Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 1, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251071 5.8 警告 Haxx - curl における絶対パストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-3842 2012-03-27 18:42 2010-10-13 Show GitHub Exploit DB Packet Storm
251072 4.3 警告 TWiki - TWiki の lib/TWiki.pm における クロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-3841 2012-03-27 18:42 2010-10-18 Show GitHub Exploit DB Packet Storm
251073 6 警告 PostgreSQL.org
Alvaro Herrera		 - PostgreSQL の PL/php アドオンにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-3781 2012-03-27 18:42 2010-10-6 Show GitHub Exploit DB Packet Storm
251074 5 警告 Mozilla Foundation - Bugzilla の Old Charts 実装における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-3764 2012-03-27 18:42 2010-11-5 Show GitHub Exploit DB Packet Storm
251075 4.3 警告 MantisBT Group - MantisBT の core/summary_api.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-3763 2012-03-27 18:42 2010-08-30 Show GitHub Exploit DB Packet Storm
251076 10 危険 IBM - IBM TSM FastBack における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-3761 2012-03-27 18:42 2010-07-18 Show GitHub Exploit DB Packet Storm
251077 7.8 危険 IBM - IBM TSM FastBack の FastBackMount.exe におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-3760 2012-03-27 18:42 2010-07-18 Show GitHub Exploit DB Packet Storm
251078 10 危険 IBM - IBM TSM FastBack の FastBackMount.exe における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-3759 2012-03-27 18:42 2010-07-18 Show GitHub Exploit DB Packet Storm
251079 10 危険 IBM - IBM TSM FastBack の FastBackServer.exe におけるスタックベースのバッファオーバーフローの脆弱性 CWE-94
コード・インジェクション 		CVE-2010-3758 2012-03-27 18:42 2010-07-18 Show GitHub Exploit DB Packet Storm
251080 10 危険 IBM - IBM TSM FastBack の _Eventlog 関数における任意のコードを実行される脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2010-3757 2012-03-27 18:42 2010-07-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
4631 3.2 LOW
Local 		- - Sangoma Switchvox before 8.4 places cleartext SIP authentication credentials in a backup file. CWE-312
 Cleartext Storage of Sensitive Information 		CVE-2026-45362 2026-05-14 00:46 2026-05-12 Show GitHub Exploit DB Packet Storm
4632 5.3 MEDIUM
Network 		- - Missing Authorization vulnerability in WPMU DEV Hustle allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Hustle: through 7.8.10.1. CWE-862
 Missing Authorization 		CVE-2026-25431 2026-05-14 00:46 2026-05-13 Show GitHub Exploit DB Packet Storm
4633 8.8 HIGH
Network 		snorkel snorkel The snorkel library thru v0.10.0 contains an insecure deserialization vulnerability (CWE-502) in the MultitaskClassifier.load() method of the MultitaskClassifier class. The method loads model weight … CWE-502
 Deserialization of Untrusted Data 		CVE-2026-31224 2026-05-14 00:44 2026-05-13 Show GitHub Exploit DB Packet Storm
4634 7.1 HIGH
Network 		- - The Salesforce module before 1.x-1.0.1 for Backdrop CMS does not properly use a random state parameter to protect the authorization flow against CSRF attacks. CWE-352
 Origin Validation Error 		CVE-2026-45430 2026-05-14 00:43 2026-05-12 Show GitHub Exploit DB Packet Storm
4635 5.4 MEDIUM
Network 		- - A Stored Cross-Site Scripting (XSS) vulnerability was discovered in the File Management module of FluentCMS 1.2.3. The flaw allows an authenticated administrator to upload crafted SVG files containin… CWE-79
Cross-site Scripting 		CVE-2025-70842 2026-05-14 00:43 2026-05-13 Show GitHub Exploit DB Packet Storm
4636 7.7 HIGH
Network 		- - Xibo is an open source digital signage platform with a web content management system and Windows display player software. Prior to 4.4.1, an authenticated Server-Side Request Forgery (SSRF) vulnerabi… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-42141 2026-05-14 00:43 2026-05-13 Show GitHub Exploit DB Packet Storm
4637 5.3 MEDIUM
Network 		- - Statamic is a Laravel and Git powered content management system (CMS). Prior to 5.73.21 and 6.15.0, responses from the forgot password forms hinted at whether an account existed for a given email add… CWE-204
 Response Discrepancy Information Exposure 		CVE-2026-44306 2026-05-14 00:43 2026-05-13 Show GitHub Exploit DB Packet Storm
4638 - - - Net::IMAP implements Internet Message Access Protocol (IMAP) client functionality in Ruby. Prior to versions 0.4.24, 0.5.14, and 0.6.4, Net::IMAP::ResponseReader has quadratic time complexity when re… CWE-407
 Inefficient Algorithmic Complexity 		CVE-2026-42245 2026-05-14 00:39 2026-05-10 Show GitHub Exploit DB Packet Storm
4639 - - - Net::IMAP implements Internet Message Access Protocol (IMAP) client functionality in Ruby. Prior to versions 0.3.10, 0.4.24, 0.5.14, and 0.6.4, a man-in-the-middle attacker can cause Net::IMAP#startt… CWE-392
CWE-393
CWE-636
CWE-754
CWE-841
 Missing Report of Error Condition
 Return of Wrong Status Code
 Not Failing Securely ('Failing Open')
 Improper Check for Unusual or Exceptional Conditions
 Improper Enforcement of Behavioral Workflow 		CVE-2026-42246 2026-05-14 00:39 2026-05-10 Show GitHub Exploit DB Packet Storm
4640 - - - Net::IMAP implements Internet Message Access Protocol (IMAP) client functionality in Ruby. From versions 0.4.0 to before 0.4.24, 0.5.0 to before 0.5.14, and 0.6.0 to before 0.6.4, when authenticating… CWE-770
CWE-1322
 Allocation of Resources Without Limits or Throttling
 Use of Blocking Code in Single-threaded, Non-blocking Context 		CVE-2026-42256 2026-05-14 00:39 2026-05-10 Show GitHub Exploit DB Packet Storm