Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
4931 8.7 重要
Network
protobufjs project protobufjs-cli protobufjs projectのprotobufjs-cliにおけるコードインジェクションの脆弱性 CWE-94
コード・インジェクション
CVE-2026-44295 2026-05-21 10:55 2026-05-13 Show GitHub Exploit DB Packet Storm
4932 9.8 緊急
Network
WGDashboard WGDashboard WGDashboardにおける入力確認に関する脆弱性 CWE-20
不適切な入力確認
CVE-2026-44343 2026-05-21 10:55 2026-05-12 Show GitHub Exploit DB Packet Storm
4933 8.8 重要
Network
Tabby Tabby TabbyにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション
CVE-2026-45035 2026-05-21 10:55 2026-05-15 Show GitHub Exploit DB Packet Storm
4934 7 重要
Local
Tabby Tabby TabbyにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション
CVE-2026-45036 2026-05-21 10:55 2026-05-15 Show GitHub Exploit DB Packet Storm
4935 7.1 重要
Network
Tabby Tabby Tabbyにおける複数の脆弱性 CWE-184
CWE-601
CVE-2026-45037 2026-05-21 10:55 2026-05-15 Show GitHub Exploit DB Packet Storm
4936 7.8 重要
Local
Tabby Tabby Tabbyにおけるエスケープ、メタ、またはコントロールシーケンスの不適切な無効化に関する脆弱性 CWE-150
エスケープ、メタ、またはコントロールシーケンスの不適切な無効化
CVE-2026-45038 2026-05-21 10:54 2026-05-15 Show GitHub Exploit DB Packet Storm
4937 9.8 緊急
Network
Zeit, Inc. Turborepo Vercel, Inc. (旧 Zeit, Inc.)のTurborepoにおける信頼できない検索パスに関する脆弱性 CWE-426
信頼性のない検索パス
CVE-2026-45772 2026-05-21 10:54 2026-05-15 Show GitHub Exploit DB Packet Storm
4938 6.5 警告
Network
Zeit, Inc. Turborepo Vercel, Inc. (旧 Zeit, Inc.)のTurborepoにおける複数の脆弱性 CWE-352
CWE-384
CVE-2026-45773 2026-05-21 10:54 2026-05-15 Show GitHub Exploit DB Packet Storm
4939 7.8 重要
Local
Zeit, Inc. The Turborepo Language Server Protocol (LSP) Vercel, Inc. (旧 Zeit, Inc.)のThe Turborepo Language Server Protocol (LSP)におけるコマンドインジェクションの脆弱性 CWE-77
コマンドインジェクション
CVE-2026-46508 2026-05-21 10:54 2026-05-15 Show GitHub Exploit DB Packet Storm
4940 9.1 緊急
Network
FreeRTOS coreMQTT FreeRTOSのcoreMQTTにおける境界外読み取りに関する脆弱性 CWE-125
境界外読み取り
CVE-2026-8686 2026-05-21 10:54 2026-05-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
350491 - whmcs whmcs SQL injection vulnerability in submitticket.php in WHMCompleteSolution (WHMCS) 4.2 allows remote attackers to execute arbitrary SQL commands via the deptid parameter. CWE-89
SQL Injection
CVE-2010-1702 2017-08-17 10:32 2010-05-5 Show GitHub Exploit DB Packet Storm
350492 - 2daybiz polls_script Multiple cross-site scripting (XSS) vulnerabilities in index_search.php in 2daybiz Polls (aka Advanced Poll) Script allow remote attackers to inject arbitrary web script or HTML via the (1) category … CWE-79
Cross-site Scripting
CVE-2010-1703 2017-08-17 10:32 2010-05-5 Show GitHub Exploit DB Packet Storm
350493 - 2daybiz polls_script Multiple SQL injection vulnerabilities in 2daybiz Polls (aka Advanced Poll) Script allow remote attackers to execute arbitrary SQL commands via (1) the password field to login.php, (2) the login fiel… CWE-89
SQL Injection
CVE-2010-1704 2017-08-17 10:32 2010-05-5 Show GitHub Exploit DB Packet Storm
350494 - 2daybiz auction_script Multiple SQL injection vulnerabilities in login.php in 2daybiz Auction Script allow remote attackers to execute arbitrary SQL commands via (1) the login field (aka the username parameter), and possib… CWE-89
SQL Injection
CVE-2010-1706 2017-08-17 10:32 2010-05-5 Show GitHub Exploit DB Packet Storm
350495 - freerealty.rwcinc free_realty Multiple SQL injection vulnerabilities in agentadmin.php in Free Realty allow remote attackers to execute arbitrary SQL commands via the (1) login field (aka agentname parameter) or (2) password fiel… CWE-89
SQL Injection
CVE-2010-1708 2017-08-17 10:32 2010-05-5 Show GitHub Exploit DB Packet Storm
350496 - g5-scripts auto-img-gallery Multiple cross-site scripting (XSS) vulnerabilities in upload.cgi in G5-Scripts Auto-Img-Gallery 1.1 allow remote attackers to inject arbitrary web script or HTML via the (1) user and (2) pass parame… CWE-79
Cross-site Scripting
CVE-2010-1709 2017-08-17 10:32 2010-05-5 Show GitHub Exploit DB Packet Storm
350497 - ramoncastro siestta Directory traversal vulnerability in login.php in Siestta 2.0, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the idioma … CWE-22
Path Traversal
CVE-2010-1710 2017-08-17 10:32 2010-05-5 Show GitHub Exploit DB Packet Storm
350498 - ramoncastro siestta Cross-site scripting (XSS) vulnerability in carga_foto_al.php in Siestta 2.0, when register_globals is enabled, allows remote attackers to inject arbitrary web script or HTML via the usuario paramete… CWE-79
Cross-site Scripting
CVE-2010-1711 2017-08-17 10:32 2010-05-5 Show GitHub Exploit DB Packet Storm
350499 - webmobo wbnews Multiple cross-site scripting (XSS) vulnerabilities in base/Comments.php in Webmobo WB News 2.3.3 allow remote attackers to inject arbitrary web script or HTML via the (1) name and possibly (2) messa… CWE-79
Cross-site Scripting
CVE-2010-1712 2017-08-17 10:32 2010-05-5 Show GitHub Exploit DB Packet Storm
350500 - postnuke postnuke SQL injection vulnerability in modules.php in PostNuke 0.764 allows remote attackers to execute arbitrary SQL commands via the sid parameter in a News article modload action. CWE-89
SQL Injection
CVE-2010-1713 2017-08-17 10:32 2010-05-5 Show GitHub Exploit DB Packet Storm