Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 9, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3391 8.8 重要
Network 		langflow langflow
Langflow-base 		langflowのLangflow-base等の複数製品における複数の脆弱性 CWE-639
CWE-862
CVE-2026-34046 2026-05-12 10:19 2026-03-27 Show GitHub Exploit DB Packet Storm
3392 7.5 重要
Network 		Gazelle project Gazelle KazeburoのGazelleにおけるHTTP リクエストスマグリングに関する脆弱性 CWE-444
HTTP リクエストスマグリング 		CVE-2026-40562 2026-05-12 10:19 2026-05-6 Show GitHub Exploit DB Packet Storm
3393 5.3 警告
Network 		opentelemetry OpenTelemetry.Exporter.Zipkin opentelemetryのOpenTelemetry.Exporter.Zipkinにおける複数の脆弱性 CWE-400
CWE-770
CVE-2026-41310 2026-05-12 10:19 2026-05-6 Show GitHub Exploit DB Packet Storm
3394 7.5 重要
Network 		uuidjs uuid uuidjsのuuidにおける複数の脆弱性 CWE-787
CWE-823
CVE-2026-41907 2026-05-12 10:19 2026-04-24 Show GitHub Exploit DB Packet Storm
3395 7.5 重要
Network 		Amazon.com, Inc. Bedrock Agentcore Starter Toolkit Amazon.com, Inc.のBedrock Agentcore Starter Toolkitにおける複数の脆弱性 CWE-283
CWE-340
CVE-2026-4269 2026-05-12 10:19 2026-03-16 Show GitHub Exploit DB Packet Storm
3396 7.5 重要
Network 		VEGA VEGAPULS 6X Firmware VEGAのVEGAPULS 6X Firmwareにおける重要な機能に対する認証の欠如に関する脆弱性 CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2026-3323 2026-05-12 10:19 2026-04-28 Show GitHub Exploit DB Packet Storm
3397 3.3
Local 		ちとらソフト Lhaz+
Lhaz 		LhazおよびLhaz+におけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-41530 2026-05-11 17:15 2026-05-11 Show GitHub Exploit DB Packet Storm
3398 - - Apache Software Foundation Apache HTTP Server Apache HTTP Server 2.4における複数の脆弱性に対するアップデート(2026年5月) - CVE-2026-23918
CVE-2026-24072
CVE-2026-28780
CVE-2026-29168
CVE-2026-29169
CVE-2026-33006
CVE-2026-33007
CVE-2026-33523
CVE-2026-33857
CVE-2026-34032
CVE-2026-34059 		2026-05-11 16:29 2026-05-8 Show GitHub Exploit DB Packet Storm
3399 - - (複数のベンダ) (複数の製品) CISA ICS Advisory / ICS Medical Advisory(2026年05月07日) - - 2026-05-11 16:29 2026-05-8 Show GitHub Exploit DB Packet Storm
3400 7.2 重要
Network 		株式会社GROWI GROWI GROWIにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-41951 2026-05-11 15:29 2026-05-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
306351 8.8 HIGH
Network 		easyftp_server_project easyftp_server A vulnerability, which was classified as critical, was found in EasyFTP 1.7.0.2. Affected is an unknown function of the component MKD Command Handler. The manipulation leads to buffer overflow. It is… - CVE-2011-10005 2024-11-21 10:25 2024-01-16 Show GitHub Exploit DB Packet Storm
306352 9.8 CRITICAL
Network 		reciply_project reciply A vulnerability was found in reciply Plugin up to 1.1.7 on WordPress. It has been rated as critical. This issue affects some unknown processing of the file uploadImage.php. The manipulation leads to … - CVE-2011-10004 2024-11-21 10:25 2023-10-17 Show GitHub Exploit DB Packet Storm
306353 9.8 CRITICAL
Network 		xpressengine xpressengine A vulnerability was found in XpressEngine up to 1.4.4. It has been rated as critical. This issue affects some unknown processing of the component Update Query Handler. The manipulation leads to sql i… - CVE-2011-10003 2024-11-21 10:25 2023-02-8 Show GitHub Exploit DB Packet Storm
306354 9.8 CRITICAL
Network 		weblabyrinth_project weblabyrinth A vulnerability classified as critical has been found in weblabyrinth 0.3.1. This affects the function Labyrinth of the file labyrinth.inc.php. The manipulation leads to sql injection. Upgrading to v… - CVE-2011-10002 2024-11-21 10:25 2023-02-8 Show GitHub Exploit DB Packet Storm
306355 9.8 CRITICAL
Network 		phoenixcf_project phoenixcf A vulnerability was found in iamdroppy phoenixcf. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file content/2-Community/articles.cfm. The manipu… - CVE-2011-10001 2024-11-21 10:25 2023-01-19 Show GitHub Exploit DB Packet Storm
306356 3.7 LOW
Network 		freebsd freebsd FreeBSD's crontab calculates the MD5 sum of the previous and new cronjob to determine if any changes have been made before copying the new version in. In particular, it uses the MD5File() function, w… CWE-362
Race Condition 		CVE-2011-1075 2024-11-21 10:25 2021-10-20 Show GitHub Exploit DB Packet Storm
306357 6.1 MEDIUM
Network 		openfiler openfiler Cross-site scripting (XSS) vulnerability in admin/system.html in Openfiler 2.3 allows remote attackers to inject arbitrary web script or HTML via the device parameter. CWE-79
Cross-site Scripting 		CVE-2011-1086 2024-11-21 10:25 2020-02-8 Show GitHub Exploit DB Packet Storm
306358 8.8 HIGH
Network 		smoothwall smoothwall_express CSRF vulnerability in Smoothwall Express 3. CWE-352
 Origin Validation Error 		CVE-2011-1085 2024-11-21 10:25 2020-02-8 Show GitHub Exploit DB Packet Storm
306359 6.1 MEDIUM
Network 		smoothwall smoothwall_express A cross-site scripting (XSS) vulnerability in Smoothwall Express 3. CWE-79
Cross-site Scripting 		CVE-2011-1084 2024-11-21 10:25 2020-02-8 Show GitHub Exploit DB Packet Storm
306360 9.1 CRITICAL
Network 		joomla joomla\! Joomla! 1.6.0 is vulnerable to SQL Injection via the filter_order and filer_order_Dir parameters. CWE-89
SQL Injection 		CVE-2011-1151 2024-11-21 10:25 2020-02-6 Show GitHub Exploit DB Packet Storm