Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252771	5	警告	The PHP Group	-	PHP におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2011-4153	2012-01-19 13:52	2012-01-18	Show	GitHub Exploit DB Packet Storm

252772	7.5	危険	Simon Phillips	-	Joomla! 用 Aardvertiser コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4904	2012-01-19 11:45	2011-10-8	Show	GitHub Exploit DB Packet Storm

252773	7.5	危険	CubeCart Limited	-	CubeCart の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4903	2012-01-19 11:44	2011-10-8	Show	GitHub Exploit DB Packet Storm

252774	7.5	危険	Joomla-Clantools	-	Joomla! 用 Clantools コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4902	2012-01-19 11:44	2011-10-8	Show	GitHub Exploit DB Packet Storm

252775	4.3	警告	Squiz	-	MySource Matrix の char_map.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4901	2012-01-19 11:43	2011-10-8	Show	GitHub Exploit DB Packet Storm

252776	5.8	警告	WebManager Pro	-	CMS WebManager-Pro の c.php におけるオープンリダイレクトの脆弱性	CWE-20 不適切な入力確認	CVE-2010-4900	2012-01-19 11:43	2011-10-8	Show	GitHub Exploit DB Packet Storm

252777	7.5	危険	WebManager Pro	-	CMS WebManager-Pro の c.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4899	2012-01-19 11:42	2011-10-8	Show	GitHub Exploit DB Packet Storm

252778	7.5	危険	Gantry framework	-	Joomla! 用 Gantry における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4898	2012-01-19 11:41	2011-10-8	Show	GitHub Exploit DB Packet Storm

252779	7.5	危険	BlueCms	-	BlueCMS の comment.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4897	2012-01-19 11:41	2011-10-8	Show	GitHub Exploit DB Packet Storm

252780	4.3	警告	Expinion.net	-	Member Management System の admin/index.asp におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4896	2012-01-19 11:39	2011-10-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
5881	7.5	HIGH Network	-	-	pygeoapi is a Python server implementation of the OGC API suite of standards. From version 0.23.0 to before version 0.23.3, a raw string path concatenation vulnerability in pygeoapi's STAC FileSystem…	CWE-22 Path Traversal	CVE-2026-42351	2026-05-13 01:41	2026-05-9	Show	GitHub Exploit DB Packet Storm

5882	8.6	HIGH Network	-	-	pygeoapi is a Python server implementation of the OGC API suite of standards. From version 0.23.0 to before version 0.23.3, OGC API process execution requests can use the subscriber object to reques…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-42352	2026-05-13 01:41	2026-05-9	Show	GitHub Exploit DB Packet Storm

5883	8.1	HIGH Network	-	-	Termix is a web-based server management platform with SSH terminal, tunneling, and file editing capabilities. Prior to version 2.1.0, /users/login issues a temporary JWT (temp_token) for TOTP-enabled…	CWE-304 Missing Critical Step in Authentication	CVE-2026-42452	2026-05-13 01:40	2026-05-9	Show	GitHub Exploit DB Packet Storm

5884	-		-	-	Termix is a web-based server management platform with SSH terminal, tunneling, and file editing capabilities. Prior to version 2.1.0, the extractArchive and compressFiles endpoints in file-manager.ts…	CWE-77 Command Injection	CVE-2026-42453	2026-05-13 01:40	2026-05-9	Show	GitHub Exploit DB Packet Storm

5885	9.9	CRITICAL Network	-	-	Termix is a web-based server management platform with SSH terminal, tunneling, and file editing capabilities. Prior to version 2.1.0, all Docker container management endpoints in Termix interpolate t…	CWE-78 OS Command	CVE-2026-42454	2026-05-13 01:40	2026-05-9	Show	GitHub Exploit DB Packet Storm

5886	9.8	CRITICAL Network	-	-	FastGPT is an AI Agent building platform. From version 4.14.10 to before version 4.14.13, the agent-sandbox component of FastGPT is vulnerable to unauthenticated Remote Code Execution (RCE). The star…	CWE-306 Missing Authentication for Critical Function	CVE-2026-42302	2026-05-13 01:40	2026-05-9	Show	GitHub Exploit DB Packet Storm

5887	6.3	MEDIUM Network	-	-	FastGPT is an AI Agent building platform. In versions 4.14.11 and prior, FastGPT's isInternalAddress() function in packages/service/common/system/utils.ts is vulnerable to DNS rebinding (TOCTOU — Tim…	CWE-367 Time-of-check Time-of-use (TOCTOU) Race Condition	CVE-2026-42344	2026-05-13 01:40	2026-05-9	Show	GitHub Exploit DB Packet Storm

5888	-		-	-	FastGPT is an AI Agent building platform. Prior to version 4.14.17, an unauthenticated Server-Side Request Forgery (SSRF) vulnerability allows attackers (or authenticated users with App editing privi…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-44286	2026-05-13 01:40	2026-05-9	Show	GitHub Exploit DB Packet Storm

5889	7.7	HIGH Network	-	-	FastGPT is an AI Agent building platform. In versions 4.14.11 and prior, FastGPT's isInternalAddress() function in packages/service/common/system/utils.ts blocks cloud metadata endpoints using a full…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-42345	2026-05-13 01:40	2026-05-9	Show	GitHub Exploit DB Packet Storm

5890	6.3	MEDIUM Network	-	-	FastGPT is an AI Agent building platform. Prior to version 4.14.17, FastGPT had an inconsistent SSRF protection gap in MCP tool URL handling. The direct MCP preview/run endpoints already rejected int…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-44284	2026-05-13 01:40	2026-05-9	Show	GitHub Exploit DB Packet Storm