Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 1, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
250671 7.2 危険 kernel.org - Linux-PAM の pam_env モジュールにおける意図しない環境でプログラムを実行される脆弱性 CWE-DesignError
CVE-2010-4708 2012-03-27 18:42 2011-01-24 Show GitHub Exploit DB Packet Storm
250672 4.9 警告 kernel.org - Linux-PAM の check_acl 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-4707 2012-03-27 18:42 2011-01-24 Show GitHub Exploit DB Packet Storm
250673 4.9 警告 kernel.org - Linux-PAM の pam_sm_close_session 関数における意図しないファイルを削除する脆弱性 CWE-DesignError
CVE-2010-4706 2012-03-27 18:42 2011-01-24 Show GitHub Exploit DB Packet Storm
250674 9.3 危険 FFmpeg - FFmpeg の vorbis_residue_decode_internal 関数における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2010-4705 2012-03-27 18:42 2011-01-22 Show GitHub Exploit DB Packet Storm
250675 4.3 警告 FFmpeg - FFmpeg の libavcodec/vorbis_dec.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-4704 2012-03-27 18:42 2011-01-22 Show GitHub Exploit DB Packet Storm
250676 7.5 危険 hotwebscripts - HotWebScripts HotWeb Rentals の default.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4703 2012-03-27 18:42 2011-01-20 Show GitHub Exploit DB Packet Storm
250677 7.5 危険 fxwebdesign - Joomla! の JRadio (com_jradio) コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4702 2012-03-27 18:42 2011-01-20 Show GitHub Exploit DB Packet Storm
250678 5 警告 catb
レッドハット		 - gif2png の特定の Fedora パッチにおける想定しない PNG ファイルを作成される脆弱性 CWE-119
バッファエラー 		CVE-2010-4695 2012-03-27 18:42 2011-01-14 Show GitHub Exploit DB Packet Storm
250679 6.8 警告 catb - gif2png の gif2png.c におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-4694 2012-03-27 18:42 2011-01-14 Show GitHub Exploit DB Packet Storm
250680 4.3 警告 Coppermine Photo Gallery - CPG におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4693 2012-03-27 18:42 2011-01-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
961 5.5 MEDIUM
Network 		jenkins buildgraph-view Jenkins buildgraph-view Plugin 1.8 and earlier does not escape the build URL, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers able to configure jobs or views. CWE-79
Cross-site Scripting 		CVE-2026-48927 2026-05-29 01:52 2026-05-28 Show GitHub Exploit DB Packet Storm
962 7.5 HIGH
Network 		free5gc free5gc free5GC is an open-source implementation of the 5G core network. Prior to 4.2.2, free5GC's NRF root SBI endpoint POST /oauth2/token contains a parser-level type-confusion bug family. The handler in N… CWE-20
CWE-755
CWE-843
 Improper Input Validation 
 Improper Handling of Exceptional Conditions
Type Confusion 		CVE-2026-44325 2026-05-29 01:51 2026-05-28 Show GitHub Exploit DB Packet Storm
963 4.3 MEDIUM
Network 		jenkins multijob A cross-site request forgery (CSRF) vulnerability in Jenkins Multijob Plugin 662.vd2e0001f6b_b_d and earlier allows attackers to resume failed Multijob builds. CWE-352
 Origin Validation Error 		CVE-2026-9674 2026-05-29 01:51 2026-05-28 Show GitHub Exploit DB Packet Storm
964 5.4 MEDIUM
Network 		synology contacts Improper neutralization of input during web page generation ('Cross-site Scripting') vulnerability in contact functionality in Synology Contacts before 1.0.10-20659 allows remote authenticated users … CWE-79
Cross-site Scripting 		CVE-2025-13167 2026-05-29 01:37 2026-05-27 Show GitHub Exploit DB Packet Storm
965 9.4 CRITICAL
Network 		free5gc free5gc free5GC is an open-source implementation of the 5G core network. Prior to 4.2.2, free5GC's NEF mounts the 3gpp-traffic-influence API without inbound OAuth2/bearer-token authorization. A network attac… CWE-862
 Missing Authorization 		CVE-2026-44326 2026-05-29 01:25 2026-05-28 Show GitHub Exploit DB Packet Storm
966 10.0 CRITICAL
Network 		free5gc free5gc free5GC is an open-source implementation of the 5G core network. Prior to 4.2.2, free5GC's NEF mounts the nnef-oam route group without inbound OAuth2/bearer-token authorization. A network attacker wh… CWE-306
CWE-862
Missing Authentication for Critical Function
 Missing Authorization 		CVE-2026-44327 2026-05-29 01:24 2026-05-28 Show GitHub Exploit DB Packet Storm
967 8.2 HIGH
Network 		free5gc free5gc free5GC is an open-source implementation of the 5G core network. Prior to 4.2.2, free5GC's SMF mounts the UPI management route group without inbound OAuth2 middleware. On top of that, the DELETE /upi… CWE-306
CWE-476
CWE-862
Missing Authentication for Critical Function
 NULL Pointer Dereference
 Missing Authorization 		CVE-2026-44328 2026-05-29 01:24 2026-05-28 Show GitHub Exploit DB Packet Storm
968 10.0 CRITICAL
Network 		free5gc free5gc free5GC is an open-source implementation of the 5G core network. Prior to 4.2.2, free5GC's SMF mounts the UPI management route group without OAuth2/bearer-token authorization middleware. A network at… CWE-306
CWE-862
Missing Authentication for Critical Function
 Missing Authorization 		CVE-2026-44329 2026-05-29 01:23 2026-05-28 Show GitHub Exploit DB Packet Storm
969 8.8 HIGH
Network 		- - A weakness has been identified in UTT HiPER 1200GW up to 2.5.3-170306. Affected is an unknown function of the file /goform/formPptpClientConfig of the component Web Management Interface. This manipul… CWE-119
CWE-121
Incorrect Access of Indexable Resource ('Range Error') 
Stack-based Buffer Overflow 		CVE-2026-9628 2026-05-29 01:16 2026-05-27 Show GitHub Exploit DB Packet Storm
970 6.3 MEDIUM
Network 		- - A vulnerability was found in itsourcecode Courier Management System 1.0. The affected element is an unknown function of the file /parcel_list.php. Performing a manipulation of the argument s results … CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-9607 2026-05-29 01:16 2026-05-27 Show GitHub Exploit DB Packet Storm