Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 10, 2026, 12:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1511	8.8	重要 Network	OWASP	OWASP BLT	OWASPのOWASP BLTにおける複数の脆弱性	CWE-94 CWE-95	CVE-2026-40316	2026-05-25 10:25	2026-04-15	Show	GitHub Exploit DB Packet Storm

1512	7.5	重要 Network	WebOnyx	graphql-php	WebOnyxのgraphql-phpにおけるアルゴリズムの複雑さに関する脆弱性	CWE-407 アルゴリズムの複雑性	CVE-2026-40476	2026-05-25 10:25	2026-04-17	Show	GitHub Exploit DB Packet Storm

1513	5.9	警告 Network	Jeffrey Stedfast (jstedfast)	MailKit	Jeffrey Stedfast (jstedfast)のMailKitにおけるインジェクションに関する脆弱性	CWE-74 インジェクション	CVE-2026-41319	2026-05-25 10:25	2026-04-24	Show	GitHub Exploit DB Packet Storm

1514	9.8	緊急 Network	pgx project	pgx	JackcのpgxにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2026-41889	2026-05-25 10:25	2026-05-8	Show	GitHub Exploit DB Packet Storm

1515	5.4	警告 Network	reconurge	Flowsint	Flowsintにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-42159	2026-05-25 10:25	2026-05-14	Show	GitHub Exploit DB Packet Storm

1516	8.6	重要 Network	MagicMirror	MagicMirror	MagicMirrorにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-42281	2026-05-25 10:25	2026-05-14	Show	GitHub Exploit DB Packet Storm

1517	6.1	警告 Network	Absinthe-graphql	Absinthe.Plug (absinthe plug)	Absinthe-graphqlのAbsinthe.Plug (absinthe plug)におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-42794	2026-05-25 10:25	2026-05-8	Show	GitHub Exploit DB Packet Storm

1518	4.3	警告 Network	Getinboxzero	Inbox Zero	GetinboxzeroのInbox Zeroにおける情報漏えいに関する脆弱性	CWE-200 CWE-noinfo	CVE-2026-42865	2026-05-25 10:25	2026-05-11	Show	GitHub Exploit DB Packet Storm

1519	4	警告 Network	Nine Nines	Cowlib	Nine NinesのCowlibにおけるCRLF インジェクションの脆弱性	CWE-93 CRLF インジェクション	CVE-2026-43968	2026-05-25 10:25	2026-05-11	Show	GitHub Exploit DB Packet Storm

1520	3.2	低 Local	Nine Nines	Cowlib	Nine NinesのCowlibにおけるCRLF インジェクションの脆弱性	CWE-93 CRLF インジェクション	CVE-2026-43969	2026-05-25 10:24	2026-05-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
311041	-	juniper	secure_access	Open redirect vulnerability in dana/home/homepage.cgi in Juniper Networks IVE 6.5R1 (Build 14599) and 6.5R2 (Build 14951) allows remote attackers to redirect users to arbitrary web sites and conduct …	CWE-20 Improper Input Validation	CVE-2010-2289	2024-11-21 10:16	2010-06-15	Show	GitHub Exploit DB Packet Storm

311042	-	juniper	secure_access	Cross-site scripting (XSS) vulnerability in dana/nc/ncrun.cgi in Juniper Networks IVE 6.5R1 (Build 14599) and 6.5R2 (Build 14951) allows remote attackers to inject arbitrary web script or HTML via th…	CWE-79 Cross-site Scripting	CVE-2010-2288	2024-11-21 10:16	2010-06-15	Show	GitHub Exploit DB Packet Storm

311043	-	wireshark	wireshark	Buffer overflow in the SigComp Universal Decompressor Virtual Machine dissector in Wireshark 0.10.8 through 1.0.13 and 1.2.0 through 1.2.8 has unknown impact and remote attack vectors.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2010-2287	2024-11-21 10:16	2010-06-15	Show	GitHub Exploit DB Packet Storm

311044	-	wireshark	wireshark	The SigComp Universal Decompressor Virtual Machine dissector in Wireshark 0.10.7 through 1.0.13 and 1.2.0 through 1.2.8 allows remote attackers to cause a denial of service (infinite loop) via unknow…	CWE-399 Resource Management Errors	CVE-2010-2286	2024-11-21 10:16	2010-06-15	Show	GitHub Exploit DB Packet Storm

311045	-	wireshark	wireshark	The SMB PIPE dissector in Wireshark 0.8.20 through 1.0.13 and 1.2.0 through 1.2.8 allows remote attackers to cause a denial of service (NULL pointer dereference) via unknown vectors.	NVD-CWE-Other	CVE-2010-2285	2024-11-21 10:16	2010-06-15	Show	GitHub Exploit DB Packet Storm

311046	-	wireshark	wireshark	Buffer overflow in the ASN.1 BER dissector in Wireshark 0.10.13 through 1.0.13 and 1.2.0 through 1.2.8 has unknown impact and remote attack vectors.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2010-2284	2024-11-21 10:16	2010-06-15	Show	GitHub Exploit DB Packet Storm

311047	-	wireshark	wireshark	The SMB dissector in Wireshark 0.99.6 through 1.0.13, and 1.2.0 through 1.2.8 allows remote attackers to cause a denial of service (NULL pointer dereference) via unknown vectors.	NVD-CWE-Other	CVE-2010-2283	2024-11-21 10:16	2010-06-15	Show	GitHub Exploit DB Packet Storm

311048	-	f5	nginx	nginx 0.8.36 allows remote attackers to cause a denial of service (crash) via certain encoded directory traversal sequences that trigger memory corruption, as demonstrated using the "%c0.%c0." sequen…	CWE-22 Path Traversal	CVE-2010-2266	2024-11-21 10:16	2010-06-15	Show	GitHub Exploit DB Packet Storm

311049	-	microsoft	windows_xp windows_server_2003 windows_2003_server	Cross-site scripting (XSS) vulnerability in the GetServerName function in sysinfo/commonFunc.js in Microsoft Windows Help and Support Center for Windows XP and Windows Server 2003 allows remote attac…	CWE-79 Cross-site Scripting	CVE-2010-2265	2024-11-21 10:16	2010-06-15	Show	GitHub Exploit DB Packet Storm

311050	-	f5	nginx	nginx 0.8 before 0.8.40 and 0.7 before 0.7.66, when running on Windows, allows remote attackers to obtain source code or unparsed content of arbitrary files under the web document root by appending :…	CWE-200 Information Exposure	CVE-2010-2263	2024-11-21 10:16	2010-06-15	Show	GitHub Exploit DB Packet Storm