Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 14, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
5281	6.5	警告 Network	VMware	Spring AI	VMwareのSpring AIにおけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-40980	2026-05-1 10:47	2026-04-28	Show	GitHub Exploit DB Packet Storm

5282	5.3	警告 Local	OpenClaw	OpenClaw	OpenClawにおける不完全なブラックリストに関する脆弱性	CWE-184 不完全なブラックリスト	CVE-2026-41332	2026-05-1 10:47	2026-04-23	Show	GitHub Exploit DB Packet Storm

5283	4.3	警告 Network	OpenClaw	OpenClaw	OpenClawにおける認可されていない制御領域への重要情報の漏えいに関する脆弱性	CWE-497 認可されていない制御領域への重要情報の漏えい	CVE-2026-41339	2026-05-1 10:47	2026-04-23	Show	GitHub Exploit DB Packet Storm

5284	5.3	警告 Network	OpenClaw	OpenClaw	OpenClawにおける不適切な動作順序（早期増幅）に関する脆弱性	CWE-408 不適切な動作順序（早期増幅）	CVE-2026-41374	2026-05-1 10:47	2026-04-28	Show	GitHub Exploit DB Packet Storm

5285	4.6	警告 Adjacent	OpenClaw	OpenClaw	OpenClawにおける同一生成元ポリシー違反に関する脆弱性	CWE-346 同一生成元ポリシー違反	CVE-2026-41398	2026-05-1 10:47	2026-04-28	Show	GitHub Exploit DB Packet Storm

5286	7.5	重要 Network	OpenClaw	OpenClaw	OpenClawにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-41399	2026-05-1 10:47	2026-04-28	Show	GitHub Exploit DB Packet Storm

5287	7.5	重要 Network	OpenClaw	OpenClaw	OpenClawにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-41400	2026-05-1 10:47	2026-04-28	Show	GitHub Exploit DB Packet Storm

5288	5.4	警告 Network	OpenClaw	OpenClaw	OpenClawにおける誤って解決された名前や参照の使用に関する脆弱性	CWE-706 誤って解決された名前や参照の使用	CVE-2026-41402	2026-05-1 10:46	2026-04-28	Show	GitHub Exploit DB Packet Storm

5289	9.8	緊急 Network	Apache Software Foundation	MINA	Apache Software FoundationのMINAにおける信頼できないデータのデシリアライゼーションに関する脆弱性	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2026-41409	2026-05-1 10:46	2026-04-27	Show	GitHub Exploit DB Packet Storm

5290	3.3	低 Local	wolfSSL Inc.	wolfSSL	wolfSSL Inc.のwolfSSLにおける境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2026-4159	2026-05-1 10:46	2026-03-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 15, 2026, 4:10 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
347081	-	wikyblog	wikyblog	Session fixation vulnerability in WikyBlog 1.7.3 rc2 allows remote attackers to hijack web sessions by setting the jsessionid parameter to (1) index.php/Comment/Main, (2) index.php/Comment/Main/Home_…	CWE-287 Improper Authentication	CVE-2010-0756	2017-08-17 10:32	2010-02-27	Show	GitHub Exploit DB Packet Storm

347082	-	wikyblog	wikyblog	Unrestricted file upload vulnerability in index.php/Attach in WikyBlog 1.7.3rc2 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension using the …	NVD-CWE-Other	CVE-2010-0757	2017-08-17 10:32	2010-02-27	Show	GitHub Exploit DB Packet Storm

347083	-	wikyblog	wikyblog	Per: http://cwe.mitre.org/data/definitions/434.html CWE-434: Unrestricted Upload of File with Dangerous Type	NVD-CWE-Other	CVE-2010-0757	2017-08-17 10:32	2010-02-27	Show	GitHub Exploit DB Packet Storm

347084	-	softbizscripts	softbiz_jobs_and_recruitment_script	SQL injection vulnerability in news_desc.php in Softbiz Jobs allows remote attackers to execute arbitrary SQL commands via the id parameter.	CWE-89 SQL Injection	CVE-2010-0758	2017-08-17 10:32	2010-02-27	Show	GitHub Exploit DB Packet Storm

347085	-	greatjoomla	scriptegrator_plugin	Directory traversal vulnerability in plugins/system/cdscriptegrator/libraries/highslide/js/jsloader.php in the Core Design Scriptegrator plugin 1.4.1 for Joomla! allows remote attackers to read, and …	CWE-22 Path Traversal	CVE-2010-0759	2017-08-17 10:32	2010-02-27	Show	GitHub Exploit DB Packet Storm

347086	-	kuwaitphp	esmile	SQL injection vulnerability in index.php in KuwaitPHP eSmile allows remote attackers to execute arbitrary SQL commands via the cid parameter in a show action.	CWE-89 SQL Injection	CVE-2010-0764	2017-08-17 10:32	2010-03-3	Show	GitHub Exploit DB Packet Storm

347087	-	fipsasp	fipsforum	fipsForum 2.6 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for _database/forumFips.mdb.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2010-0765	2017-08-17 10:32	2010-03-3	Show	GitHub Exploit DB Packet Storm

347088	-	ibm	websphere_application_server	Cross-site scripting (XSS) vulnerability in the Administration Console in IBM WebSphere Application Server (WAS) 6.0 before 6.0.2.41, 6.1 before 6.1.0.31, and 7.0 before 7.0.0.9 allows remote attacke…	CWE-79 Cross-site Scripting	CVE-2010-0768	2017-08-17 10:32	2010-04-2	Show	GitHub Exploit DB Packet Storm

347089	-	ibm	websphere_application_server	IBM WebSphere Application Server (WAS) 6.0 before 6.0.2.41, 6.1 before 6.1.0.31, and 7.0 before 7.0.0.9 does not properly define wsadmin scripting J2CConnectionFactory objects, which allows local use…	CWE-255 Credentials Management	CVE-2010-0769	2017-08-17 10:32	2010-04-2	Show	GitHub Exploit DB Packet Storm

347090	-	ibm	websphere_application_server	IBM WebSphere Application Server (WAS) 6.0 before 6.0.2.41, 6.1 before 6.1.0.31, and 7.0 before 7.0.0.9 allows remote authenticated users to cause a denial of service (ORB ListenerThread hang) by abo…	CWE-399 Resource Management Errors	CVE-2010-0770	2017-08-17 10:32	2010-04-2	Show	GitHub Exploit DB Packet Storm