Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 12, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1141 9.9 緊急
Network 		Linux Foundation CloudNativePG Linux FoundationのCloudNativePGにおける複数の脆弱性 CWE-250
CWE-271
CWE-426
CVE-2026-44477 2026-06-5 10:51 2026-05-28 Show GitHub Exploit DB Packet Storm
1142 9.6 緊急
Network 		John Pettitt (jpettitt) MeshCore Card John Pettitt (jpettitt)のMeshCore Cardにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-45323 2026-06-5 10:51 2026-05-28 Show GitHub Exploit DB Packet Storm
1143 6.5 警告
Network 		Spring AI Community MCP Security Spring AI CommunityのMCP Securityにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-45609 2026-06-5 10:51 2026-05-29 Show GitHub Exploit DB Packet Storm
1144 5.5 警告
Local 		opentelemetry eBPF Instrumentation opentelemetryのeBPF Instrumentationにおける複数の脆弱性 CWE-20
CWE-248
CVE-2026-45676 2026-06-5 10:51 2026-06-2 Show GitHub Exploit DB Packet Storm
1145 7.5 重要
Network 		opentelemetry eBPF Instrumentation opentelemetryのeBPF Instrumentationにおける複数の脆弱性 CWE-20
CWE-754
CVE-2026-45678 2026-06-5 10:51 2026-06-2 Show GitHub Exploit DB Packet Storm
1146 6.5 警告
Network 		opentelemetry eBPF Instrumentation opentelemetryのeBPF Instrumentationにおける複数の脆弱性 CWE-117
CWE-532
CVE-2026-45679 2026-06-5 10:51 2026-06-2 Show GitHub Exploit DB Packet Storm
1147 7.5 重要
Network 		opentelemetry eBPF Instrumentation opentelemetryのeBPF Instrumentationにおける複数の脆弱性 CWE-400
CWE-834
CVE-2026-45680 2026-06-5 10:50 2026-06-2 Show GitHub Exploit DB Packet Storm
1148 5.9 警告
Network 		opentelemetry eBPF Instrumentation opentelemetryのeBPF Instrumentationにおける複数の脆弱性 CWE-125
CWE-130
CVE-2026-45681 2026-06-5 10:50 2026-06-2 Show GitHub Exploit DB Packet Storm
1149 5.5 警告
Local 		opentelemetry eBPF Instrumentation opentelemetryのeBPF Instrumentationにおける複数の脆弱性 CWE-401
CWE-770
CVE-2026-45682 2026-06-5 10:50 2026-06-2 Show GitHub Exploit DB Packet Storm
1150 3.8
Local 		opentelemetry eBPF Instrumentation opentelemetryのeBPF Instrumentationにおける複数の脆弱性 CWE-127
CWE-200
CVE-2026-45683 2026-06-5 10:50 2026-06-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
310551 - egroupware egroupware phpgwapi/js/fckeditor/editor/dialog/fck_spellerpages/spellerpages/serverscripts/spellchecker.php in EGroupware 1.4.001+.002; 1.6.001+.002 and possibly other versions before 1.6.003; and EPL 9.1 befor… CWE-94
Code Injection 		CVE-2010-3313 2024-11-21 10:18 2010-09-23 Show GitHub Exploit DB Packet Storm
310552 - linux
suse
canonical 		linux_kernel
linux_enterprise_real_time_extension
ubuntu_linux 		The IA32 system call emulation functionality in arch/x86/ia32/ia32entry.S in the Linux kernel before 2.6.36-rc4-git2 on the x86_64 platform does not zero extend the %eax register after the 32-bit ent… CWE-269
 Improper Privilege Management 		CVE-2010-3301 2024-11-21 10:18 2010-09-23 Show GitHub Exploit DB Packet Storm
310553 - linux
debian
canonical 		linux_kernel
debian_linux
ubuntu_linux 		The tcf_act_police_dump function in net/sched/act_police.c in the actions implementation in the network queueing functionality in the Linux kernel before 2.6.36-rc4 does not properly initialize certa… CWE-399
 Resource Management Errors 		CVE-2010-3477 2024-11-21 10:18 2010-09-22 Show GitHub Exploit DB Packet Storm
310554 - drupal drupal Multiple cross-site scripting (XSS) vulnerabilities in Drupal 6.x before 6.18 allow remote authenticated users with certain privileges to inject arbitrary web script or HTML via (1) an action descrip… CWE-79
Cross-site Scripting 		CVE-2010-3094 2024-11-21 10:18 2010-09-22 Show GitHub Exploit DB Packet Storm
310555 - drupal drupal The comment module in Drupal 5.x before 5.23 and 6.x before 6.18 allows remote authenticated users with certain privileges to bypass intended access restrictions and reinstate removed comments via a … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2010-3093 2024-11-21 10:18 2010-09-22 Show GitHub Exploit DB Packet Storm
310556 - drupal drupal The upload module in Drupal 5.x before 5.23 and 6.x before 6.18 does not properly support case-insensitive filename handling in a database configuration, which allows remote authenticated users to by… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2010-3092 2024-11-21 10:18 2010-09-22 Show GitHub Exploit DB Packet Storm
310557 - otrs otrs Open Ticket Request System (OTRS) 2.3.x before 2.3.6 and 2.4.x before 2.4.8 does not properly handle the matching of Perl regular expressions against HTML e-mail messages, which allows remote attacke… CWE-20
 Improper Input Validation  		CVE-2010-3476 2024-11-21 10:18 2010-09-21 Show GitHub Exploit DB Packet Storm
310558 - ibm db2 IBM DB2 9.7 before FP3 does not properly enforce privilege requirements for execution of entries in the dynamic SQL cache, which allows remote authenticated users to bypass intended access restrictio… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2010-3475 2024-11-21 10:18 2010-09-21 Show GitHub Exploit DB Packet Storm
310559 - ibm db2 IBM DB2 9.7 before FP3 does not perform the expected drops or invalidations of dependent functions upon a loss of privileges by the functions' owners, which allows remote authenticated users to bypas… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2010-3474 2024-11-21 10:18 2010-09-21 Show GitHub Exploit DB Packet Storm
310560 - ibm filenet_p8_application_engine Open redirect vulnerability in the Workplace (aka WP) component in IBM FileNet P8 Application Engine (P8AE) 3.5.1 before 3.5.1-021 allows remote attackers to redirect users to arbitrary web sites and… CWE-20
 Improper Input Validation  		CVE-2010-3473 2024-11-21 10:18 2010-09-21 Show GitHub Exploit DB Packet Storm