Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 16, 2026, 10:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1461	7.8	重要 Local	Amazon.com, Inc.	Kiro CLI	Amazon.com, Inc.のKiro CLIにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2026-9255	2026-06-8 11:48	2026-05-22	Show	GitHub Exploit DB Packet Storm

1462	9.9	緊急 Network	Flowintel	Flowintel	Flowintelにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-9813	2026-06-8 11:48	2026-05-28	Show	GitHub Exploit DB Packet Storm

1463	7.8	重要 Local	huggingface	transformers	huggingfaceのtransformersにおける複数の脆弱性	CWE-1066 CWE-502	CVE-2026-4372	2026-06-8 11:48	2026-05-24	Show	GitHub Exploit DB Packet Storm

1464	6.1	警告 Network	Avatar Uploader project	Avatar Uploader	Avatar Uploader projectのAvatar Uploaderにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2022-50957	2026-06-8 11:48	2026-05-10	Show	GitHub Exploit DB Packet Storm

1465	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける有効期限後のメモリの解放の欠如に関する脆弱性	CWE-401 有効期限後のメモリの解放の欠如	CVE-2025-71273	2026-06-8 11:48	2026-05-6	Show	GitHub Exploit DB Packet Storm

1466	7.5	重要 Network	Mozilla Foundation	Mozilla Firefox	Mozilla FoundationのMozilla Firefoxにおけるバッファエラーの脆弱性	CWE-119 バッファエラー	CVE-2026-10701	2026-06-8 11:48	2026-06-2	Show	GitHub Exploit DB Packet Storm

1467	4.3	警告 Network	Mozilla Foundation	Mozilla Firefox	Mozilla FoundationのMozilla Firefoxにおける型の取り違えに関する脆弱性	CWE-843 型の取り違え	CVE-2026-10702	2026-06-8 11:48	2026-06-2	Show	GitHub Exploit DB Packet Storm

1468	3.6	低 Local	lfprojects	mlflow	lfprojectsのmlflowにおける複数の脆弱性	CWE-327 CWE-328	CVE-2026-10803	2026-06-8 11:48	2026-06-4	Show	GitHub Exploit DB Packet Storm

1469	6.5	警告 Adjacent	TP-LINK Technologies	tapo c200 ファームウェア	TP-LINK Technologiesのtapo c200 ファームウェアにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-121 スタックオーバーフロー	CVE-2026-1871	2026-06-8 11:48	2026-06-2	Show	GitHub Exploit DB Packet Storm

1470	6.5	警告 Network	Koha	Koha	Kohaにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-26379	2026-06-8 11:48	2026-06-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
310491	-	aimluck	aipo	SQL injection vulnerability in Aimluck Aipo before 5.1.0.1 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.	CWE-89 SQL Injection	CVE-2010-3924	2024-11-21 10:19	2011-01-14	Show	GitHub Exploit DB Packet Storm

310492	-	novell	suse_linux	The supportconfig script in supportutils in SUSE Linux Enterprise 11 SP1 and 10 SP3 does not "disguise passwords" in configuration files, which has unknown impact and attack vectors.	CWE-255 Credentials Management	CVE-2010-3912	2024-11-21 10:19	2011-01-13	Show	GitHub Exploit DB Packet Storm

310493	-	wb-i	sgx-sp_final sgx-sp_final_ne	Multiple cross-site scripting (XSS) vulnerabilities in Shop.cgi in SGX-SP Final before 11.00 and SGX-SP Final NE before 11.00 allow remote attackers to inject arbitrary web script or HTML via unspeci…	CWE-79 Cross-site Scripting	CVE-2010-3926	2024-11-21 10:19	2011-01-12	Show	GitHub Exploit DB Packet Storm

310494	-	mysql oracle	mysql	Oracle MySQL 5.1 before 5.1.49 and 5.5 before 5.5.5 sends an OK packet when a LOAD DATA INFILE request generates SQL errors, which allows remote authenticated users to cause a denial of service (mysq…	NVD-CWE-Other	CVE-2010-3683	2024-11-21 10:19	2011-01-12	Show	GitHub Exploit DB Packet Storm

310495	-	mysql oracle	mysql	Oracle MySQL 5.1 before 5.1.49 and 5.0 before 5.0.92 allows remote authenticated users to cause a denial of service (mysqld daemon crash) by using EXPLAIN with crafted "SELECT ... UNION ... ORDER BY …	NVD-CWE-Other	CVE-2010-3682	2024-11-21 10:19	2011-01-12	Show	GitHub Exploit DB Packet Storm

310496	-	mysql oracle	mysql	Oracle MySQL 5.1 before 5.1.49 and 5.5 before 5.5.5 allows remote authenticated users to cause a denial of service (mysqld daemon crash) by using the HANDLER interface and performing "alternate reads…	NVD-CWE-Other	CVE-2010-3681	2024-11-21 10:19	2011-01-12	Show	GitHub Exploit DB Packet Storm

310497	-	mysql oracle	mysql	Oracle MySQL 5.1 before 5.1.49 allows remote authenticated users to cause a denial of service (mysqld daemon crash) by creating temporary tables with nullable columns while using InnoDB, which trigge…	NVD-CWE-Other	CVE-2010-3680	2024-11-21 10:19	2011-01-12	Show	GitHub Exploit DB Packet Storm

310498	-	mysql oracle	mysql	Oracle MySQL 5.1 before 5.1.49 allows remote authenticated users to cause a denial of service (mysqld daemon crash) via certain arguments to the BINLOG command, which triggers an access of uninitiali…	CWE-399 Resource Management Errors	CVE-2010-3679	2024-11-21 10:19	2011-01-12	Show	GitHub Exploit DB Packet Storm

310499	-	mysql oracle	mysql	Oracle MySQL 5.1 before 5.1.49 allows remote authenticated users to cause a denial of service (crash) via (1) IN or (2) CASE operations with NULL arguments that are explicitly specified or indirectly…	CWE-399 Resource Management Errors	CVE-2010-3678	2024-11-21 10:19	2011-01-12	Show	GitHub Exploit DB Packet Storm

310500	-	mysql oracle	mysql	Oracle MySQL 5.1 before 5.1.49 and 5.0 before 5.0.92 allows remote authenticated users to cause a denial of service (mysqld daemon crash) via a join query that uses a table with a unique SET column.	CWE-399 Resource Management Errors	CVE-2010-3677	2024-11-21 10:19	2011-01-12	Show	GitHub Exploit DB Packet Storm