Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 10, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
361	7.8	重要 Local	Dassault Systemes	SOLIDWORKS	Dassault SystemesのSOLIDWORKSにおけるコードインジェクションの脆弱性 New	CWE-94 コード・インジェクション	CVE-2026-3476	2026-06-9 14:14	2026-03-16	Show	GitHub Exploit DB Packet Storm

362	5.8	警告 Local	Cloud Foundry Foundation	BOSH	Cloud Foundry FoundationのBOSHにおけるパストラバーサルの脆弱性 New	CWE-22 パス・トラバーサル	CVE-2026-41009	2026-06-9 14:14	2026-05-27	Show	GitHub Exploit DB Packet Storm

363	5	警告 Local	Cloud Foundry Foundation	BOSH	Cloud Foundry FoundationのBOSHにおけるアクセス制御に関する脆弱性 New	CWE-284 不適切なアクセス制御	CVE-2026-41704	2026-06-9 14:14	2026-05-27	Show	GitHub Exploit DB Packet Storm

364	7.5	重要 Network	マイクロソフト	Microsoft Copilot	M365 Copilot の情報漏えいの脆弱性 New	CWE-77 コマンドインジェクション	CVE-2026-42824	2026-06-9 14:14	2026-06-4	Show	GitHub Exploit DB Packet Storm

365	9.8	緊急 Network	レッドハット Samba Project	Red Hat OpenShift Container Platform Samba Red Hat Enterprise Linux	レッドハット等の複数ベンダの製品におけるOS コマンドインジェクションの脆弱性 New	CWE-78 OSコマンド・インジェクション	CVE-2026-4408	2026-06-9 14:14	2026-05-28	Show	GitHub Exploit DB Packet Storm

366	5.5	警告 Local	Rapid7	Insight Agent	Rapid7のInsight Agentにおける重要なリソースに対する不適切なパーミッションの割り当てに関する脆弱性 New	CWE-732 重要なリソースに対する不適切なパーミッションの割り当て	CVE-2026-4482	2026-06-9 14:14	2026-04-10	Show	GitHub Exploit DB Packet Storm

367	7.4	重要 Network	AsyncHTTPClient project	AsyncHTTPClient	AsyncHTTPClient projectのAsyncHTTPClientにおける情報漏えいに関する脆弱性 New	CWE-200 情報漏えい	CVE-2026-45300	2026-06-9 14:14	2026-06-5	Show	GitHub Exploit DB Packet Storm

368	8.8	重要 Network	マイクロソフト	Microsoft Copilot	Microsoft M365 Copilot Remote Code Execution Vulnerability New	CWE-77 コマンドインジェクション	CVE-2026-45497	2026-06-9 14:14	2026-06-4	Show	GitHub Exploit DB Packet Storm

369	8.1	重要 Network	Termix	Termix	Termixにおけるユーザ制御の鍵による認証回避に関する脆弱性 New	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-45743	2026-06-9 14:14	2026-06-5	Show	GitHub Exploit DB Packet Storm

370	9.9	緊急 Network	Termix	Termix	TermixにおけるOS コマンドインジェクションの脆弱性 New	CWE-78 OSコマンド・インジェクション	CVE-2026-45744	2026-06-9 14:14	2026-06-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 11, 2026, 5:13 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
344791	-	secure_reality	phpsecurepages	PHP remote file inclusion vulnerability in secure.php in PHPSecurePages (phpSP) 0.28beta and earlier allows remote attackers to execute arbitrary code via the cfgProgDir parameter, a variant of CVE-2…	NVD-CWE-Other	CVE-2005-2251	2017-10-11 10:30	2005-07-13	Show	GitHub Exploit DB Packet Storm

344792	-	mozilla	firefox mozilla	The browser user interface in Firefox before 1.0.5, Mozilla before 1.7.9, and Netscape 8.0.2 and 7.2 does not properly distinguish between user-generated events and untrusted synthetic events, which …	NVD-CWE-Other	CVE-2005-2260	2017-10-11 10:30	2005-07-13	Show	GitHub Exploit DB Packet Storm

344793	-	mozilla	firefox mozilla thunderbird	Firefox before 1.0.5, Thunderbird before 1.0.5, Mozilla before 1.7.9, Netscape 8.0.2, and K-Meleon 0.9 runs XBL scripts even when Javascript has been disabled, which makes it easier for remote attack…	NVD-CWE-Other	CVE-2005-2261	2017-10-11 10:30	2005-07-13	Show	GitHub Exploit DB Packet Storm

344794	-	mozilla	firefox	Firefox 1.0.3 and 1.0.4, and Netscape 8.0.2, allows remote attackers to execute arbitrary code by tricking the user into using the "Set As Wallpaper" (in Firefox) or "Set as Background" (in Netscape)…	NVD-CWE-Other	CVE-2005-2262	2017-10-11 10:30	2005-07-13	Show	GitHub Exploit DB Packet Storm

344795	-	mozilla	firefox mozilla	The InstallTrigger.install method in Firefox before 1.0.5 and Mozilla before 1.7.9 allows remote attackers to execute a callback function in the context of another domain by forcing a page navigation…	NVD-CWE-Other	CVE-2005-2263	2017-10-11 10:30	2005-07-13	Show	GitHub Exploit DB Packet Storm

344796	-	mozilla	firefox	Firefox before 1.0.5 allows remote attackers to steal sensitive information by opening a malicious link in the Firefox sidebar using the _search target, then injecting script into other pages via a d…	NVD-CWE-Other	CVE-2005-2264	2017-10-11 10:30	2005-07-13	Show	GitHub Exploit DB Packet Storm

344797	-	mozilla	firefox mozilla	Firefox before 1.0.5, Mozilla before 1.7.9, and Netscape 8.0.2 and 7.2 allows remote attackers to cause a denial of service (access violation and crash), and possibly execute arbitrary code, by calli…	NVD-CWE-Other	CVE-2005-2265	2017-10-11 10:30	2005-07-13	Show	GitHub Exploit DB Packet Storm

344798	-	mozilla	firefox mozilla	Firefox before 1.0.5 and Mozilla before 1.7.9 allows a child frame to call top.focus and other methods in a parent frame, even when the parent is in a different domain, which violates the same origin…	NVD-CWE-Other	CVE-2005-2266	2017-10-11 10:30	2005-07-13	Show	GitHub Exploit DB Packet Storm

344799	-	mozilla	firefox	Firefox before 1.0.5 allows remote attackers to steal information and possibly execute arbitrary code by using standalone applications such as Flash and QuickTime to open a javascript: URL, which is …	NVD-CWE-Other	CVE-2005-2267	2017-10-11 10:30	2005-07-13	Show	GitHub Exploit DB Packet Storm

344800	-	mozilla	firefox mozilla	Firefox before 1.0.5 and Mozilla before 1.7.9 does not clearly associate a Javascript dialog box with the web page that generated it, which allows remote attackers to spoof a dialog box from a truste…	NVD-CWE-Other	CVE-2005-2268	2017-10-11 10:30	2005-07-13	Show	GitHub Exploit DB Packet Storm