Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 2:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
259551 6.8 警告 オラクル - Oracle Database Server の Database Vault コンポーネントにおける脆弱性 CWE-noinfo
情報不足
CVE-2010-4421 2011-02-9 16:42 2011-01-18 Show GitHub Exploit DB Packet Storm
259552 7.5 危険 オラクル - 複数の Oracle 製品の Client System Analyzer コンポーネントにおける脆弱性 CWE-noinfo
情報不足
CVE-2010-3600 2011-02-9 16:41 2011-01-18 Show GitHub Exploit DB Packet Storm
259553 7.2 危険 マイクロソフト - 複数の Microsoft 製品の kernel-mode ドライバにおける権限を取得される脆弱性 CWE-Other
その他
CVE-2010-2743 2011-02-9 16:39 2010-10-12 Show GitHub Exploit DB Packet Storm
259554 5 警告 LibTIFF
オラクル
- LibTIFF の OJPEGReadBufferFill 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他
CVE-2010-2443 2011-02-8 15:27 2010-06-24 Show GitHub Exploit DB Packet Storm
259555 6.8 警告 LibTIFF
オラクル
- LibTIFF の TIFFroundup マクロにおける整数オーバーフローの脆弱性 CWE-189
数値処理の問題
CVE-2010-2065 2011-02-8 15:27 2010-06-24 Show GitHub Exploit DB Packet Storm
259556 4 警告 サイバートラスト株式会社
MySQL AB
レッドハット
- MySQL におけるサービス運用妨害 (DoS) の脆弱性 CWE-DesignError
CVE-2010-3839 2011-02-8 15:13 2010-09-10 Show GitHub Exploit DB Packet Storm
259557 9.3 危険 アップル
レッドハット
- Apple Safari の WebKit における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題
CVE-2010-1793 2011-02-7 15:36 2010-07-30 Show GitHub Exploit DB Packet Storm
259558 9.3 危険 アップル
レッドハット
- Apple Safari の WebKit における任意のコードを実行される脆弱性 CWE-Other
その他
CVE-2010-1790 2011-02-7 15:34 2010-07-30 Show GitHub Exploit DB Packet Storm
259559 9.3 危険 アップル
レッドハット
- Apple Safari の WebKit における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2010-1788 2011-02-7 15:33 2010-07-30 Show GitHub Exploit DB Packet Storm
259560 9.3 危険 アップル
レッドハット
- Apple Safari の WebKit における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2010-1787 2011-02-7 15:32 2010-07-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1181 4.3 MEDIUM
Network
jenkins fitnesse Jenkins FitNesse Plugin 1.36 and earlier stores passwords unencrypted in job config.xml files on the Jenkins controller, where they can be viewed by users with Extended Read permission or access to t… CWE-256
Plaintext Storage of a Password 
CVE-2026-57302 2026-06-27 04:05 2026-06-24 Show GitHub Exploit DB Packet Storm
1182 4.2 MEDIUM
Network
jenkins zowe_zdevops A cross-site request forgery (CSRF) vulnerability in Jenkins Zowe zDevOps Plugin 1.1.3.50.ve350c9b_450b_1 and earlier allows attackers to connect to an attacker-specified URL using attacker-specified… CWE-352
 Origin Validation Error
CVE-2026-57306 2026-06-27 04:05 2026-06-24 Show GitHub Exploit DB Packet Storm
1183 4.2 MEDIUM
Network
jenkins zowe_zdevops A missing permission check in Jenkins Zowe zDevOps Plugin 1.1.3.50.ve350c9b_450b_1 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-spe… CWE-862
 Missing Authorization
CVE-2026-57307 2026-06-27 04:05 2026-06-24 Show GitHub Exploit DB Packet Storm
1184 7.5 HIGH
Network
shell-quote_project shell-quote shell-quote prior to 1.8.5 finalizes parsed tokens in parse() using Array.prototype.concat as a reduce accumulator, which reallocates and copies the entire growing array on every iteration. As a resu… CWE-407
 Inefficient Algorithmic Complexity
CVE-2026-13311 2026-06-27 04:03 2026-06-25 Show GitHub Exploit DB Packet Storm
1185 2.6 LOW
Network
nokogiri nokogiri Nokogiri is an open source XML and HTML library for the Ruby programming language. Prior to 1.19.4, the NONET parse option, which Nokogiri turns on by default for Nokogiri::XML::Schema (see CVE-2020-… CWE-178
CWE-184
CWE-611
 Improper Handling of Case Sensitivity
 Incomplete Blacklist
XXE
CVE-2026-57234 2026-06-27 04:03 2026-06-26 Show GitHub Exploit DB Packet Storm
1186 8.1 HIGH
Network
librechat librechat LibreChat is an enhanced ChatGPT clone that supports multiple AI providers. Prior to 0.8.4-rc1, the GET /api/auth/2fa/enable endpoint can be called by an authenticated user (or attacker with a stolen… CWE-306
Missing Authentication for Critical Function
CVE-2026-54036 2026-06-27 04:02 2026-06-26 Show GitHub Exploit DB Packet Storm
1187 8.8 HIGH
Network
dokku dokku Dokku is a docker-powered PaaS. Prior to 0.38.2, the openresty-vhosts plugin copies files from an app's openresty/http-includes/ git repository directory to the host and then interpolates their filen… CWE-95
Eval Injection
CVE-2026-45406 2026-06-27 04:01 2026-06-27 Show GitHub Exploit DB Packet Storm
1188 5.5 MEDIUM
Local
freebsd freebsd When used to deliver a signal to a specific thread, thr_kill2(2) called p_cansignal() to determine whether the operation was permitted but did not check the result before delivering the signal. The … CWE-269
 Improper Privilege Management
CVE-2026-45256 2026-06-27 03:58 2026-06-27 Show GitHub Exploit DB Packet Storm
1189 7.5 HIGH
Network
apache apache-airflow-providers-ftp The Apache Airflow FTP provider's `FTPSHook.get_conn()` created an `ftplib.FTP_TLS` connection but never called `prot_p()`, so although the control channel was TLS-protected the data channel was tran… CWE-319
Cleartext Transmission of Sensitive Information
CVE-2026-49486 2026-06-27 03:58 2026-06-26 Show GitHub Exploit DB Packet Storm
1190 8.8 HIGH
Network
dokku dokku Dokku is a docker-powered PaaS. Prior to 0.38.2, the git:from-archive and certs:add commands extract user-supplied tar/zip archives into temporary directories without sanitizing member paths or preve… CWE-59
Link Following
CVE-2026-45405 2026-06-27 03:56 2026-06-27 Show GitHub Exploit DB Packet Storm