Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 9, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1261	5.4	警告 Network	Webmin Project	Webmin	Webmin ProjectのWebminにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-22678	2026-05-28 14:44	2026-05-21	Show	GitHub Exploit DB Packet Storm

1262	8.8	重要 Adjacent	Linux	Linux Kernel	LinuxのLinux Kernelにおける配列インデックスの検証に関する脆弱性	CWE-129 配列インデックスの不適切な検証	CVE-2026-23246	2026-05-28 14:44	2026-03-18	Show	GitHub Exploit DB Packet Storm

1263	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける有効期限後のメモリの解放の欠如に関する脆弱性	CWE-401 有効期限後のメモリの解放の欠如	CVE-2026-23261	2026-05-28 14:44	2026-03-18	Show	GitHub Exploit DB Packet Storm

1264	7.8	重要 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2026-23262	2026-05-28 14:44	2026-03-18	Show	GitHub Exploit DB Packet Storm

1265	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける有効期限後のメモリの解放の欠如に関する脆弱性	CWE-401 有効期限後のメモリの解放の欠如	CVE-2026-23263	2026-05-28 14:44	2026-03-18	Show	GitHub Exploit DB Packet Storm

1266	7.8	重要 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-23270	2026-05-28 14:44	2026-03-18	Show	GitHub Exploit DB Packet Storm

1267	7.8	重要 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける競合状態に関する脆弱性	CWE-362 競合状態	CVE-2026-23271	2026-05-28 14:44	2026-03-20	Show	GitHub Exploit DB Packet Storm

1268	7.8	重要 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-23272	2026-05-28 14:44	2026-03-20	Show	GitHub Exploit DB Packet Storm

1269	7.8	重要 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-23273	2026-05-28 14:44	2026-03-20	Show	GitHub Exploit DB Packet Storm

1270	7.8	重要 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-23274	2026-05-28 14:44	2026-03-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
310861	-	otrs	otrs	The S/MIME feature in Open Ticket Request System (OTRS) before 2.3.4 does not configure the RANDFILE and HOME environment variables for OpenSSL, which might make it easier for remote attackers to dec…	CWE-310 Cryptographic Issues	CVE-2009-5057	2024-11-21 10:11	2011-03-19	Show	GitHub Exploit DB Packet Storm

310862	-	otrs	otrs	Open Ticket Request System (OTRS) before 2.4.0-beta2 does not properly enforce the move_into permission setting for a queue, which allows remote authenticated users to bypass intended access restrict…	CWE-20 Improper Input Validation	CVE-2009-5056	2024-11-21 10:11	2011-03-19	Show	GitHub Exploit DB Packet Storm

310863	-	otrs	otrs	Open Ticket Request System (OTRS) before 2.4.4 grants ticket access on the basis of single-digit substrings of the CustomerID value, which allows remote authenticated users to bypass intended access …	CWE-264 Permissions, Privileges, and Access Controls	CVE-2009-5055	2024-11-21 10:11	2011-03-19	Show	GitHub Exploit DB Packet Storm

310864	-	smarty	smarty	Smarty before 3.0.0 beta 4 does not consider the umask value when setting the permissions of files, which might allow attackers to bypass intended access restrictions via standard filesystem operatio…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2009-5054	2024-11-21 10:11	2011-02-4	Show	GitHub Exploit DB Packet Storm

310865	-	smarty	smarty	Unspecified vulnerability in Smarty before 3.0.0 beta 6 allows remote attackers to execute arbitrary PHP code by injecting this code into a cache file.	NVD-CWE-noinfo	CVE-2009-5053	2024-11-21 10:11	2011-02-4	Show	GitHub Exploit DB Packet Storm

310866	-	smarty	smarty	Multiple unspecified vulnerabilities in Smarty before 3.0.0 beta 6 have unknown impact and attack vectors.	NVD-CWE-noinfo	CVE-2009-5052	2024-11-21 10:11	2011-02-4	Show	GitHub Exploit DB Packet Storm

310867	-	symantec	antivirus system_center antivirus_central_quarantine_server	HDNLRSVC.EXE in the Intel Alert Handler service (aka Symantec Intel Handler service) in Intel Alert Management System (aka AMS or AMS2), as used in Symantec AntiVirus Corporate Edition (SAVCE) 10.x b…	CWE-20 Improper Input Validation	CVE-2010-0111	2024-11-21 10:11	2011-02-1	Show	GitHub Exploit DB Packet Storm

310868	-	symantec	antivirus system_center antivirus_central_quarantine_server	Multiple stack-based buffer overflows in Intel Alert Management System (aka AMS or AMS2), as used in Symantec AntiVirus Corporate Edition (SAVCE) 10.x before 10.1 MR10, Symantec System Center (SSC) 1…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2010-0110	2024-11-21 10:11	2011-02-1	Show	GitHub Exploit DB Packet Storm

310869	-	hastymail	hastymail2	Hastymail2 before RC 8 does not set the secure flag for the session cookie in an https session, which makes it easier for remote attackers to capture this cookie by intercepting its transmission with…	CWE-16 Configuration	CVE-2009-5051	2024-11-21 10:11	2011-01-19	Show	GitHub Exploit DB Packet Storm

310870	-	symantec	web_gateway	SQL injection vulnerability in login.php in the GUI management console in Symantec Web Gateway 4.5 before 4.5.0.376 allows remote attackers to execute arbitrary SQL commands via the USERNAME paramete…	CWE-89 SQL Injection	CVE-2010-0115	2024-11-21 10:11	2011-01-15	Show	GitHub Exploit DB Packet Storm