Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 9, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
4161 7.5 重要
Network 		OpenClaw OpenClaw OpenClawにおける不適切な動作順序(早期増幅)に関する脆弱性 CWE-408
不適切な動作順序(早期増幅) 		CVE-2026-41405 2026-05-7 12:29 2026-04-28 Show GitHub Exploit DB Packet Storm
4162 5.4 警告
Network 		OpenClaw OpenClaw OpenClawにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-41406 2026-05-7 12:29 2026-04-28 Show GitHub Exploit DB Packet Storm
4163 5.3 警告
Network 		OpenClaw OpenClaw OpenClawにおけるタイミングの違いに起因する情報漏えいに関する脆弱性 CWE-208
タイミングの違いに起因する情報漏えい 		CVE-2026-41407 2026-05-7 12:29 2026-04-28 Show GitHub Exploit DB Packet Storm
4164 6.5 警告
Network 		OpenClaw OpenClaw OpenClawにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-41408 2026-05-7 12:29 2026-04-28 Show GitHub Exploit DB Packet Storm
4165 4.3 警告
Network 		OpenClaw OpenClaw OpenClawにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-41910 2026-05-7 12:29 2026-04-28 Show GitHub Exploit DB Packet Storm
4166 6.5 警告
Network 		OpenClaw OpenClaw OpenClawにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-41911 2026-05-7 12:29 2026-04-28 Show GitHub Exploit DB Packet Storm
4167 7.6 重要
Network 		OpenClaw OpenClaw OpenClawにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-41912 2026-05-7 12:29 2026-04-28 Show GitHub Exploit DB Packet Storm
4168 7.5 重要
Network 		FreeBSD FreeBSD FreeBSDにおける有効期限後のメモリの解放の欠如に関する脆弱性 CWE-401
有効期限後のメモリの解放の欠如 		CVE-2026-4247 2026-05-7 12:29 2026-03-26 Show GitHub Exploit DB Packet Storm
4169 7.5 重要
Network 		レッドハット
libarchive		 Red Hat Enterprise Linux Server AUS
Red Hat Hardened Images
openshift container platform for power
Red Hat Enterprise&nb… 		libarchive等の複数ベンダの製品における境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2026-4424 2026-05-7 12:29 2026-03-19 Show GitHub Exploit DB Packet Storm
4170 7.5 重要
Network 		FreeBSD FreeBSD FreeBSDにおけるNULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2026-4652 2026-05-7 12:29 2026-03-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
354861 - eicrasoft eicra_car_rental-script Multiple SQL injection vulnerabilities in index.php in Eicra Car Rental-Script, when the plugin_id parameter is 4, allow remote attackers to execute arbitrary SQL commands via the (1) users (username… CWE-89
SQL Injection 		CVE-2010-0631 2010-02-15 14:00 2010-02-13 Show GitHub Exploit DB Packet Storm
354862 - will_estes flex Unspecified vulnerability in Fast Lexical Analyzer Generator (flex) before 2.5.35 has unknown impact and attack vectors. NVD-CWE-noinfo
CVE-2010-0634 2010-02-15 14:00 2010-02-13 Show GitHub Exploit DB Packet Storm
354863 - jevents jevents_search_plugin SQL injection vulnerability in the plgSearchEventsearch::onSearch method in eventsearch.php in the JEvents Search plugin 1.5 through 1.5.3 for Joomla! allows remote attackers to execute arbitrary SQL… CWE-89
SQL Injection 		CVE-2010-0635 2010-02-15 14:00 2010-02-13 Show GitHub Exploit DB Packet Storm
354864 - hp operations_agent HP Operations Agent 8.51, 8.52, 8.53, and 8.60 on Solaris 10 uses a blank password for the opc_op account, which allows remote attackers to execute arbitrary code via unspecified vectors. CWE-255
Credentials Management 		CVE-2010-0444 2010-02-13 16:22 2010-02-10 Show GitHub Exploit DB Packet Storm
354865 - osticket osticket SQL injection vulnerability in scp/ajax.php in osTicket before 1.6.0 Stable allows remote authenticated users, with "Staff" permissions, to execute arbitrary SQL commands via the input parameter. CWE-89
SQL Injection 		CVE-2010-0605 2010-02-12 14:00 2010-02-12 Show GitHub Exploit DB Packet Storm
354866 - novaboard novaboard SQL injection vulnerability in index.php in NovaBoard 1.1.2 allows remote attackers to execute arbitrary SQL commands via the forums[] parameter in a search action. CWE-89
SQL Injection 		CVE-2010-0608 2010-02-12 14:00 2010-02-12 Show GitHub Exploit DB Packet Storm
354867 - netbsd netbsd Integer signedness error in NetBSD 4.0, 5.0, and NetBSD-current before 2010-01-21 allows local users to cause a denial of service (kernel panic) via a negative mixer index number being passed to (1) … CWE-189
Numeric Errors 		CVE-2010-0561 2010-02-9 14:00 2010-02-9 Show GitHub Exploit DB Packet Storm
354868 - sun one_web_server Sun ONE (aka iPlanet) Web Server 6 on Windows, when DNS resolution is enabled for client IP addresses, uses a logging format that does not identify whether a dotted quad represents an unresolved IP a… CWE-189
Numeric Errors 		CVE-2003-1579 2010-02-8 23:55 2010-02-6 Show GitHub Exploit DB Packet Storm
354869 - ibm cognos_express IBM Cognos Express 9.0 allows attackers to obtain unspecified access to the Tomcat Manager component, and cause a denial of service, by leveraging hardcoded credentials. CWE-255
Credentials Management 		CVE-2010-0557 2010-02-8 14:00 2010-02-6 Show GitHub Exploit DB Packet Storm
354870 - apache http_server The Apache HTTP Server 2.0.44, when DNS resolution is enabled for client IP addresses, uses a logging format that does not identify whether a dotted quad represents an unresolved IP address, which al… CWE-189
Numeric Errors 		CVE-2003-1580 2010-02-8 14:00 2010-02-6 Show GitHub Exploit DB Packet Storm