Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 16, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1791	6.8	警告 Network	レッドハット	build of keycloak	レッドハットのbuild of keycloakにおけるCapture-replay による認証回避に関する脆弱性	CWE-294 Capture-replayによる認証回避	CVE-2026-37982	2026-06-5 10:47	2026-05-19	Show	GitHub Exploit DB Packet Storm

1792	6.5	警告 Network		-	SAPのSAP Netweaver Application Server ABAPにおけるコマンドインジェクションの脆弱性	CWE-77 コマンドインジェクション	CVE-2026-40135	2026-06-5 10:47	2026-05-12	Show	GitHub Exploit DB Packet Storm

1793	6.8	警告 Physics	opensc project	opensc	opensc projectのopenscにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-121 スタックオーバーフロー	CVE-2026-40510	2026-06-5 10:47	2026-05-29	Show	GitHub Exploit DB Packet Storm

1794	7.8	重要 Local	opensc project	opensc	opensc projectのopenscにおける複数の脆弱性	CWE-121 CWE-122	CVE-2026-40528	2026-06-5 10:46	2026-05-29	Show	GitHub Exploit DB Packet Storm

1795	6.5	警告 Network	Gitlawb	OpenClaude	GitlawbのOpenClaudeにおける複数の脆弱性	CWE-352 CWE-400	CVE-2026-42073	2026-06-5 10:46	2026-06-2	Show	GitHub Exploit DB Packet Storm

1796	9.8	緊急 Network	Gitlawb	OpenClaude	GitlawbのOpenClaudeにおける複数の脆弱性	CWE-284 CWE-306	CVE-2026-42074	2026-06-5 10:46	2026-06-2	Show	GitHub Exploit DB Packet Storm

1797	9.6	緊急 Network	Cline	Cline	Clineにおける複数の脆弱性	CWE-1385 CWE-306	CVE-2026-44211	2026-06-5 10:46	2026-06-1	Show	GitHub Exploit DB Packet Storm

1798	7.5	重要 Network	Julian Gruber (juliangruber)	brace-expansion	Julian Gruber (juliangruber)のbrace-expansionにおけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-45149	2026-06-5 10:46	2026-05-29	Show	GitHub Exploit DB Packet Storm

1799	6.5	警告 Network	Nextcloud	Approval	NextcloudのApprovalにおける認可に関する脆弱性	CWE-285 不適切な認可	CVE-2026-45275	2026-06-5 10:46	2026-06-1	Show	GitHub Exploit DB Packet Storm

1800	3.3	低 Local	Nextcloud	Approval	NextcloudのApprovalにおける情報漏えいに関する脆弱性	CWE-200 CWE-noinfo	CVE-2026-45277	2026-06-5 10:46	2026-06-1	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 17, 2026, 4:19 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
310711	-		novell	zenworks_handheld_management	Heap-based buffer overflow in ZfHIPCND.exe in Novell Zenworks 7 Handheld Management (ZHM) allows remote attackers to execute arbitrary code via a crafted request to TCP port 2400.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2010-4299	2024-11-21 10:20	2010-11-22	Show	GitHub Exploit DB Packet Storm

310712	7.8	HIGH Local	freebsd	freebsd	The pfs_getextattr function in FreeBSD 7.x before 7.3-RELEASE and 8.x before 8.0-RC1 unlocks a mutex that was not previously locked, which allows local users to cause a denial of service (kernel pani…	CWE-667 Improper Locking	CVE-2010-4210	2024-11-21 10:20	2010-11-22	Show	GitHub Exploit DB Packet Storm

310713	-		mono	mono	Untrusted search path vulnerability in metadata/loader.c in Mono 2.8 and earlier allows local users to gain privileges via a Trojan horse shared library in the current working directory.	NVD-CWE-Other	CVE-2010-4159	2024-11-21 10:20	2010-11-18	Show	GitHub Exploit DB Packet Storm

310714	-		hp	laserjet_4200 laserjet_4100 color_laserjet_mfp laserjet_mfp 9000 laserjet_5100 laserjet_8150 laserjet_4300	The default configuration of the PJL Access value in the File System External Access settings on HP LaserJet MFP printers, Color LaserJet MFP printers, and LaserJet 4100, 4200, 4300, 5100, 8150, and …	CWE-22 Path Traversal	CVE-2010-4107	2024-11-21 10:20	2010-11-18	Show	GitHub Exploit DB Packet Storm

310715	-		spreecommerce	spree	Spree 0.11.x before 0.11.2 and 0.30.x before 0.30.0 exchanges data using JavaScript Object Notation (JSON) without a mechanism for validating requests, which allows remote attackers to obtain sensiti…	CWE-200 Information Exposure	CVE-2010-3978	2024-11-21 10:20	2010-11-18	Show	GitHub Exploit DB Packet Storm

310716	7.5	HIGH Network	openttd fedoraproject	openttd fedora	Multiple use-after-free vulnerabilities in OpenTTD 1.0.x before 1.0.5 allow (1) remote attackers to cause a denial of service (invalid write and daemon crash) by abruptly disconnecting during transmi…	CWE-416 Use After Free	CVE-2010-4168	2024-11-21 10:20	2010-11-18	Show	GitHub Exploit DB Packet Storm

310717	-		ibm	director_agent	reset_diragent_keys in the Common agent in IBM Systems Director 6.2.0 has 754 permissions, which allows local users to gain privileges by leveraging system group membership.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2010-4274	2024-11-21 10:20	2010-11-17	Show	GitHub Exploit DB Packet Storm

310718	-		accimoveis	descargarvista_acc_imoveis	SQL injection vulnerability in imoveis.php in DescargarVista ACC IMoveis 1.1 allows remote attackers to execute arbitrary SQL commands via the id parameter.	CWE-89 SQL Injection	CVE-2010-4273	2024-11-21 10:20	2010-11-17	Show	GitHub Exploit DB Packet Storm

310719	-		pulseinfotech	com_sponsorwall	SQL injection vulnerability in the Pulse Infotech Sponsor Wall (com_sponsorwall) component 1.1 for Joomla! allows remote attackers to execute arbitrary SQL commands via the catid parameter to index.p…	CWE-89 SQL Injection	CVE-2010-4272	2024-11-21 10:20	2010-11-17	Show	GitHub Exploit DB Packet Storm

310720	-		impresscms	impresscms	SQL injection vulnerability in ImpressCMS before 1.2.3 RC2 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.	CWE-89 SQL Injection	CVE-2010-4271	2024-11-21 10:20	2010-11-17	Show	GitHub Exploit DB Packet Storm