Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 8, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1991	9.8	緊急 Network	エレコム株式会社	WRC-XE5400GS-G WRC-BE72XSD-B WAB-BE72-M WRC-X1800GS-B WRC-BE65QSD-B WRC-X6000QSA-G WRC-X3000GS2A-B WRC-W702-B WRC-X6000XS-G WAB-BE36-M WRC-X6000XST-G WRC-X3000GS2-B	エレコム製無線LANルーターおよび無線アクセスポイントにおける複数の脆弱性（2026年5月）	CWE-78 CWE-79 CWE-Other	CVE-2026-25107 CVE-2026-35506 CVE-2026-40621 CVE-2026-42062 CVE-2026-42948 CVE-2026-42950 CVE-2026-42961	2026-05-19 17:24	2026-05-12	Show	GitHub Exploit DB Packet Storm

1992	-	-	（複数のベンダ）	（複数の製品）	CISA ICS Advisory / ICS Medical Advisory（2026年05月14日）	-	-	2026-05-18 14:06	2026-05-15	Show	GitHub Exploit DB Packet Storm

1993	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2025-71297	2026-05-18 12:19	2026-05-8	Show	GitHub Exploit DB Packet Storm

1994	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2025-71298	2026-05-18 12:19	2026-05-8	Show	GitHub Exploit DB Packet Storm

1995	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2025-71299	2026-05-18 12:19	2026-05-8	Show	GitHub Exploit DB Packet Storm

1996	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2025-71300	2026-05-18 12:19	2026-05-8	Show	GitHub Exploit DB Packet Storm

1997	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2025-71301	2026-05-18 12:19	2026-05-8	Show	GitHub Exploit DB Packet Storm

1998	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2025-71302	2026-05-18 12:19	2026-05-8	Show	GitHub Exploit DB Packet Storm

1999	6.7	警告 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows リッチテキストエディットの特権昇格の脆弱性	CWE-415 二重解放	CVE-2026-21530	2026-05-18 12:19	2026-05-12	Show	GitHub Exploit DB Packet Storm

2000	6.5	警告 Network	アップル	visionos watchOS iOS tvOS iPadOS	アップルのiPadOS等の複数製品におけるバッファエラーの脆弱性	CWE-119 バッファエラー	CVE-2026-28847	2026-05-18 12:19	2026-05-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 8, 2026, 4:09 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
345371	-	chris_wederka	tgm_newsletter	SQL injection vulnerability in the TGM-Newsletter (tgm_newsletter) extension 0.0.2 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.	CWE-89 SQL Injection	CVE-2010-1024	2017-08-17 10:32	2010-03-20	Show	GitHub Exploit DB Packet Storm

345372	-	chris_wederka	tgm_newsletter	Cross-site scripting (XSS) vulnerability in the TGM-Newsletter (tgm_newsletter) extension 0.0.2 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2010-1025	2017-08-17 10:32	2010-03-20	Show	GitHub Exploit DB Packet Storm

345373	-	mathon_nicolas	tmsw_cleandb	SQL injection vulnerability in the CleanDB - DBAL (tmsw_cleandb) extension 2.1.0 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.	CWE-89 SQL Injection	CVE-2010-1026	2017-08-17 10:32	2010-03-20	Show	GitHub Exploit DB Packet Storm

345374	-	dietmar_schffer	travelmate	SQL injection vulnerability in the Meet Travelmates (travelmate) extension 0.1.1 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.	CWE-89 SQL Injection	CVE-2010-1027	2017-08-17 10:32	2010-03-20	Show	GitHub Exploit DB Packet Storm

345375	-	microsoft	windows_media_player	Microsoft Windows Media Player 11 does not properly perform colorspace conversion, which allows remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code vi…	NVD-CWE-noinfo	CVE-2010-1042	2017-08-17 10:32	2010-03-23	Show	GitHub Exploit DB Packet Storm

345376	-	manageengine	oputils	SQL injection vulnerability in Login.do in ManageEngine OpUtils 5.0 allows remote attackers to execute arbitrary SQL commands via the isHttpPort parameter.	CWE-89 SQL Injection	CVE-2010-1044	2017-08-17 10:32	2010-03-23	Show	GitHub Exploit DB Packet Storm

345377	-	masa2el	music_city	SQL injection vulnerability in index.php in MASA2EL Music City 1.0 and 1.1 allows remote attackers to execute arbitrary SQL commands via the id parameter in a singer action.	CWE-89 SQL Injection	CVE-2010-1047	2017-08-17 10:32	2010-03-23	Show	GitHub Exploit DB Packet Storm

345378	-	zentracking	zen_time_tracking	Multiple SQL injection vulnerabilities in Zen Time Tracking 2.2 and earlier, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the (1) username and (2) p…	CWE-89 SQL Injection	CVE-2010-1053	2017-08-17 10:32	2010-03-23	Show	GitHub Exploit DB Packet Storm

345379	-	tufat	osdate	Multiple PHP remote file inclusion vulnerabilities in osDate 2.1.9 and 2.5.4, when magic_quotes_gpc is disabled and register_globals is enabled, allow remote attackers to execute arbitrary PHP code v…	CWE-94 Code Injection	CVE-2010-1055	2017-08-17 10:32	2010-03-24	Show	GitHub Exploit DB Packet Storm

345380	-	rockettheme	com_rokdownloads	Directory traversal vulnerability in the RokDownloads (com_rokdownloads) component before 1.0.1 for Joomla! allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in …	CWE-22 Path Traversal	CVE-2010-1056	2017-08-17 10:32	2010-03-24	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed