Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 16, 2026, 4:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1451 8.8 重要
Network 		IBM IBM Aspera High-Speed Transfer Server
IBM Aspera High-Speed Transfer Endpoint 		IBMのIBM Aspera High-Speed Transfer Endpoint等の複数製品におけるスタックベースのバッファオーバーフローの脆弱性 CWE-121
スタックオーバーフロー 		CVE-2026-8179 2026-06-8 12:30 2026-05-27 Show GitHub Exploit DB Packet Storm
1452 7.5 重要
Network 		IBM IBM Aspera High-Speed Transfer Server
IBM Aspera High-Speed Transfer Endpoint 		IBMのIBM Aspera High-Speed Transfer Endpoint等の複数製品におけるNULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2026-8180 2026-06-8 12:30 2026-05-27 Show GitHub Exploit DB Packet Storm
1453 5.3 警告
Network 		Django Software Foundation Django Django Software FoundationのDjangoにおける大文字と小文字の区別の不適切な処理に関する脆弱性 CWE-178
大文字と小文字の区別の不適切な処理 		CVE-2026-8404 2026-06-8 12:30 2026-06-3 Show GitHub Exploit DB Packet Storm
1454 6.5 警告
Network 		IBM IBM Aspera High-Speed Transfer Server
IBM Aspera High-Speed Transfer Endpoint 		IBMのIBM Aspera High-Speed Transfer Endpoint等の複数製品におけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-9035 2026-06-8 12:30 2026-05-27 Show GitHub Exploit DB Packet Storm
1455 6.5 警告
Network 		Google Google Chrome GoogleのGoogle Chromeにおける境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2026-9122 2026-06-8 12:30 2026-05-20 Show GitHub Exploit DB Packet Storm
1456 7.5 重要
Adjacent 		Google Google Chrome GoogleのGoogle Chromeにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-9123 2026-06-8 12:30 2026-05-20 Show GitHub Exploit DB Packet Storm
1457 5.3 警告
Network 		Google Google Chrome GoogleのGoogle Chromeにおける入力確認に関する脆弱性 CWE-20
CWE-noinfo
CVE-2026-9124 2026-06-8 12:30 2026-05-20 Show GitHub Exploit DB Packet Storm
1458 8.8 重要
Network 		Google Google Chrome GoogleのGoogle Chromeにおける解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-9126 2026-06-8 12:30 2026-05-20 Show GitHub Exploit DB Packet Storm
1459 7.3 重要
Network 		rurban cpanel::json::xs Reini UrbanのCpanel::JSON::XSにおける型の取り違えに関する脆弱性 CWE-843
型の取り違え 		CVE-2026-9334 2026-06-8 12:30 2026-06-3 Show GitHub Exploit DB Packet Storm
1460 7.5 重要
Network 		rurban cpanel::json::xs Reini UrbanのCpanel::JSON::XSにおける複数の脆弱性 CWE-755
CWE-763
CVE-2026-9516 2026-06-8 12:30 2026-06-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
310451 - microsoft windows_server_2008
windows_xp
windows_7
windows_vista
windows_server_2003
windows_2003_server 		fxscover.exe in the Fax Cover Page Editor in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, R2, and R2 SP1, and Windows 7 Gold an… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2010-3974 2024-11-21 10:19 2011-04-14 Show GitHub Exploit DB Packet Storm
310452 - microsoft .net_framework The x86 JIT compiler in Microsoft .NET Framework 2.0 SP2, 3.5 SP1, 3.5.1, and 4.0 does not properly compile function calls, which allows remote attackers to execute arbitrary code via (1) a crafted X… CWE-20
 Improper Input Validation  		CVE-2010-3958 2024-11-21 10:19 2011-04-14 Show GitHub Exploit DB Packet Storm
310453 - horde groupware
dynamic_imp 		Cross-site scripting (XSS) vulnerability in Horde Dynamic IMP (DIMP) before 1.1.5, and Horde Groupware Webmail Edition before 1.2.7, allows remote attackers to inject arbitrary web script or HTML via… CWE-79
Cross-site Scripting 		CVE-2010-3693 2024-11-21 10:19 2011-04-4 Show GitHub Exploit DB Packet Storm
310454 - horde imp
groupware 		Cross-site scripting (XSS) vulnerability in fetchmailprefs.php in Horde IMP before 4.3.8, and Horde Groupware Webmail Edition before 1.2.7, allows remote attackers to inject arbitrary web script or H… CWE-79
Cross-site Scripting 		CVE-2010-3695 2024-11-21 10:19 2011-04-1 Show GitHub Exploit DB Packet Storm
310455 - openslp
vmware 		openslp
esxi
esx 		The extension parser in slp_v2message.c in OpenSLP 1.2.1, and other versions before SVN revision 1647, as used in Service Location Protocol daemon (SLPD) in VMware ESX 4.0 and 4.1 and ESXi 4.0 and 4.… NVD-CWE-noinfo
CVE-2010-3609 2024-11-21 10:19 2011-03-12 Show GitHub Exploit DB Packet Storm
310456 - apache tomcat Apache Tomcat 7.0.0 through 7.0.3, 6.0.x, and 5.5.x, when running within a SecurityManager, does not make the ServletContext attribute read-only, which allows local web applications to read or write … NVD-CWE-Other
CVE-2010-3718 2024-11-21 10:19 2011-02-11 Show GitHub Exploit DB Packet Storm
310457 - modxcms evolution Directory traversal vulnerability in MODx Evolution 1.0.4 and earlier allows remote attackers to read arbitrary files via unspecified vectors related to AjaxSearch, a different vulnerability than CVE… CWE-22
Path Traversal 		CVE-2010-3930 2024-11-21 10:19 2011-02-2 Show GitHub Exploit DB Packet Storm
310458 - modxcms evolution SQL injection vulnerability in MODx Evolution 1.0.4 and earlier allows remote attackers to execute arbitrary SQL commands via unknown vectors related to AjaxSearch. CWE-89
SQL Injection 		CVE-2010-3929 2024-11-21 10:19 2011-02-2 Show GitHub Exploit DB Packet Storm
310459 - apache couchdb Multiple cross-site scripting (XSS) vulnerabilities in the web administration interface (aka Futon) in Apache CouchDB 0.8.0 through 1.0.1 allow remote attackers to inject arbitrary web script or HTML… CWE-79
Cross-site Scripting 		CVE-2010-3854 2024-11-21 10:19 2011-02-2 Show GitHub Exploit DB Packet Storm
310460 - symantec im_manager Eval injection vulnerability in IMAdminSchedTask.asp in the administrative interface for Symantec IM Manager 8.4.16 and earlier allows remote attackers to execute arbitrary code via unspecified param… CWE-94
Code Injection 		CVE-2010-3719 2024-11-21 10:19 2011-02-2 Show GitHub Exploit DB Packet Storm