Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 6, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2531 7.8 重要
Local 		Bytello Ltd. Bytello Share(Windows版) Bytello Share(Windows版)のEXE形式インストーラにおけるDLL読み込みに関する脆弱性 CWE-Other
その他 		CVE-2026-44612 2026-05-13 12:05 2026-05-13 Show GitHub Exploit DB Packet Storm
2532 6.5 警告
Network 		whatsapp whatsapp whatsappにおけるNULL バイトまたは NULL キャラクタの無害化に関する脆弱性 CWE-158
NULL バイトまたは NULL キャラクタの不適切な無害化 		CVE-2026-23863 2026-05-13 10:27 2026-05-1 Show GitHub Exploit DB Packet Storm
2533 4.3 警告
Network 		whatsapp whatsapp whatsappにおける通信チャネルの送信元の不適切な検証に関する脆弱性 CWE-940
通信チャネルの送信元の不適切な検証 		CVE-2026-23866 2026-05-13 10:27 2026-05-1 Show GitHub Exploit DB Packet Storm
2534 7.5 重要
Network 		Postfix Project postfix Postfix Projectのpostfixにおける境界条件の判定に関する脆弱性 CWE-193
境界条件の判定 		CVE-2026-43964 2026-05-13 10:27 2026-05-4 Show GitHub Exploit DB Packet Storm
2535 8 重要
Network 		PHOENIX CONTACT fl mguard core tx ファームウェア
FL MGUARD 4305 Firmware
fl mguard delta tx/tx ファームウェア
fl mguard gt/gt vpn ファームウェア
FL&n… 		PHOENIX CONTACTのfl mguard 2102 ファームウェア等の複数製品における保存または転送前の重要な情報の削除に関する脆弱性 CWE-212
保存または転送前の重要な情報の不適切な削除 		CVE-2024-43384 2026-05-13 10:27 2026-05-7 Show GitHub Exploit DB Packet Storm
2536 6.5 警告
Network 		Fudo Security Fudo Enterprise Fudo SecurityのFudo Enterpriseにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2025-13480 2026-05-13 10:27 2026-04-20 Show GitHub Exploit DB Packet Storm
2537 9.8 緊急
Network 		Delta Electronics, INC. AS320T Firmware Delta Electronics, INC.のAS320T Firmwareにおけるバッファサイズの計算の誤りに関する脆弱性 CWE-131
正しくないバッファサイズ計算 		CVE-2026-1949 2026-05-13 10:27 2026-04-24 Show GitHub Exploit DB Packet Storm
2538 9.8 緊急
Network 		Delta Electronics, INC. AS320T Firmware Delta Electronics, INC.のAS320T Firmwareにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-121
スタックオーバーフロー 		CVE-2026-1950 2026-05-13 10:27 2026-04-24 Show GitHub Exploit DB Packet Storm
2539 9.8 緊急
Network 		Delta Electronics, INC. AS320T Firmware Delta Electronics, INC.のAS320T Firmwareにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-121
スタックオーバーフロー 		CVE-2026-1951 2026-05-13 10:27 2026-04-24 Show GitHub Exploit DB Packet Storm
2540 7.5 重要
Network 		Delta Electronics, INC. AS320T Firmware Delta Electronics, INC.のAS320T Firmwareにおける非公開の機能に関する脆弱性 CWE-912
非公開の機能 		CVE-2026-1952 2026-05-13 10:27 2026-04-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
345311 - alex_rabe nextgen_gallery Cross-site scripting (XSS) vulnerability in xml/media-rss.php in the NextGEN Gallery plugin before 1.5.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the mode para… CWE-79
Cross-site Scripting 		CVE-2010-1186 2017-08-17 10:32 2010-04-8 Show GitHub Exploit DB Packet Storm
345312 - mm_forum mmforum Cross-site scripting (XSS) vulnerability in the mm_forum extension 1.8.2 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2010-1218 2017-08-17 10:32 2010-03-31 Show GitHub Exploit DB Packet Storm
345313 - com_janews com_janews Directory traversal vulnerability in the JA News (com_janews) component 1.0 for Joomla! allows remote attackers to read arbitrary local files via a .. (dot dot) in the controller parameter to index.p… CWE-22
Path Traversal 		CVE-2010-1219 2017-08-17 10:32 2010-03-31 Show GitHub Exploit DB Packet Storm
345314 - apache activemq Cross-site request forgery (CSRF) vulnerability in createDestination.action in Apache ActiveMQ before 5.3.1 allows remote attackers to hijack the authentication of unspecified victims for requests th… CWE-352
 Origin Validation Error 		CVE-2010-1244 2017-08-17 10:32 2010-04-6 Show GitHub Exploit DB Packet Storm
345315 - kjetiltroan webmaid_cms Multiple PHP remote file inclusion vulnerabilities in WebMaid CMS 0.2-6 Beta and earlier allow remote attackers to execute arbitrary PHP code via a URL in the (1) template, (2) menu, (3) events, and … CWE-94
Code Injection 		CVE-2010-1266 2017-08-17 10:32 2010-04-7 Show GitHub Exploit DB Packet Storm
345316 - fh54 justvisual Directory traversal vulnerability in index.php in justVisual CMS 2.0, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files directory traversal seque… CWE-22
Path Traversal 		CVE-2010-1268 2017-08-17 10:32 2010-04-7 Show GitHub Exploit DB Packet Storm
345317 - phpscripte24 niedrig_gebote_pro_auktions_system_ii SQL injection vulnerability in auktion.php in phpscripte24 Niedrig Gebote Pro Auktions System II allows remote attackers to execute arbitrary SQL commands via the id_auk parameter. CWE-89
SQL Injection 		CVE-2010-1269 2017-08-17 10:32 2010-04-7 Show GitHub Exploit DB Packet Storm
345318 - phpscripte24 multi_suktions_komplett_system SQL injection vulnerability in auktion.php in Multi Auktions Komplett System 2 allows remote attackers to execute arbitrary SQL commands via the id_auk parameter. CWE-89
SQL Injection 		CVE-2010-1270 2017-08-17 10:32 2010-04-7 Show GitHub Exploit DB Packet Storm
345319 - smart-plugs smartplugs SQL injection vulnerability in showplugs.php in smartplugs 1.3 allows remote attackers to execute arbitrary SQL commands via the domain parameter. CWE-89
SQL Injection 		CVE-2010-1271 2017-08-17 10:32 2010-04-7 Show GitHub Exploit DB Packet Storm
345320 - komputer.boo gnat-tgp PHP remote file inclusion vulnerability in includes/tgpinc.php in Gnat-TGP 1.2.20 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the DOCUMENT_ROOT parameter. CWE-94
Code Injection 		CVE-2010-1272 2017-08-17 10:32 2010-04-7 Show GitHub Exploit DB Packet Storm