Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 13, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2061 7.5 重要
Network 		Nine Nines Cowlib Nine NinesのCowlibにおけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2026-7790 2026-05-28 14:38 2026-05-11 Show GitHub Exploit DB Packet Storm
2062 9.9 緊急
Network 		pgAdmin Project pgAdmin 4 pgAdmin ProjectのpgAdmin 4におけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-7813 2026-05-28 14:38 2026-05-11 Show GitHub Exploit DB Packet Storm
2063 4.8 警告
Network 		pgAdmin Project pgAdmin 4 pgAdmin ProjectのpgAdmin 4におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-7814 2026-05-28 14:38 2026-05-11 Show GitHub Exploit DB Packet Storm
2064 8.8 重要
Network 		pgAdmin Project pgAdmin 4 pgAdmin ProjectのpgAdmin 4におけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2026-7815 2026-05-28 14:38 2026-05-11 Show GitHub Exploit DB Packet Storm
2065 8.8 重要
Network 		pgAdmin Project pgAdmin 4 pgAdmin ProjectのpgAdmin 4におけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-7816 2026-05-28 14:38 2026-05-11 Show GitHub Exploit DB Packet Storm
2066 6.5 警告
Network 		pgAdmin Project pgAdmin 4 pgAdmin ProjectのpgAdmin 4における外部からアクセス可能なファイルまたはディレクトリに関する脆弱性 CWE-552
外部からアクセス可能なファイルまたはディレクトリ 		CVE-2026-7817 2026-05-28 14:38 2026-05-11 Show GitHub Exploit DB Packet Storm
2067 7.8 重要
Local 		pgAdmin Project pgAdmin 4 pgAdmin ProjectのpgAdmin 4における信頼できないデータのデシリアライゼーションに関する脆弱性 CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2026-7818 2026-05-28 14:38 2026-05-11 Show GitHub Exploit DB Packet Storm
2068 8.1 重要
Network 		pgAdmin Project pgAdmin 4 pgAdmin ProjectのpgAdmin 4におけるUNIX Symbolic Link のフォローに関する脆弱性 CWE-61
UNIX Symbolic Link のフォロー 		CVE-2026-7819 2026-05-28 14:38 2026-05-11 Show GitHub Exploit DB Packet Storm
2069 6.5 警告
Network 		pgAdmin Project pgAdmin 4 pgAdmin ProjectのpgAdmin 4における過度な認証試行の不適切な制限に関する脆弱性 CWE-307
過度な認証試行の不適切な制限 		CVE-2026-7820 2026-05-28 14:38 2026-05-11 Show GitHub Exploit DB Packet Storm
2070 5.3 警告
Network 		Concrete CMS Concrete CMS Concrete CMSにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-7879 2026-05-28 14:38 2026-05-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
311301 - mozilla firefox
thunderbird
seamonkey 		Integer overflow in an array class in Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x before 3.6.7, Thunderbird 3.0.x before 3.0.6 and 3.1.x before 3.1.1, and SeaMonkey before 2.0.6 allows remote attac… CWE-189
Numeric Errors 		CVE-2010-2752 2024-11-21 10:17 2010-07-31 Show GitHub Exploit DB Packet Storm
311302 - mozilla firefox
seamonkey 		The nsDocShell::OnRedirectStateChange function in docshell/base/nsDocShell.cpp in Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x before 3.6.7, and SeaMonkey before 2.0.6, allows remote attackers to sp… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2010-2751 2024-11-21 10:17 2010-07-31 Show GitHub Exploit DB Packet Storm
311303 - citibank citi_mobile The Citibank Citi Mobile app before 2.0.3 for iOS stores account data in a file, which allows local users to obtain sensitive information via vectors involving (1) the mobile device or (2) a synchron… CWE-200
Information Exposure 		CVE-2010-2913 2024-11-21 10:17 2010-07-30 Show GitHub Exploit DB Packet Storm
311304 - mozilla firefox layout/generic/nsObjectFrame.cpp in Mozilla Firefox 3.6.7 does not properly free memory in the parameter array of a plugin instance, which allows remote attackers to cause a denial of service (memory… CWE-399
 Resource Management Errors 		CVE-2010-2755 2024-11-21 10:17 2010-07-30 Show GitHub Exploit DB Packet Storm
311305 - mozilla firefox
thunderbird
seamonkey 		dom/base/nsJSEnvironment.cpp in Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x before 3.6.7, Thunderbird 3.0.x before 3.0.6 and 3.1.x before 3.1.1, and SeaMonkey before 2.0.6 does not properly suppres… CWE-200
Information Exposure 		CVE-2010-2754 2024-11-21 10:17 2010-07-30 Show GitHub Exploit DB Packet Storm
311306 - kayako esupport SQL injection vulnerability in index.php in Kayako eSupport 3.70.02 allows remote attackers to execute arbitrary SQL commands via the _a parameter in a downloads action. CWE-89
SQL Injection 		CVE-2010-2912 2024-11-21 10:17 2010-07-29 Show GitHub Exploit DB Packet Storm
311307 - kayako esupport SQL injection vulnerability in index.php in Kayako eSupport 3.70.02 allows remote attackers to execute arbitrary SQL commands via the newsid parameter in a viewnews action. CWE-89
SQL Injection 		CVE-2010-2911 2024-11-21 10:17 2010-07-29 Show GitHub Exploit DB Packet Storm
311308 - alexred com_oziogallery SQL injection vulnerability in the Ozio Gallery (com_oziogallery) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the Itemid parameter to index.php. CWE-89
SQL Injection 		CVE-2010-2910 2024-11-21 10:17 2010-07-29 Show GitHub Exploit DB Packet Storm
311309 - toughtomato com_ttvideo SQL injection vulnerability in ttvideo.php in the TTVideo (com_ttvideo) component 1.0 for Joomla! allows remote attackers to execute arbitrary SQL commands via the cid parameter in a video action to … CWE-89
SQL Injection 		CVE-2010-2909 2024-11-21 10:17 2010-07-29 Show GitHub Exploit DB Packet Storm
311310 - joomdle com_joomdle SQL injection vulnerability in the Joomdle (com_joomdle) component 0.24 and earlier for Joomla! allows remote attackers to execute arbitrary SQL commands via the course_id parameter in a detail actio… CWE-89
SQL Injection 		CVE-2010-2908 2024-11-21 10:17 2010-07-29 Show GitHub Exploit DB Packet Storm