Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 11, 2026, 6:13 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2211	7.8	重要 Local	マイクロソフト	Microsoft Malware Protection Engine	Microsoft Defender の特権の昇格の脆弱性	CWE-59 リンク解釈の問題	CVE-2026-41091	2026-05-22 10:54	2026-05-20	Show	GitHub Exploit DB Packet Storm

2212	7.8	重要 Local	マイクロソフト	Windows Admin Center	Azure potal 上の Windows Admin Center の特権昇格の脆弱性	CWE-59 リンク解釈の問題	CVE-2026-42834	2026-05-22 10:54	2026-05-20	Show	GitHub Exploit DB Packet Storm

2213	9.8	緊急 Network	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-43067	2026-05-22 10:54	2026-05-5	Show	GitHub Exploit DB Packet Storm

2214	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける有効期限後のメモリの解放の欠如に関する脆弱性	CWE-401 有効期限後のメモリの解放の欠如	CVE-2026-43068	2026-05-22 10:54	2026-05-5	Show	GitHub Exploit DB Packet Storm

2215	7.8	重要 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける有効期限後のメモリの解放の欠如に関する脆弱性	CWE-401 有効期限後のメモリの解放の欠如	CVE-2026-43074	2026-05-22 10:54	2026-05-6	Show	GitHub Exploit DB Packet Storm

2216	7.8	重要 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2026-43075	2026-05-22 10:54	2026-05-6	Show	GitHub Exploit DB Packet Storm

2217	7.8	重要 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-43076	2026-05-22 10:54	2026-05-6	Show	GitHub Exploit DB Packet Storm

2218	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-43077	2026-05-22 10:54	2026-05-6	Show	GitHub Exploit DB Packet Storm

2219	7.8	重要 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2026-43078	2026-05-22 10:54	2026-05-6	Show	GitHub Exploit DB Packet Storm

2220	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux KernelにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-43424	2026-05-22 10:54	2026-05-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 11, 2026, 5:13 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
311361	-	tomatocms	tomatocms	Cross-site request forgery (CSRF) vulnerability in TomatoCMS 2.0.6 allows remote attackers to hijack the authentication of administrators for requests that change the administrative password.	CWE-352 Origin Validation Error	CVE-2010-2282	2024-11-21 10:16	2010-06-15	Show	GitHub Exploit DB Packet Storm

311362	-	tomatocms	tomatocms	Multiple cross-site scripting (XSS) vulnerabilities in index.php in TomatoCMS 2.0.6 allow remote attackers to inject arbitrary web script or HTML via the (1) keyword or (2) bannerid parameter in conj…	CWE-79 Cross-site Scripting	CVE-2010-2281	2024-11-21 10:16	2010-06-15	Show	GitHub Exploit DB Packet Storm

311363	-	ibm	lotus_connections	Open redirect vulnerability in the Mobile component in IBM Lotus Connections 2.5.x before 2.5.0.2 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via uns…	NVD-CWE-Other	CVE-2010-2280	2024-11-21 10:16	2010-06-15	Show	GitHub Exploit DB Packet Storm

311364	-	ibm	lotus_connections	The Top Updates implementation in the Homepage component in IBM Lotus Connections 2.5.x before 2.5.0.2, when "forced SSL" is enabled, uses http for links, which has unspecified impact and remote atta…	NVD-CWE-Other	CVE-2010-2279	2024-11-21 10:16	2010-06-15	Show	GitHub Exploit DB Packet Storm

311365	-	ibm	lotus_connections	The bookmarklet pop-up in the Bookmarks component in IBM Lotus Connections 2.5.x before 2.5.0.2 does not properly follow the "force SSL" setting, which might make it easier for remote attackers to ob…	NVD-CWE-Other	CVE-2010-2278	2024-11-21 10:16	2010-06-15	Show	GitHub Exploit DB Packet Storm

311366	-	ibm	lotus_connections	Multiple cross-site scripting (XSS) vulnerabilities in IBM Lotus Connections 2.5.x before 2.5.0.2 allow remote attackers to inject arbitrary web script or HTML via the (1) create or (2) edit form in …	CWE-79 Cross-site Scripting	CVE-2010-2277	2024-11-21 10:16	2010-06-15	Show	GitHub Exploit DB Packet Storm

311367	-	dojotoolkit	dojo	The default configuration of the build process in Dojo 0.4.x before 0.4.4, 1.0.x before 1.0.3, 1.1.x before 1.1.2, 1.2.x before 1.2.4, 1.3.x before 1.3.3, and 1.4.x before 1.4.2 has the copyTests=tru…	CWE-16 Configuration	CVE-2010-2276	2024-11-21 10:16	2010-06-15	Show	GitHub Exploit DB Packet Storm

311368	-	dojotoolkit	dojo	Cross-site scripting (XSS) vulnerability in dijit/tests/_testCommon.js in Dojo Toolkit SDK before 1.4.2 allows remote attackers to inject arbitrary web script or HTML via the theme parameter, as demo…	CWE-79 Cross-site Scripting	CVE-2010-2275	2024-11-21 10:16	2010-06-15	Show	GitHub Exploit DB Packet Storm

311369	-	dojotoolkit	dojo	Multiple open redirect vulnerabilities in Dojo 1.0.x before 1.0.3, 1.1.x before 1.1.2, 1.2.x before 1.2.4, 1.3.x before 1.3.3, and 1.4.x before 1.4.2 allow remote attackers to redirect users to arbit…	NVD-CWE-Other	CVE-2010-2274	2024-11-21 10:16	2010-06-15	Show	GitHub Exploit DB Packet Storm

311370	-	dojotoolkit	dojo	Multiple cross-site scripting (XSS) vulnerabilities in Dojo 1.0.x before 1.0.3, 1.1.x before 1.1.2, 1.2.x before 1.2.4, 1.3.x before 1.3.3, and 1.4.x before 1.4.2 allow remote attackers to inject arb…	CWE-79 Cross-site Scripting	CVE-2010-2273	2024-11-21 10:16	2010-06-15	Show	GitHub Exploit DB Packet Storm