Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 9, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3401 7.4 重要
Network 		株式会社EPG iOSアプリ「くら寿司 公式アプリ」
Androidアプリ「くら寿司 公式アプリ」 		スマートフォンアプリ「くら寿司 公式アプリ」における証明書検証不備の脆弱性 CWE-Other
その他 		CVE-2026-41872 2026-05-11 12:52 2026-05-11 Show GitHub Exploit DB Packet Storm
3402 3.3
Local 		X.Org Foundation libxpm libXpmにおける境界外読み取りの脆弱性 CWE-Other
その他 		CVE-2026-4367 2026-05-11 12:18 2026-05-11 Show GitHub Exploit DB Packet Storm
3403 7.3 重要
Network 		yeti-platform yeti yeti-platformのyetiにおけるコードインジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2024-46507 2026-05-11 11:13 2026-05-8 Show GitHub Exploit DB Packet Storm
3404 7.5 重要
Network 		yeti-platform yeti yeti-platformのyetiにおけるハードコードされた認証情報の使用に関する脆弱性 CWE-798
ハードコードされた認証情報の使用 		CVE-2024-46508 2026-05-11 11:12 2026-05-8 Show GitHub Exploit DB Packet Storm
3405 9.8 緊急
Network 		Frappe ERPNext FrappeのERPNextにおけるコードインジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2026-38431 2026-05-11 11:12 2026-05-5 Show GitHub Exploit DB Packet Storm
3406 6.1 警告
Network 		Frappe ERPNext FrappeのERPNextにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-38432 2026-05-11 11:12 2026-05-5 Show GitHub Exploit DB Packet Storm
3407 9.1 緊急
Network 		CHORNY Apache::Session CHORNYのApache::Sessionにおける有効期限後または解放後のリソースの操作に関する脆弱性 CWE-672
有効期限後または解放後のリソースの操作 		CVE-2013-10075 2026-05-11 11:12 2026-05-8 Show GitHub Exploit DB Packet Storm
3408 9.8 緊急
Network 		PHPOffice PhpSpreadsheet PHPOfficeのPhpSpreadsheetにおける複数の脆弱性 CWE-502
CWE-918
CVE-2026-34084 2026-05-11 11:12 2026-05-5 Show GitHub Exploit DB Packet Storm
3409 5.4 警告
Network 		PHPOffice PhpSpreadsheet PHPOfficeのPhpSpreadsheetにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-35453 2026-05-11 11:12 2026-05-5 Show GitHub Exploit DB Packet Storm
3410 9.1 緊急
Network 		Zcash Foundation Zebra-script
Zebrad 		Zcash FoundationのZebra-script等の複数製品における呼び出し元による仕様の不適切な準拠に関する脆弱性 CWE-573
呼び出し元による仕様の不適切な準拠 		CVE-2026-41583 2026-05-11 11:12 2026-05-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
306351 8.8 HIGH
Network 		easyftp_server_project easyftp_server A vulnerability, which was classified as critical, was found in EasyFTP 1.7.0.2. Affected is an unknown function of the component MKD Command Handler. The manipulation leads to buffer overflow. It is… - CVE-2011-10005 2024-11-21 10:25 2024-01-16 Show GitHub Exploit DB Packet Storm
306352 9.8 CRITICAL
Network 		reciply_project reciply A vulnerability was found in reciply Plugin up to 1.1.7 on WordPress. It has been rated as critical. This issue affects some unknown processing of the file uploadImage.php. The manipulation leads to … - CVE-2011-10004 2024-11-21 10:25 2023-10-17 Show GitHub Exploit DB Packet Storm
306353 9.8 CRITICAL
Network 		xpressengine xpressengine A vulnerability was found in XpressEngine up to 1.4.4. It has been rated as critical. This issue affects some unknown processing of the component Update Query Handler. The manipulation leads to sql i… - CVE-2011-10003 2024-11-21 10:25 2023-02-8 Show GitHub Exploit DB Packet Storm
306354 9.8 CRITICAL
Network 		weblabyrinth_project weblabyrinth A vulnerability classified as critical has been found in weblabyrinth 0.3.1. This affects the function Labyrinth of the file labyrinth.inc.php. The manipulation leads to sql injection. Upgrading to v… - CVE-2011-10002 2024-11-21 10:25 2023-02-8 Show GitHub Exploit DB Packet Storm
306355 9.8 CRITICAL
Network 		phoenixcf_project phoenixcf A vulnerability was found in iamdroppy phoenixcf. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file content/2-Community/articles.cfm. The manipu… - CVE-2011-10001 2024-11-21 10:25 2023-01-19 Show GitHub Exploit DB Packet Storm
306356 3.7 LOW
Network 		freebsd freebsd FreeBSD's crontab calculates the MD5 sum of the previous and new cronjob to determine if any changes have been made before copying the new version in. In particular, it uses the MD5File() function, w… CWE-362
Race Condition 		CVE-2011-1075 2024-11-21 10:25 2021-10-20 Show GitHub Exploit DB Packet Storm
306357 6.1 MEDIUM
Network 		openfiler openfiler Cross-site scripting (XSS) vulnerability in admin/system.html in Openfiler 2.3 allows remote attackers to inject arbitrary web script or HTML via the device parameter. CWE-79
Cross-site Scripting 		CVE-2011-1086 2024-11-21 10:25 2020-02-8 Show GitHub Exploit DB Packet Storm
306358 8.8 HIGH
Network 		smoothwall smoothwall_express CSRF vulnerability in Smoothwall Express 3. CWE-352
 Origin Validation Error 		CVE-2011-1085 2024-11-21 10:25 2020-02-8 Show GitHub Exploit DB Packet Storm
306359 6.1 MEDIUM
Network 		smoothwall smoothwall_express A cross-site scripting (XSS) vulnerability in Smoothwall Express 3. CWE-79
Cross-site Scripting 		CVE-2011-1084 2024-11-21 10:25 2020-02-8 Show GitHub Exploit DB Packet Storm
306360 9.1 CRITICAL
Network 		joomla joomla\! Joomla! 1.6.0 is vulnerable to SQL Injection via the filter_order and filer_order_Dir parameters. CWE-89
SQL Injection 		CVE-2011-1151 2024-11-21 10:25 2020-02-6 Show GitHub Exploit DB Packet Storm