.7.2, and 1.3.8.0, 1.3.8.1, 1.3.8.2, 1.3.8.3, 1.3.8.4 IBM SmartCloud Analytics - Log… CWE-521
Weak Password Requirements  		CVE-2024-40684 2026-05-27 23:53 2026-05-27 Show GitHub Exploit DB Packet Storm
2929 7.2 HIGH
Network 		- - IBM QRadar 7.5.0 through 7.5.0 UP15 Interim Fix 002 could allow a privileged user to upload a malicious backup archive that could be restored and used to gain access to the underlying operating syste… CWE-530
 Exposure of Backup File to an Unauthorized Control Sphere 		CVE-2024-56462 2026-05-27 23:53 2026-05-27 Show GitHub Exploit DB Packet Storm
2930 5.1 MEDIUM
Local 		- - IBM MQ Operator SC2: v3.2.0 through 3.2.23CD:  v3.3.0, v3.4.0, v3.4.1, v3.5.0, v3.5.1 - v3.5.3, v3.6.0 - v3.6.4, v3.7.0 - v3.7.2, v3.8.0, v3.8.1, v3.9.0, v3.9.1LTS: v2.0.0 - 2.0.29 and IBM supplied M… CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2026-2607 2026-05-27 23:53 2026-05-27 Show GitHub Exploit DB Packet Storm