Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 19, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1451 8.1 重要
Network 		MBS GmbH Universal Gateway Firmware MBS GmbHのUniversal Gateway Firmwareにおけるファイル名やパス名の外部制御に関する脆弱性 CWE-73
ファイル名やパス名の外部制御 		CVE-2026-35077 2026-06-9 14:11 2026-06-3 Show GitHub Exploit DB Packet Storm
1452 8.1 重要
Network 		MBS GmbH Universal Gateway Firmware MBS GmbHのUniversal Gateway Firmwareにおけるファイル名やパス名の外部制御に関する脆弱性 CWE-73
ファイル名やパス名の外部制御 		CVE-2026-35078 2026-06-9 14:11 2026-06-3 Show GitHub Exploit DB Packet Storm
1453 8.1 重要
Network 		MBS GmbH Universal Gateway Firmware MBS GmbHのUniversal Gateway Firmwareにおけるファイル名やパス名の外部制御に関する脆弱性 CWE-73
ファイル名やパス名の外部制御 		CVE-2026-35079 2026-06-9 14:11 2026-06-3 Show GitHub Exploit DB Packet Storm
1454 8.1 重要
Network 		MBS GmbH Universal Gateway Firmware MBS GmbHのUniversal Gateway Firmwareにおけるファイル名やパス名の外部制御に関する脆弱性 CWE-73
ファイル名やパス名の外部制御 		CVE-2026-35080 2026-06-9 14:11 2026-06-3 Show GitHub Exploit DB Packet Storm
1455 8.1 重要
Network 		MBS GmbH Universal Gateway Firmware MBS GmbHのUniversal Gateway Firmwareにおける入力確認に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2026-35081 2026-06-9 14:11 2026-06-3 Show GitHub Exploit DB Packet Storm
1456 8.8 重要
Network 		MBS GmbH Universal Gateway Firmware MBS GmbHのUniversal Gateway Firmwareにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-35082 2026-06-9 14:11 2026-06-3 Show GitHub Exploit DB Packet Storm
1457 8.8 重要
Network 		MBS GmbH Universal Gateway Firmware MBS GmbHのUniversal Gateway Firmwareにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-121
スタックオーバーフロー 		CVE-2026-35083 2026-06-9 14:11 2026-06-3 Show GitHub Exploit DB Packet Storm
1458 8.8 重要
Network 		MBS GmbH Universal Gateway Firmware MBS GmbHのUniversal Gateway Firmwareにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-121
スタックオーバーフロー 		CVE-2026-35084 2026-06-9 14:11 2026-06-3 Show GitHub Exploit DB Packet Storm
1459 8.8 重要
Network 		MBS GmbH Universal Gateway Firmware MBS GmbHのUniversal Gateway Firmwareにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-121
スタックオーバーフロー 		CVE-2026-35085 2026-06-9 14:11 2026-06-3 Show GitHub Exploit DB Packet Storm
1460 7.5 重要
Network 		レッドハット
GNU Project		 Redhat Enterprise Linux For Power Little Endian Els
Red Hat Enterprise Linux for IBM z Systems - Extended Updat… 		GNU Project等の複数ベンダの製品におけるAPI への入力に対する未定義の動作に関する脆弱性 CWE-475
API への入力に対する未定義の動作 		CVE-2026-42009 2026-06-9 14:11 2026-05-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 19, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
310191 - blogcms blog\ Multiple cross-site scripting (XSS) vulnerabilities in BLOG:CMS 4.2.1.e, and possibly earlier, allow remote attackers to inject arbitrary web script or HTML via the (1) body parameter to action.php a… CWE-79
Cross-site Scripting 		CVE-2010-4749 2024-11-21 10:21 2011-03-2 Show GitHub Exploit DB Packet Storm
310192 - pmwiki pmwiki Cross-site scripting (XSS) vulnerability in pmwiki.php in PmWiki 2.2.20 allows remote attackers to inject arbitrary web script or HTML via the from parameter to Main/WikiSandbox. NOTE: some of these… CWE-79
Cross-site Scripting 		CVE-2010-4748 2024-11-21 10:21 2011-03-2 Show GitHub Exploit DB Packet Storm
310193 - ahmattox processing_embed_plugin Cross-site scripting (XSS) vulnerability in wordpress-processing-embed/data/popup.php in the Processing Embed plugin 0.5 for WordPress allows remote attackers to inject arbitrary web script or HTML v… CWE-79
Cross-site Scripting 		CVE-2010-4747 2024-11-21 10:21 2011-03-2 Show GitHub Exploit DB Packet Storm
310194 - fedoraproject 389_directory_server Multiple memory leaks in the normalization functionality in 389 Directory Server before 1.2.7.5 allow remote attackers to cause a denial of service (memory consumption) via "badly behaved application… CWE-399
 Resource Management Errors 		CVE-2010-4746 2024-11-21 10:21 2011-02-24 Show GitHub Exploit DB Packet Storm
310195 - gareth_watts phpxref Cross-site scripting (XSS) vulnerability in nav.html in PHPXref before 0.7.1 allows remote attackers to inject arbitrary web script or HTML via the query string. CWE-79
Cross-site Scripting 		CVE-2010-4745 2024-11-21 10:21 2011-02-22 Show GitHub Exploit DB Packet Storm
310196 - linux
redhat 		linux_kernel
enterprise_linux_server
enterprise_linux_workstation
enterprise_linux_desktop
enterprise_linux_server_aus
enterprise_linux_eus 		Integer overflow in the ib_uverbs_poll_cq function in drivers/infiniband/core/uverbs_cmd.c in the Linux kernel before 2.6.37 allows local users to cause a denial of service (memory corruption) or pos… CWE-190
 Integer Overflow or Wraparound 		CVE-2010-4649 2024-11-21 10:21 2011-02-19 Show GitHub Exploit DB Packet Storm
310197 - moinejf
fedoraproject 		abcm2ps
fedora 		Multiple unspecified vulnerabilities in abcm2ps before 5.9.13 have unknown impact and attack vectors, a different issue than CVE-2010-3441. NVD-CWE-noinfo
CVE-2010-4744 2024-11-21 10:21 2011-02-19 Show GitHub Exploit DB Packet Storm
310198 - moinejf
fedoraproject 		abcm2ps
fedora 		Heap-based buffer overflow in the getarena function in abc2ps.c in abcm2ps before 5.9.13 might allow remote attackers to execute arbitrary code via a crafted ABC file, a different vulnerability than … CWE-787
 Out-of-bounds Write 		CVE-2010-4743 2024-11-21 10:21 2011-02-19 Show GitHub Exploit DB Packet Storm
310199 - moxa activex_sdk Stack-based buffer overflow in a certain ActiveX control in MediaDBPlayback.DLL 2.2.0.5 in the Moxa ActiveX SDK allows remote attackers to execute arbitrary code via a long PlayFileName property valu… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2010-4742 2024-11-21 10:21 2011-02-19 Show GitHub Exploit DB Packet Storm
310200 - moxa device_manager
mdm_tool 		Stack-based buffer overflow in MDMUtil.dll in MDMTool.exe in MDM Tool before 2.3 in Moxa Device Manager allows remote MDM Gateways to execute arbitrary code via crafted data in a session on TCP port … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2010-4741 2024-11-21 10:21 2011-02-19 Show GitHub Exploit DB Packet Storm