Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 18, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
141	7.8	重要 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける競合状態に関する脆弱性 New	CWE-362 競合状態	CVE-2026-46058	2026-06-17 15:39	2026-05-27	Show	GitHub Exploit DB Packet Storm

142	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性 New	CWE-noinfo 情報不足	CVE-2026-46059	2026-06-17 15:39	2026-05-27	Show	GitHub Exploit DB Packet Storm

143	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性 New	CWE-noinfo 情報不足	CVE-2026-46060	2026-06-17 15:39	2026-05-27	Show	GitHub Exploit DB Packet Storm

144	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおけるリソースのロックに関する脆弱性 New	CWE-667 不適切なロック	CVE-2026-46061	2026-06-17 15:39	2026-05-27	Show	GitHub Exploit DB Packet Storm

145	7.8	重要 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける整数オーバーフローの脆弱性 New	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2026-46062	2026-06-17 15:39	2026-05-27	Show	GitHub Exploit DB Packet Storm

146	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおけるリソースのロックに関する脆弱性 New	CWE-667 不適切なロック	CVE-2026-46063	2026-06-17 15:39	2026-05-27	Show	GitHub Exploit DB Packet Storm

147	6.1	警告 Network	diagrams	drawio	diagramsのdrawioにおけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-46642	2026-06-17 15:39	2026-06-10	Show	GitHub Exploit DB Packet Storm

148	7.2	重要 Network	MariaDB Corporation Ab.	MariaDB	MariaDB Corporation Ab.のMariaDBにおけるOS コマンドインジェクションの脆弱性 New	CWE-78 OSコマンド・インジェクション	CVE-2026-48163	2026-06-17 15:39	2026-06-12	Show	GitHub Exploit DB Packet Storm

149	7.2	重要 Network	MariaDB Corporation Ab.	MariaDB	MariaDB Corporation Ab.のMariaDBにおけるOS コマンドインジェクションの脆弱性 New	CWE-78 OSコマンド・インジェクション	CVE-2026-48165	2026-06-17 15:39	2026-06-12	Show	GitHub Exploit DB Packet Storm

150	7.8	重要 Local	レッドハット X.Org Foundation	X.Org X Server Red Hat Enterprise Linux xwayland	レッドハット等の複数ベンダの製品における境界外書き込みに関する脆弱性 New	CWE-787 境界外書き込み	CVE-2026-50264	2026-06-17 15:39	2026-06-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 19, 2026, 4:01 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
309871	-	kanich	com_searchlog	SQL injection vulnerability in models/log.php in the Search Log (com_searchlog) component 3.1.0 for Joomla! allows remote authenticated users, with Public Back-end privileges, to execute arbitrary SQ…	CWE-89 SQL Injection	CVE-2010-5044	2024-11-21 10:22	2011-11-3	Show	GitHub Exploit DB Packet Storm

309872	-	blueconstantmedia	com_djartgallery	SQL injection vulnerability in the DJ-ArtGallery (com_djartgallery) component 0.9.1 for Joomla! allows remote authenticated users to execute arbitrary SQL commands via the cid[] parameter in an editI…	CWE-89 SQL Injection	CVE-2010-5043	2024-11-21 10:22	2011-11-3	Show	GitHub Exploit DB Packet Storm

309873	-	blueconstantmedia	com_djartgallery	Cross-site scripting (XSS) vulnerability in the DJ-ArtGallery (com_djartgallery) component 0.9.1 for Joomla! allows remote attackers to inject arbitrary web script or HTML via the cid[] parameter in …	CWE-79 Cross-site Scripting	CVE-2010-5042	2024-11-21 10:22	2011-11-3	Show	GitHub Exploit DB Packet Storm

309874	-	john_bradshaw	np_gallery_plugin	SQL injection vulnerability in index.php in the NP_Gallery plugin 0.94 for Nucleus allows remote attackers to execute arbitrary SQL commands via the id parameter in a plugin action.	CWE-89 SQL Injection	CVE-2010-5041	2024-11-21 10:22	2011-11-3	Show	GitHub Exploit DB Packet Storm

309875	-	john_bradshaw	np_gallery_plugin	PHP remote file inclusion vulnerability in nucleus/plugins/NP_gallery.php in the NP_Gallery plugin 0.94 for Nucleus allows remote attackers to execute arbitrary PHP code via a URL in the DIR_NUCLEUS …	CWE-94 Code Injection	CVE-2010-5040	2024-11-21 10:22	2011-11-3	Show	GitHub Exploit DB Packet Storm

309876	-	scriptsfeed	recipes_listing_portal	SQL injection vulnerability in control/admin_login.php in ScriptsFeed Recipes Listing Portal 1.0 allows remote attackers to execute arbitrary SQL commands via the loginid parameter (aka the UserName …	CWE-89 SQL Injection	CVE-2010-5039	2024-11-21 10:22	2011-11-3	Show	GitHub Exploit DB Packet Storm

309877	-	groonesworld	simple_contact_form	PHP remote file inclusion vulnerability in contact/contact.php in Groone's Simple Contact Form allows remote attackers to execute arbitrary PHP code via a URL in the abspath parameter.	CWE-94 Code Injection	CVE-2010-5038	2024-11-21 10:22	2011-11-3	Show	GitHub Exploit DB Packet Storm

309878	-	michau_enterprises	sensesites_commonsense_cms	SQL injection vulnerability in article.php in SenseSites CommonSense CMS allows remote attackers to execute arbitrary SQL commands via the article_id parameter.	CWE-89 SQL Injection	CVE-2010-5037	2024-11-21 10:22	2011-11-3	Show	GitHub Exploit DB Packet Storm

309879	-	iscripts	eswap	SQL injection vulnerability in addsale.php in iScripts eSwap 2.0 allows remote attackers to execute arbitrary SQL commands via the type parameter.	CWE-89 SQL Injection	CVE-2010-5036	2024-11-21 10:22	2011-11-3	Show	GitHub Exploit DB Packet Storm

309880	-	iscripts	eswap	Cross-site scripting (XSS) vulnerability in search.php in iScripts eSwap 2.0 allows remote attackers to inject arbitrary web script or HTML via the txtHomeSearch parameter (aka the search field). NO…	CWE-79 Cross-site Scripting	CVE-2010-5035	2024-11-21 10:22	2011-11-3	Show	GitHub Exploit DB Packet Storm