Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 10, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2091 6.1 警告
Network 		Apache Software Foundation Apache OFBiz Apache Software FoundationのApache OFBizにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-31906 2026-05-21 10:53 2026-05-19 Show GitHub Exploit DB Packet Storm
2092 7.5 重要
Network 		Apache Software Foundation Apache OFBiz Apache Software FoundationのApache OFBizにおける情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2026-31909 2026-05-21 10:53 2026-05-19 Show GitHub Exploit DB Packet Storm
2093 7.5 重要
Network 		Apache Software Foundation Apache OFBiz Apache Software FoundationのApache OFBizにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-31910 2026-05-21 10:53 2026-05-19 Show GitHub Exploit DB Packet Storm
2094 9.1 緊急
Network 		Apache Software Foundation Apache OFBiz Apache Software FoundationのApache OFBizにおけるハードコードされた暗号鍵の使用に関する脆弱性 CWE-321
ハードコードされた暗号鍵の使用 		CVE-2026-31986 2026-05-21 10:53 2026-05-19 Show GitHub Exploit DB Packet Storm
2095 4.8 警告
Network 		Mattermost, Inc. Mattermost Server Mattermost, Inc.のMattermost Serverにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-3495 2026-05-21 10:53 2026-05-18 Show GitHub Exploit DB Packet Storm
2096 6.5 警告
Network 		Apache Software Foundation Apache OFBiz Apache Software FoundationのApache OFBizにおけるコードインジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2026-35086 2026-05-21 10:52 2026-05-19 Show GitHub Exploit DB Packet Storm
2097 8.8 重要
Local 		マイクロソフト Microsoft 365 Apps
Microsoft Office
Office Long Term Servicing Channel (LTSC) 		Microsoft Office クイック実行の特権の昇格の脆弱性 CWE-1220
アクセス制御の不十分な粒度 		CVE-2026-35436 2026-05-21 10:52 2026-05-12 Show GitHub Exploit DB Packet Storm
2098 5.5 警告
Local 		マイクロソフト Microsoft 365 Apps
Microsoft Office
Microsoft Word
Office Long Term Servicing Channel (LTSC) 		Microsoft Word の情報漏えいの脆弱性 CWE-552
外部からアクセス可能なファイルまたはディレクトリ 		CVE-2026-35440 2026-05-21 10:52 2026-05-12 Show GitHub Exploit DB Packet Storm
2099 4.3 警告
Network 		Mattermost, Inc. Mattermost Server Mattermost, Inc.のMattermost Serverにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-3637 2026-05-21 10:52 2026-05-18 Show GitHub Exploit DB Packet Storm
2100 9.8 緊急
Network 		H2O.ai H2O H2O.aiのH2Oにおけるコードインジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2026-3960 2026-05-21 10:52 2026-04-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
311281 9.8 CRITICAL
Network 		ptome_project ptome A vulnerability was found in frioux ptome. It has been rated as critical. This issue affects some unknown processing. The manipulation leads to sql injection. The patch is named 26829bba67858ca0bd4ce… - CVE-2010-10009 2024-11-21 10:13 2023-01-19 Show GitHub Exploit DB Packet Storm
311282 9.8 CRITICAL
Network 		click-reminder_project click-reminder ** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in lierdakil click-reminder. It has been rated as critical. This issue affects the function db_query of the file src/backend/include/BaseActi… - CVE-2010-10007 2024-11-21 10:13 2023-01-18 Show GitHub Exploit DB Packet Storm
311283 7.5 HIGH
Network 		jopenid_project jopenid A vulnerability, which was classified as problematic, was found in michaelliao jopenid. Affected is the function getAuthentication of the file JOpenId/src/org/expressme/openid/OpenIdManager.java. The… - CVE-2010-10006 2024-11-21 10:13 2023-01-18 Show GitHub Exploit DB Packet Storm
311284 5.4 MEDIUM
Network 		simplesamlphp simplesamlphp-module-openidprovider ** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in simplesamlphp simplesamlphp-module-openidprovider up to 0.8.x. It has been declared as problematic. Affected by this vulnerability is an u… - CVE-2010-10008 2024-11-21 10:13 2023-01-17 Show GitHub Exploit DB Packet Storm
311285 9.8 CRITICAL
Network 		titlelink_project titlelink A vulnerability classified as critical was found in gesellix titlelink on Joomla. Affected by this vulnerability is an unknown functionality of the file plugin_content_title.php. The manipulation of … - CVE-2010-10003 2024-11-21 10:13 2023-01-4 Show GitHub Exploit DB Packet Storm
311286 6.1 MEDIUM
Network 		simplesamlphp simplesamlphp-module-openid ** UNSUPPORTED WHEN ASSIGNED ** A vulnerability classified as problematic has been found in SimpleSAMLphp simplesamlphp-module-openid. Affected is an unknown function of the file templates/consumer.p… - CVE-2010-10002 2024-11-21 10:13 2023-01-2 Show GitHub Exploit DB Packet Storm
311287 5.5 MEDIUM
Local 		shemes grabit A vulnerability, which was classified as problematic, was found in Shemes GrabIt up to 1.7.2 Beta 4. This affects the component NZB Date Parser. The manipulation of the argument date with the input 1… CWE-404
 Improper Resource Shutdown or Release 		CVE-2010-10001 2024-11-21 10:13 2022-03-29 Show GitHub Exploit DB Packet Storm
311288 - aircrack-ng
gentoo 		aircrack-ng
linux 		Multiple heap-based buffer overflows in Aircrack-ng before 1.1 allow remote attackers to cause a denial of service (crash) and execute arbitrary code via a (1) large length value in an EAPOL packet o… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2010-1159 2024-11-21 10:13 2013-10-29 Show GitHub Exploit DB Packet Storm
311289 - redhat satellite Red Hat Network (RHN) Satellite 5.3 and 5.4 exposes a dangerous, obsolete XML-RPC API, which allows remote authenticated users to access arbitrary files and cause a denial of service (failed yum oper… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2010-1171 2024-11-21 10:13 2011-04-19 Show GitHub Exploit DB Packet Storm
311290 - microsoft internet_explorer Microsoft Internet Explorer 6 and 7 on Windows XP and Vista does not prevent script from simulating user interaction with the AutoComplete feature, which allows remote attackers to obtain sensitive f… CWE-200
Information Exposure 		CVE-2010-0808 2024-11-21 10:13 2010-10-14 Show GitHub Exploit DB Packet Storm