Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 22, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2181	5.3	警告 Network	Django Software Foundation	Django	Django Software FoundationのDjangoにおける要素の欠如による不完全な比較に関する脆弱性	CWE-1023 要素の欠如による不完全な比較	CVE-2026-48587	2026-06-8 12:31	2026-06-3	Show	GitHub Exploit DB Packet Storm

2182	9.8	緊急 Network	freedesktop.org	libinput	freedesktop.orgのlibinputにおけるCRLF インジェクションの脆弱性	CWE-93 CRLF インジェクション	CVE-2026-50292	2026-06-8 12:31	2026-06-4	Show	GitHub Exploit DB Packet Storm

2183	7.8	重要 Local	notepad-plus-plus	notepad++	notepad-plus-plusのnotepad++におけるスタックベースのバッファオーバーフローの脆弱性	CWE-121 スタックオーバーフロー	CVE-2026-5525	2026-06-8 12:31	2026-04-10	Show	GitHub Exploit DB Packet Storm

2184	4.3	警告 Network	Django Software Foundation	Django	Django Software FoundationのDjangoにおけるデジタル署名の検証に関する脆弱性	CWE-347 デジタル署名の不適切な検証	CVE-2026-6873	2026-06-8 12:30	2026-06-3	Show	GitHub Exploit DB Packet Storm

2185	3.1	低 Network	Django Software Foundation	Django	Django Software FoundationのDjangoにおける重要な情報の平文での送信に関する脆弱性	CWE-319 重要な情報の平文での送信	CVE-2026-7666	2026-06-8 12:30	2026-06-3	Show	GitHub Exploit DB Packet Storm

2186	5.5	警告 Local	日本ナショナルインスツルメンツ	NI-PAL	日本ナショナルインスツルメンツのNI-PALにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-8035	2026-06-8 12:30	2026-06-2	Show	GitHub Exploit DB Packet Storm

2187	7.8	重要 Local	日本ナショナルインスツルメンツ	NI-PAL	日本ナショナルインスツルメンツのNI-PALにおける入力で指定されたインデックス、位置、またはオフセットの不適切な検証に関する脆弱性	CWE-1285 入力で指定されたインデックス、位置、またはオフセットの不適切な検証	CVE-2026-8036	2026-06-8 12:30	2026-06-2	Show	GitHub Exploit DB Packet Storm

2188	9.8	緊急 Network	IBM	IBM Aspera High-Speed Transfer Server IBM Aspera High-Speed Transfer Endpoint	IBMのIBM Aspera High-Speed Transfer Endpoint等の複数製品におけるヒープベースのバッファオーバーフローの脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-8175	2026-06-8 12:30	2026-05-27	Show	GitHub Exploit DB Packet Storm

2189	8.8	重要 Network	IBM	IBM Aspera High-Speed Transfer Server IBM Aspera High-Speed Transfer Endpoint	IBMのIBM Aspera High-Speed Transfer Endpoint等の複数製品におけるスタックベースのバッファオーバーフローの脆弱性	CWE-121 スタックオーバーフロー	CVE-2026-8179	2026-06-8 12:30	2026-05-27	Show	GitHub Exploit DB Packet Storm

2190	7.5	重要 Network	IBM	IBM Aspera High-Speed Transfer Server IBM Aspera High-Speed Transfer Endpoint	IBMのIBM Aspera High-Speed Transfer Endpoint等の複数製品におけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-8180	2026-06-8 12:30	2026-05-27	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 22, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
310441	6.1	MEDIUM Network	vanillaforums	vanilla_forums	It was found in vanilla forums before 2.0.10 a potential linkbait vulnerability in dispatcher.	-	CVE-2010-4266	2024-11-21 10:20	2021-06-22	Show	GitHub Exploit DB Packet Storm

310442	6.1	MEDIUM Network	vanillaforums	vanilla_forums	It was found in vanilla forums before 2.0.10 a cross-site scripting vulnerability where a filename could contain arbitrary code to execute on the client side.	-	CVE-2010-4264	2024-11-21 10:20	2021-06-22	Show	GitHub Exploit DB Packet Storm

310443	5.5	MEDIUM Local	oracle fedoraproject	mysql-gui-tools fedora	mysql-gui-tools (mysql-query-browser and mysql-admin) before 5.0r14+openSUSE-2.3 exposes the password of a user connected to the MySQL server in clear text form via the list of running processes.	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2010-4177	2024-11-21 10:20	2019-11-13	Show	GitHub Exploit DB Packet Storm

310444	5.5	MEDIUM Local	oracle fedoraproject	mysql-gui-tools fedora	MySQL-GUI-tools (mysql-administrator) leaks passwords into process list after with launch of mysql text console	CWE-522 Insufficiently Protected Credentials	CVE-2010-4178	2024-11-21 10:20	2019-11-7	Show	GitHub Exploit DB Packet Storm

310445	5.9	MEDIUM Network	mercurial	mercurial	Mercurial before 1.6.4 fails to verify the Common Name field of SSL certificates which allows remote attackers who acquire a certificate signed by a Certificate Authority to perform a man-in-the-midd…	CWE-295 Improper Certificate Validation	CVE-2010-4237	2024-11-21 10:20	2019-10-30	Show	GitHub Exploit DB Packet Storm

310446	6.1	MEDIUM Network	translatehouse	pootle	pootle 2.0.5 has XSS via 'match_names' parameter	CWE-79 Cross-site Scripting	CVE-2010-4245	2024-11-21 10:20	2019-10-29	Show	GitHub Exploit DB Packet Storm

310447	8.8	HIGH Network	tiki	tikiwiki_cms\/groupware	Tiki Wiki CMS Groupware 5.2 has CSRF	CWE-352 Origin Validation Error	CVE-2010-4241	2024-11-21 10:20	2019-10-29	Show	GitHub Exploit DB Packet Storm

310448	6.1	MEDIUM Network	tiki	tikiwiki_cms\/groupware	Tiki Wiki CMS Groupware 5.2 has XSS	CWE-79 Cross-site Scripting	CVE-2010-4240	2024-11-21 10:20	2019-10-29	Show	GitHub Exploit DB Packet Storm

310449	9.8	CRITICAL Network	tiki	tikiwiki_cms\/groupware	Tiki Wiki CMS Groupware 5.2 has Local File Inclusion	CWE-20 Improper Input Validation	CVE-2010-4239	2024-11-21 10:20	2019-10-29	Show	GitHub Exploit DB Packet Storm

310450	8.8	HIGH Network	novell	iprint	Remote attackers can use the iPrint web-browser ActiveX plugin in Novell iPrint Client before 5.42 for Windows XP/Vista/Win7 to execute code by overflowing the "name" parameter.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2010-4314	2024-11-21 10:20	2017-03-11	Show	GitHub Exploit DB Packet Storm