Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 10 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
260191 5 警告 ISC, Inc. - BIND の ACL の処理に問題 CWE-264
認可・権限・アクセス制御
CVE-2010-0218 2010-10-15 13:24 2010-10-1 Show GitHub Exploit DB Packet Storm
260192 5.1 警告 K2 Software - K2Editor における実行ファイル読み込みに関する脆弱性 CWE-Other
その他
CVE-2010-3156 2010-10-15 11:22 2010-10-15 Show GitHub Exploit DB Packet Storm
260193 6.8 警告 kMonos.NET - XacRett における実行ファイル読み込みに関する脆弱性 CWE-Other
その他
CVE-2010-3157 2010-10-15 11:22 2010-10-15 Show GitHub Exploit DB Packet Storm
260194 5 警告 The PHP Group - PHP における重要な情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2010-2101 2010-10-14 16:20 2010-05-26 Show GitHub Exploit DB Packet Storm
260195 9.3 危険 レッドハット - Winamp および libmikmod の IN_MOD.DLL におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2009-3996 2010-10-14 16:19 2009-12-18 Show GitHub Exploit DB Packet Storm
260196 9.3 危険 レッドハット - Winamp および libmikmod の IN_MOD.DLL におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2009-3995 2010-10-14 16:19 2009-12-18 Show GitHub Exploit DB Packet Storm
260197 4.3 警告 レッドハット - libmikmod におけるサービス運用妨害 (DoS) の脆弱性 CWE-DesignError
CVE-2007-6720 2010-10-14 16:19 2009-01-20 Show GitHub Exploit DB Packet Storm
260198 7.8 危険 シスコシステムズ - Cisco IOS の SSL VPN 機能におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題
CVE-2010-2836 2010-10-13 17:00 2010-09-22 Show GitHub Exploit DB Packet Storm
260199 7.8 危険 シスコシステムズ - 複数の Cisco 製品におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他
CVE-2009-2051 2010-10-13 16:59 2010-09-22 Show GitHub Exploit DB Packet Storm
260200 7.8 危険 シスコシステムズ - 複数の Cisco 製品におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足
CVE-2010-2835 2010-10-13 16:59 2010-09-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1861 5.8 MEDIUM
Network
- - NocoDB is software for building databases as spreadsheets. Prior to 2026.04.1, shared-base sessions were granted the same base-member capabilities as authenticated viewers. Using only the shared-base… CWE-285
Improper Authorization
CVE-2026-46552 2026-06-25 23:21 2026-06-24 Show GitHub Exploit DB Packet Storm
1862 6.0 MEDIUM
Network
- - NocoDB is software for building databases as spreadsheets. Prior to 2026.04.1, an authenticated user with columnAdd permission on a Postgres-backed base can inject arbitrary SQL into the formula engi… CWE-89
SQL Injection
CVE-2026-47375 2026-06-25 23:21 2026-06-24 Show GitHub Exploit DB Packet Storm
1863 - - - NocoDB is software for building databases as spreadsheets. Prior to 2026.04.1, the password-reset page rendered the URL token directly into a JavaScript string literal in a server-rendered EJS templa… CWE-79
Cross-site Scripting
CVE-2026-47376 2026-06-25 23:21 2026-06-24 Show GitHub Exploit DB Packet Storm
1864 - - - NocoDB is software for building databases as spreadsheets. Prior to 2026.04.1, the client-side hashRedirect plugin called window.location.replace() on a path extracted from the URL hash fragment afte… CWE-601
Open Redirect
CVE-2026-47377 2026-06-25 23:21 2026-06-24 Show GitHub Exploit DB Packet Storm
1865 - - - NocoDB is software for building databases as spreadsheets. Prior to 2026.04.1, Public shared-view endpoints exposed values from columns that the view owner had hidden, via three independent paths: gr… CWE-639
 Authorization Bypass Through User-Controlled Key
CVE-2026-47378 2026-06-25 23:21 2026-06-24 Show GitHub Exploit DB Packet Storm
1866 - - - NocoDB is software for building databases as spreadsheets. Prior to 2026.05.1, the shared-view password check fell back to strict-equality (===) comparison for legacy plaintext passwords, leaking the… CWE-200
CWE-203
Information Exposure
 Information Exposure Through Discrepancy
CVE-2026-47379 2026-06-25 23:21 2026-06-24 Show GitHub Exploit DB Packet Storm
1867 - - - NocoDB is software for building databases as spreadsheets. Prior to 2026.04.1, sign-in response timing differed between known and unknown email addresses because the unknown-user branch returned with… CWE-208
CWE-307
 Information Exposure Through Timing Discrepancy
mproper Restriction of Excessive Authentication Attempts
CVE-2026-47380 2026-06-25 23:21 2026-06-24 Show GitHub Exploit DB Packet Storm
1868 - - - NocoDB is software for building databases as spreadsheets. Prior to 2026.05.1, a user in one workspace could exercise another workspace's integration through the testConnection endpoint by supplying … CWE-290
 Authentication Bypass by Spoofing
CVE-2026-47381 2026-06-25 23:21 2026-06-24 Show GitHub Exploit DB Packet Storm
1869 - - - NocoDB is software for building databases as spreadsheets. Prior to 2026.05.1, the connection-test endpoint opened a raw TCP socket to the user-supplied database host without resolving and range-chec… CWE-918
Server-Side Request Forgery (SSRF) 
CVE-2026-47382 2026-06-25 23:21 2026-06-24 Show GitHub Exploit DB Packet Storm
1870 - - - NocoDB is software for building databases as spreadsheets. Prior to 2026.05.1, an authenticated commenter could store HTML in row comments that executed as script when other users hovered over the co… CWE-79
Cross-site Scripting
CVE-2026-47383 2026-06-25 23:21 2026-06-24 Show GitHub Exploit DB Packet Storm