Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 9, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2201 6.7 警告
Local 		フォーティネット FortiAP
FortiAP-W2 		フォーティネットのFortiAP-W2等の複数製品におけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2025-53870 2026-05-18 12:08 2026-05-12 Show GitHub Exploit DB Packet Storm
2202 5.3 警告
Network 		strapi strapi strapiにおける過度な認証試行の不適切な制限に関する脆弱性 CWE-307
過度な認証試行の不適切な制限 		CVE-2025-64526 2026-05-18 12:08 2026-05-14 Show GitHub Exploit DB Packet Storm
2203 5.3 警告
Network 		フォーティネット FortiManager
FortiAnalyzer 		フォーティネットのFortiAnalyzer等の複数製品における潜在的に危険な関数の使用に関する脆弱性 CWE-676
潜在的に危険な関数の使用 		CVE-2025-67604 2026-05-18 12:08 2026-05-12 Show GitHub Exploit DB Packet Storm
2204 7.5 重要
Network 		GitLab.org GitLab GitLab.orgのGitLabにおける信頼できないデータのデシリアライゼーションに関する脆弱性 CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2026-1184 2026-05-18 12:08 2026-05-14 Show GitHub Exploit DB Packet Storm
2205 8.1 重要
Network 		GitLab.org GitLab GitLab.orgのGitLabにおけるビジネスロジックエラーに関する脆弱性 CWE-840
ビジネスロジックエラー 		CVE-2026-1322 2026-05-18 12:08 2026-05-14 Show GitHub Exploit DB Packet Storm
2206 4.3 警告
Network 		GitLab.org GitLab GitLab.orgのGitLabにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-1338 2026-05-18 12:08 2026-05-14 Show GitHub Exploit DB Packet Storm
2207 7.5 重要
Network 		GitLab.org GitLab GitLab.orgのGitLabにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-1659 2026-05-18 12:08 2026-05-14 Show GitHub Exploit DB Packet Storm
2208 10 緊急
Network 		シスコシステムズ Cisco SD-WAN vSmart Controller シスコシステムズのCisco Catalyst SD-WAN Manager等の複数製品における認証に関する脆弱性 CWE-287
不適切な認証 		CVE-2026-20182 2026-05-18 12:08 2026-05-14 Show GitHub Exploit DB Packet Storm
2209 7.8 重要
Local 		インテル Intel QuickAssist Technology インテルのIntel QuickAssist Technologyにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2026-20714 2026-05-18 12:08 2026-05-12 Show GitHub Exploit DB Packet Storm
2210 6.6 警告
Local 		インテル Intel QuickAssist Technology インテルのIntel QuickAssist Technologyにおける入力確認に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2026-20717 2026-05-18 12:08 2026-05-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
345511 - ibm websphere_application_server The (1) JAX-RPC WS-Security 1.0 and (2) JAX-WS runtime implementations in IBM WebSphere Application Server (WAS) 6.0 before 6.0.2.41, 6.1 before 6.1.0.31, and 7.0 before 7.0.0.11 do not properly hand… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2010-0774 2017-08-17 10:32 2010-05-18 Show GitHub Exploit DB Packet Storm
345512 - ibm websphere_application_server Unspecified vulnerability in IBM WebSphere Application Server (WAS) 6.0 before 6.0.2.41, 6.1 before 6.1.0.31, and 7.0 before 7.0.0.11 allows remote attackers to cause a denial of service (memory cons… NVD-CWE-noinfo
CWE-399
 Resource Management Errors 		CVE-2010-0775 2017-08-17 10:32 2010-05-18 Show GitHub Exploit DB Packet Storm
345513 - ibm websphere_application_server The Web Container in IBM WebSphere Application Server (WAS) 6.0 before 6.0.2.43, 6.1 before 6.1.0.31, and 7.0 before 7.0.0.11 does not properly handle chunked transfer encoding during a call to respo… CWE-20
 Improper Input Validation  		CVE-2010-0776 2017-08-17 10:32 2010-05-18 Show GitHub Exploit DB Packet Storm
345514 - ibm websphere_application_server The Web Container in IBM WebSphere Application Server (WAS) 6.0 before 6.0.2.43, 6.1 before 6.1.0.31, and 7.0 before 7.0.0.11 does not properly handle long filenames and consequently sends an incorre… CWE-20
 Improper Input Validation  		CVE-2010-0777 2017-08-17 10:32 2010-05-18 Show GitHub Exploit DB Packet Storm
345515 - fuse fuse fusermount in FUSE before 2.7.5, and 2.8.x before 2.8.2, allows local users to unmount an arbitrary FUSE filesystem share via a symlink attack on a mountpoint. CWE-59
Link Following 		CVE-2010-0789 2017-08-17 10:32 2010-03-3 Show GitHub Exploit DB Packet Storm
345516 - harmistechnology com_jeeventcalendar SQL injection vulnerability in the JE Event Calendars (com_jeeventcalendar) component 1.0 for Joomla! allows remote attackers to execute arbitrary SQL commands via the event_id parameter in an event … CWE-89
SQL Injection 		CVE-2010-0795 2017-08-17 10:32 2010-03-3 Show GitHub Exploit DB Packet Storm
345517 - harmistechnology com_jeeventcalendar SQL injection vulnerability in the JE Quiz (com_jequizmanagement) component 1.b01 for Joomla! allows remote attackers to execute arbitrary SQL commands via the eid parameter in a question action to i… CWE-89
SQL Injection 		CVE-2010-0796 2017-08-17 10:32 2010-03-3 Show GitHub Exploit DB Packet Storm
345518 - joomservices com_dms SQL injection vulnerability in the Ossolution Team Documents Seller (aka DMS) (com_dms) component 2.5.1 for Joomla! allows remote attackers to execute arbitrary SQL commands via the category_id param… CWE-89
SQL Injection 		CVE-2010-0800 2017-08-17 10:32 2010-03-3 Show GitHub Exploit DB Packet Storm
345519 - jvideodirect com_jvideodirect SQL injection vulnerability in the jVideoDirect (com_jvideodirect) component 1.1 RC3b for Joomla! allows remote attackers to execute arbitrary SQL commands via the v parameter to index.php. CWE-89
SQL Injection 		CVE-2010-0803 2017-08-17 10:32 2010-03-3 Show GitHub Exploit DB Packet Storm
345520 - gnu emacs lib-src/movemail.c in movemail in emacs 22 and 23 allows local users to read, modify, or delete arbitrary mailbox files via a symlink attack, related to improper file-permission checks. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2010-0825 2017-08-17 10:32 2010-04-6 Show GitHub Exploit DB Packet Storm