Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 2:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
259981 9.3 危険 マイクロソフト - 複数の Microsoft 製品における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2010-3336 2010-12-6 16:51 2010-11-9 Show GitHub Exploit DB Packet Storm
259982 9.3 危険 マイクロソフト - 複数の Microsoft 製品における整数アンダーフローの脆弱性 CWE-189
数値処理の問題
CVE-2010-2573 2010-12-6 16:30 2010-11-9 Show GitHub Exploit DB Packet Storm
259983 9.3 危険 マイクロソフト - Microsoft Office における権限昇格の脆弱性 CWE-Other
その他
CVE-2010-3337 2010-12-6 15:44 2010-08-23 Show GitHub Exploit DB Packet Storm
259984 9.3 危険 マイクロソフト - 複数の Microsoft 製品における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2010-3335 2010-12-6 15:36 2010-11-9 Show GitHub Exploit DB Packet Storm
259985 9.3 危険 マイクロソフト - 複数の Microsoft 製品における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2010-3334 2010-12-6 15:30 2010-11-9 Show GitHub Exploit DB Packet Storm
259986 4.3 警告 Zope Foundation - Zope Object Database の ZEO/StorageServer.py におけるサービス運用妨害 (DoS) の脆弱性 CWE-362
競合状態
CVE-2010-3495 2010-12-6 15:20 2010-10-19 Show GitHub Exploit DB Packet Storm
259987 4.3 警告 マイクロソフト - 複数の Microsoft 製品の toStaticHTML 関数 および SafeHTML 関数におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2010-3324 2010-12-3 14:05 2010-10-12 Show GitHub Exploit DB Packet Storm
259988 6.8 警告 アップル - Apple Mac OS X の xar におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2010-3798 2010-12-3 13:13 2010-11-16 Show GitHub Exploit DB Packet Storm
259989 3.5 注意 アップル - Apple Mac OS X の Wiki サーバにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2010-3797 2010-12-3 13:12 2010-11-16 Show GitHub Exploit DB Packet Storm
259990 4.3 警告 アップル - Apple Mac OS X の Safari RSS における重要な情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2010-3796 2010-12-3 13:10 2010-11-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1651 8.2 HIGH
Network
- - FlatPress contains a stored cross-site scripting vulnerability in comment and contact forms where name, URL, and email fields are rendered without proper output encoding in Smarty templates. Attacker… CWE-79
Cross-site Scripting
CVE-2026-56785 2026-06-26 04:25 2026-06-24 Show GitHub Exploit DB Packet Storm
1652 7.5 HIGH
Network
- - Winstone Servlet Engine through 0.9.10 contains a path traversal vulnerability that allows unauthenticated attackers to read arbitrary files by sending HTTP GET requests with dot-dot-slash sequences … CWE-22
Path Traversal
CVE-2026-56122 2026-06-26 04:25 2026-06-25 Show GitHub Exploit DB Packet Storm
1653 8.1 HIGH
Network
- - HTMLy CMS through 3.1.1 contains a path traversal vulnerability that allows low-privileged authenticated attackers to relocate arbitrary files by supplying directory traversal sequences in the oldfil… CWE-22
Path Traversal
CVE-2026-45233 2026-06-26 04:25 2026-06-26 Show GitHub Exploit DB Packet Storm
1654 8.1 HIGH
Network
- - ProFTPD through 1.3.9b and 1.3.10rc2 contains an access control bypass vulnerability that allows authenticated FTP users to circumvent Directory ACL restrictions by prefixing paths with /proc/self/ro… CWE-59
Link Following
CVE-2026-35025 2026-06-26 04:25 2026-06-24 Show GitHub Exploit DB Packet Storm
1655 9.1 CRITICAL
Network
- - Marlin Firmware through 2.1.2.7, fixed in commit 1f255d1, when built with MESH_BED_LEVELING enabled, contains an out-of-bounds write vulnerability in the M421 G-code handler that allows attackers to … CWE-129
 Improper Validation of Array Index
CVE-2026-56111 2026-06-26 04:25 2026-06-25 Show GitHub Exploit DB Packet Storm
1656 - - - ToolJet is the open-source foundation am AI-native platform for building and deploying internal tools, workflows and AI agents. Prior to 3.20.178-lts, any authenticated user with builder role (free t… CWE-94
Code Injection
CVE-2026-55413 2026-06-26 04:16 2026-06-26 Show GitHub Exploit DB Packet Storm
1657 8.3 HIGH
Network
- - ToolJet is the open-source foundation am AI-native platform for building and deploying internal tools, workflows and AI agents. Prior to 3.20.178-lts, there's an SSRF in the RestAPI data source compo… CWE-918
Server-Side Request Forgery (SSRF) 
CVE-2026-55412 2026-06-26 04:16 2026-06-26 Show GitHub Exploit DB Packet Storm
1658 6.8 MEDIUM
Adjacent
- - ToolJet is the open-source foundation am AI-native platform for building and deploying internal tools, workflows and AI agents. Prior to 3.20.1780-lts, the authenticated endpoint POST /api/data-sourc… CWE-639
CWE-863
 Authorization Bypass Through User-Controlled Key
 Incorrect Authorization
CVE-2026-55411 2026-06-26 04:16 2026-06-26 Show GitHub Exploit DB Packet Storm
1659 7.5 HIGH
Network
- - Zephyr's IPv6 network stack can be prevented from receiving or processing future incoming packets by sending a small number of maliciously fragmented IPv6 packets. When such a packet is handled by th… CWE-772
 Missing Release of Resource after Effective Lifetime
CVE-2026-13351 2026-06-26 04:16 2026-06-26 Show GitHub Exploit DB Packet Storm
1660 8.7 HIGH
Local
- - Anthropic Claude Desktop Cowork VM image handling (confirmed across v1.1348.0 through v1.2278.0, including v1.1348.0, v1.1617.0, and v1.2278.0) validates only file presence and a version marker strin… CWE-353
 Missing Support for Integrity Check
CVE-2026-7574 2026-06-26 04:14 2026-06-24 Show GitHub Exploit DB Packet Storm