Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 18, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
5701	5.5	警告 Local	Uutils	uutils coreutils	Uutilsのuutils coreutilsにおける誤って解決された名前や参照の使用に関する脆弱性	CWE-706 誤って解決された名前や参照の使用	CVE-2026-35358	2026-05-7 11:26	2026-04-22	Show	GitHub Exploit DB Packet Storm

5702	6.6	警告 Local	Uutils	uutils coreutils	Uutilsのuutils coreutilsにおけるリンク解釈に関する脆弱性	CWE-59 リンク解釈の問題	CVE-2026-35365	2026-05-7 11:26	2026-04-22	Show	GitHub Exploit DB Packet Storm

5703	4.4	警告 Local	Uutils	uutils coreutils	Uutilsのuutils coreutilsにおける例外的な状態のチェックに関する脆弱性	CWE-754 例外的な状態における不適切なチェック	CVE-2026-35366	2026-05-7 11:26	2026-04-22	Show	GitHub Exploit DB Packet Storm

5704	5.5	警告 Local	Uutils	uutils coreutils	Uutilsのuutils coreutilsにおける入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2026-35369	2026-05-7 11:26	2026-04-22	Show	GitHub Exploit DB Packet Storm

5705	4.4	警告 Local	Uutils	uutils coreutils	Uutilsのuutils coreutilsにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-35370	2026-05-7 11:26	2026-04-22	Show	GitHub Exploit DB Packet Storm

5706	3.3	低 Local	Uutils	uutils coreutils	Uutilsのuutils coreutilsにおけるユーザインターフェースにおける重要情報の誤った表示に関する脆弱性	CWE-451 ユーザインターフェースにおける重要情報の誤った表示	CVE-2026-35371	2026-05-7 11:26	2026-04-22	Show	GitHub Exploit DB Packet Storm

5707	5	警告 Local	Uutils	uutils coreutils	Uutilsのuutils coreutilsにおけるUNIX Symbolic Link のフォローに関する脆弱性	CWE-61 UNIX Symbolic Link のフォロー	CVE-2026-35372	2026-05-7 11:26	2026-04-22	Show	GitHub Exploit DB Packet Storm

5708	5.5	警告 Local	Uutils	uutils coreutils	Uutilsのuutils coreutilsにおけるUnicode エンコーディングの処理に関する脆弱性	CWE-176 Unicode エンコーディングの不適切な処理	CVE-2026-35373	2026-05-7 11:26	2026-04-22	Show	GitHub Exploit DB Packet Storm

5709	6.3	警告 Local	Uutils	uutils coreutils	Uutilsのuutils coreutilsにおけるTime-of-check Time-of-use (TOCTOU) 競合状態の脆弱性	CWE-367 Time-of-check Time-of-use (TOCTOU) 競合状態	CVE-2026-35374	2026-05-7 11:26	2026-04-22	Show	GitHub Exploit DB Packet Storm

5710	3.3	低 Local	Uutils	uutils coreutils	Uutilsのuutils coreutilsにおけるUnicode エンコーディングの処理に関する脆弱性	CWE-176 Unicode エンコーディングの不適切な処理	CVE-2026-35375	2026-05-7 11:26	2026-04-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 19, 2026, 4:01 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
347801	-	awdsolution	com_awdwall	Directory traversal vulnerability in the AWDwall (com_awdwall) component 1.5.4 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter to index.php.	CWE-22 Path Traversal	CVE-2010-1494	2017-08-17 10:32	2010-04-23	Show	GitHub Exploit DB Packet Storm

347802	-	jolt	com_joltcard	SQL injection vulnerability in the JoltCard (com_joltcard) component 1.2.1 for Joomla! allows remote attackers to execute arbitrary SQL commands via the cardID parameter in a view action to index.php.	CWE-89 SQL Injection	CVE-2010-1496	2017-08-17 10:32	2010-04-23	Show	GitHub Exploit DB Packet Storm

347803	-	clausvb	dl_stats	Cross-site scripting (XSS) vulnerability in download_proc.php in dl_stats before 2.0 allows remote attackers to inject arbitrary web script or HTML via the id parameter.	CWE-79 Cross-site Scripting	CVE-2010-1497	2017-08-17 10:32	2010-04-23	Show	GitHub Exploit DB Packet Storm

347804	-	clausvb	dl_stats	Multiple SQL injection vulnerabilities in dl_stats before 2.0 allow remote attackers to execute arbitrary SQL commands via the id parameter to (1) download.php and (2) view_file.php.	CWE-89 SQL Injection	CVE-2010-1498	2017-08-17 10:32	2010-04-23	Show	GitHub Exploit DB Packet Storm

347805	-	musicboxv2	musicbox	SQL injection vulnerability in genre_artists.php in MusicBox 3.3 allows remote attackers to execute arbitrary SQL commands via the id parameter.	CWE-89 SQL Injection	CVE-2010-1499	2017-08-17 10:32	2010-04-23	Show	GitHub Exploit DB Packet Storm

347806	-	uiga	proxy	PHP remote file inclusion vulnerability in include/template.php in Uiga Proxy, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the content paramet…	CWE-94 Code Injection	CVE-2010-1528	2017-08-17 10:32	2010-04-27	Show	GitHub Exploit DB Packet Storm

347807	-	freestyle	faqs_lite	SQL injection vulnerability in the Freestyle FAQs Lite (com_fsf) component, possibly 1.3, for Joomla! allows remote attackers to execute arbitrary SQL commands via the faqid parameter in an faq actio…	CWE-89 SQL Injection	CVE-2010-1529	2017-08-17 10:32	2010-04-27	Show	GitHub Exploit DB Packet Storm

347808	-	redcomponent	com_redshop	Directory traversal vulnerability in the redSHOP (com_redshop) component 1.0.x for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the view parameter to index.php.	CWE-22 Path Traversal	CVE-2010-1531	2017-08-17 10:32	2010-04-27	Show	GitHub Exploit DB Packet Storm

347809	-	joomla.batjo	com_shoutbox	Directory traversal vulnerability in the Shoutbox Pro (com_shoutbox) component for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter to index.php.	CWE-22 Path Traversal	CVE-2010-1534	2017-08-17 10:32	2010-04-27	Show	GitHub Exploit DB Packet Storm

347810	-	francois_bissonnette	phpcdb	Multiple directory traversal vulnerabilities in phpCDB 1.0 and earlier allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the lang_global parameter to (1) first…	CWE-22 Path Traversal	CVE-2010-1537	2017-08-17 10:32	2010-04-27	Show	GitHub Exploit DB Packet Storm