Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 6, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2711 7.8 重要
Local 		NAVER Corp. NAVER MYBOX Explorer for Windows NAVER Corp.のNAVER MYBOX Explorer for Windowsにおける不適切な権限設定に関する脆弱性 CWE-266
不適切な権限設定 		CVE-2026-8148 2026-05-12 10:19 2026-05-8 Show GitHub Exploit DB Packet Storm
2712 7.3 重要
Network 		Project Jupyter Jupyter Server Project JupyterのJupyter Serverにおけるアンカーのない正規表現に関する脆弱性 CWE-777
アンカーのない正規表現 		CVE-2026-40110 2026-05-12 10:19 2026-05-5 Show GitHub Exploit DB Packet Storm
2713 6.1 警告
Network 		HCL Technologies Limited unica
HCL Unica Plan
HCL Unica Segment Central
HCL Unica Centralized Offer Management
HCL Unica Audience Campaign
HCL U… 		HCL Technologies Limitedのunica等の複数製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2025-62320 2026-05-12 10:19 2026-03-17 Show GitHub Exploit DB Packet Storm
2714 5.5 警告
Local 		ヒューレット・パッカード Samsung Print Service Plugin ヒューレット・パッカードのSamsung Print Service PluginにおけるAndroid アプリケーションコンポーネントの不適切なエクスポートの脆弱性 CWE-926
CWE-noinfo
CVE-2026-3291 2026-05-12 10:19 2026-05-6 Show GitHub Exploit DB Packet Storm
2715 8.8 重要
Network 		langflow langflow
Langflow-base 		langflowのLangflow-base等の複数製品における複数の脆弱性 CWE-639
CWE-862
CVE-2026-34046 2026-05-12 10:19 2026-03-27 Show GitHub Exploit DB Packet Storm
2716 7.5 重要
Network 		Gazelle project Gazelle KazeburoのGazelleにおけるHTTP リクエストスマグリングに関する脆弱性 CWE-444
HTTP リクエストスマグリング 		CVE-2026-40562 2026-05-12 10:19 2026-05-6 Show GitHub Exploit DB Packet Storm
2717 5.3 警告
Network 		opentelemetry OpenTelemetry.Exporter.Zipkin opentelemetryのOpenTelemetry.Exporter.Zipkinにおける複数の脆弱性 CWE-400
CWE-770
CVE-2026-41310 2026-05-12 10:19 2026-05-6 Show GitHub Exploit DB Packet Storm
2718 7.5 重要
Network 		uuidjs uuid uuidjsのuuidにおける複数の脆弱性 CWE-787
CWE-823
CVE-2026-41907 2026-05-12 10:19 2026-04-24 Show GitHub Exploit DB Packet Storm
2719 7.5 重要
Network 		Amazon.com, Inc. Bedrock Agentcore Starter Toolkit Amazon.com, Inc.のBedrock Agentcore Starter Toolkitにおける複数の脆弱性 CWE-283
CWE-340
CVE-2026-4269 2026-05-12 10:19 2026-03-16 Show GitHub Exploit DB Packet Storm
2720 7.5 重要
Network 		VEGA VEGAPULS 6X Firmware VEGAのVEGAPULS 6X Firmwareにおける重要な機能に対する認証の欠如に関する脆弱性 CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2026-3323 2026-05-12 10:19 2026-04-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
345551 - hong_chuyen com_articlemanager SQL injection vulnerability in the Articlemanager (com_articlemanager) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the artid parameter in a display action to i… CWE-89
SQL Injection 		CVE-2010-0372 2017-08-17 10:31 2010-01-22 Show GitHub Exploit DB Packet Storm
345552 - joomla com_libros SQL injection vulnerability in the libros (com_libros) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a detail action to index.php. CWE-89
SQL Injection 		CVE-2010-0373 2017-08-17 10:31 2010-01-22 Show GitHub Exploit DB Packet Storm
345553 - codingfish com_marketplace Cross-site scripting (XSS) vulnerability in the Marketplace (com_marketplace) component 1.2 for Joomla! allows remote attackers to inject arbitrary web script or HTML via the catid parameter in a sho… CWE-79
Cross-site Scripting 		CVE-2010-0374 2017-08-17 10:31 2010-01-22 Show GitHub Exploit DB Packet Storm
345554 - jce-tech php_calendars_script SQL injection vulnerability in product_list.php in JCE-Tech PHP Calendars, downloaded 2010-01-11, allows remote attackers to execute arbitrary SQL commands via the cat parameter. NOTE: the provenanc… CWE-89
SQL Injection 		CVE-2010-0375 2017-08-17 10:31 2010-01-22 Show GitHub Exploit DB Packet Storm
345555 - jce-tech php_calendars_script Cross-site scripting (XSS) vulnerability in product_list.php in JCE-Tech PHP Calendars, downloaded 2010-01-11, allows remote attackers to inject arbitrary web script or HTML via the cat parameter. N… CWE-79
Cross-site Scripting 		CVE-2010-0376 2017-08-17 10:31 2010-01-22 Show GitHub Exploit DB Packet Storm
345556 - sun java_system_web_server Multiple heap-based buffer overflows in (1) webservd and (2) the admin server in Sun Java System Web Server 7.0 Update 7 allow remote attackers to cause a denial of service (daemon crash) and possibl… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2010-0387 2017-08-17 10:31 2010-01-26 Show GitHub Exploit DB Packet Storm
345557 - sun java_system_web_server Format string vulnerability in the WebDAV implementation in webservd in Sun Java System Web Server 7.0 Update 6 allows remote attackers to cause a denial of service (daemon crash) and possibly have u… CWE-134
Use of Externally-Controlled Format String 		CVE-2010-0388 2017-08-17 10:31 2010-01-26 Show GitHub Exploit DB Packet Storm
345558 - nanosleep trac-git PyGIT.py in the Trac Git plugin (trac-git) before 0.0.20080710-3+lenny1 and before 0.0.20090320-1 on Debian GNU/Linux, when enabled in Trac, allows remote attackers to execute arbitrary commands via … CWE-20
 Improper Input Validation  		CVE-2010-0394 2017-08-17 10:31 2010-02-10 Show GitHub Exploit DB Packet Storm
345559 - debian dpkg Directory traversal vulnerability in the dpkg-source component in dpkg before 1.14.29 allows remote attackers to modify arbitrary files via a crafted Debian source archive. CWE-22
Path Traversal 		CVE-2010-0396 2017-08-17 10:31 2010-03-15 Show GitHub Exploit DB Packet Storm
345560 - gnome screensaver gnome-screensaver 2.28.x before 2.28.3 does not properly synchronize the state of screen locking and the unlock dialog in situations involving a change to the number of monitors, which allows physica… NVD-CWE-Other
CVE-2010-0422 2017-08-17 10:31 2010-02-25 Show GitHub Exploit DB Packet Storm