Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 13, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
5701	9.8	緊急 Network	Steven Fackler	rust-openssl	rust-OpenSSL Projectのrust-OpenSSLにおける複数の脆弱性	CWE-131 CWE-787	CVE-2026-41676	2026-04-30 12:18	2026-04-24	Show	GitHub Exploit DB Packet Storm

5702	9.1	緊急 Network	Steven Fackler	rust-openssl	rust-OpenSSL Projectのrust-OpenSSLにおける複数の脆弱性	CWE-125 CWE-1284	CVE-2026-41677	2026-04-30 12:18	2026-04-24	Show	GitHub Exploit DB Packet Storm

5703	9.8	緊急 Network	Steven Fackler	rust-openssl	rust-OpenSSL Projectのrust-OpenSSLにおける境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2026-41678	2026-04-30 12:18	2026-04-24	Show	GitHub Exploit DB Packet Storm

5704	9.8	緊急 Network	Steven Fackler	rust-openssl	rust-OpenSSL Projectのrust-OpenSSLにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-121 スタックオーバーフロー	CVE-2026-41681	2026-04-30 12:17	2026-04-24	Show	GitHub Exploit DB Packet Storm

5705	9.8	緊急 Network	Steven Fackler	rust-openssl	rust-OpenSSL Projectのrust-OpenSSLにおける複数の脆弱性	CWE-126 CWE-130	CVE-2026-41898	2026-04-30 12:17	2026-04-24	Show	GitHub Exploit DB Packet Storm

5706	7	重要 Local	レッドハット libssh	libssh Red Hat Hardened Images	libssh等の複数ベンダの製品における制御されていない検索パスの要素に関する脆弱性	CWE-427 制御されていない検索パスの要素	CVE-2025-14821	2026-04-30 12:17	2026-04-7	Show	GitHub Exploit DB Packet Storm

5707	10	緊急 Network	lfprojects	mlflow	lfprojectsのmlflowにおけるパストラバーサルの脆弱性	CWE-29 パストラバーサル (/../filename)	CVE-2025-15036	2026-04-30 12:17	2026-03-30	Show	GitHub Exploit DB Packet Storm

5708	9.8	緊急 Network	lfprojects	mlflow	lfprojectsのmlflowにおけるコマンドインジェクションの脆弱性	CWE-77 コマンドインジェクション	CVE-2025-15379	2026-04-30 12:17	2026-03-30	Show	GitHub Exploit DB Packet Storm

5709	7.1	重要 Network	lfprojects	mlflow	lfprojectsのmlflowにおける情報漏えいに関する脆弱性	CWE-200 CWE-noinfo	CVE-2025-15381	2026-04-30 12:17	2026-03-27	Show	GitHub Exploit DB Packet Storm

5710	7.5	重要 Network	Apache Software Foundation	Apache Thrift	Apache Software FoundationのApache Thriftにおけるメモリ管理ルーチンの不一致に関する脆弱性	CWE-762 メモリ管理ルーチンの不一致	CVE-2025-48431	2026-04-30 12:17	2026-04-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
355621	-	snowflake	t3blog	SQL injection vulnerability in the T3BLOG extension 0.6.2 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.	CWE-89 SQL Injection	CVE-2010-0798	2010-03-3 14:00	2010-03-3	Show	GitHub Exploit DB Packet Storm

355622	-	perlunity	phpunity.newsmanager	Directory traversal vulnerability in misc/tell_a_friend/tell.php in phpunity.newsmanager allows remote attackers to read arbitrary files via a .. (dot dot) in the id parameter.	CWE-22 Path Traversal	CVE-2010-0799	2010-03-3 14:00	2010-03-3	Show	GitHub Exploit DB Packet Storm

355623	-	autartica	com_autartitarot	Directory traversal vulnerability in the AutartiTarot (com_autartitarot) component 1.0.3 for Joomla! allows remote authenticated users, with "Public Back-end" group permissions, to read arbitrary fil…	CWE-22 Path Traversal	CVE-2010-0801	2010-03-3 14:00	2010-03-3	Show	GitHub Exploit DB Packet Storm

355624	-	aleinbeen	\(nv2\)_awards	SQL injection vulnerability in index.php in (nv2) Awards 1.1.0, a modification for Invision Power Board, allows remote attackers to execute arbitrary SQL commands via the id parameter in a view actio…	CWE-89 SQL Injection	CVE-2010-0802	2010-03-3 14:00	2010-03-3	Show	GitHub Exploit DB Packet Storm

355625	-	sun	java_system_application_server	Cross-site scripting (XSS) vulnerability in Sun Java System Application Server 7 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.	NVD-CWE-Other	CVE-2005-0742	2010-03-2 14:36	2005-05-2	Show	GitHub Exploit DB Packet Storm

355626	-	basic-cms	basic-cms	Cross-site scripting (XSS) vulnerability in pages/index.php in BASIC-CMS allows remote attackers to inject arbitrary web script or HTML via the nav_id parameter.	CWE-79 Cross-site Scripting	CVE-2010-0695	2010-03-2 14:00	2010-02-24	Show	GitHub Exploit DB Packet Storm

355627	-	ibm	websphere_portal	Cross-site scripting (XSS) vulnerability in the Portlet Palette in IBM WebSphere Portal 6.0.1.5 wp6015_008_01 allows remote attackers to inject arbitrary web script or HTML via the search field.	CWE-79 Cross-site Scripting	CVE-2010-0704	2010-03-2 14:00	2010-02-25	Show	GitHub Exploit DB Packet Storm

355628	-	moinmo	moinmoin	MoinMoin 1.9 before 1.9.1 does not perform the expected clearing of the sys.argv array in situations where the GATEWAY_INTERFACE environment variable is set, which allows remote attackers to obtain s…	CWE-200 Information Exposure	CVE-2010-0667	2010-03-1 14:00	2010-02-27	Show	GitHub Exploit DB Packet Storm

355629	-	greatjoomla	scriptegrator_plugin	Multiple directory traversal vulnerabilities in the Core Design Scriptegrator plugin 1.4.1 for Joomla! allow remote attackers to include and execute arbitrary local files via directory traversal sequ…	CWE-22 Path Traversal	CVE-2010-0760	2010-03-1 14:00	2010-02-27	Show	GitHub Exploit DB Packet Storm

355630	-	gnome	screensaver	gnome-screensaver before 2.28.2 allows physically proximate attackers to bypass screen locking and access an unattended workstation by moving the mouse position to an external monitor and then discon…	NVD-CWE-Other	CVE-2010-0414	2010-02-26 16:11	2010-02-12	Show	GitHub Exploit DB Packet Storm