Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 16, 2026, 4:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2391 8.1 重要
Network 		pgAdmin Project pgAdmin 4 pgAdmin ProjectのpgAdmin 4におけるUNIX Symbolic Link のフォローに関する脆弱性 CWE-61
UNIX Symbolic Link のフォロー 		CVE-2026-7819 2026-05-28 14:38 2026-05-11 Show GitHub Exploit DB Packet Storm
2392 6.5 警告
Network 		pgAdmin Project pgAdmin 4 pgAdmin ProjectのpgAdmin 4における過度な認証試行の不適切な制限に関する脆弱性 CWE-307
過度な認証試行の不適切な制限 		CVE-2026-7820 2026-05-28 14:38 2026-05-11 Show GitHub Exploit DB Packet Storm
2393 5.3 警告
Network 		Concrete CMS Concrete CMS Concrete CMSにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-7879 2026-05-28 14:38 2026-05-21 Show GitHub Exploit DB Packet Storm
2394 4.3 警告
Network 		Concrete CMS Concrete CMS Concrete CMSにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-7881 2026-05-28 14:38 2026-05-21 Show GitHub Exploit DB Packet Storm
2395 4.3 警告
Network 		Concrete CMS Concrete CMS Concrete CMSにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2026-7882 2026-05-28 14:38 2026-05-21 Show GitHub Exploit DB Packet Storm
2396 4.3 警告
Network 		Concrete CMS Concrete CMS Concrete CMSにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-7886 2026-05-28 14:38 2026-05-21 Show GitHub Exploit DB Packet Storm
2397 6.4 警告
Network 		Concrete CMS Concrete CMS Concrete CMSにおける指定されたタイプの入力に対する不適切な検証に関する脆弱性 CWE-1287
指定されたタイプの入力に対する不適切な検証 		CVE-2026-7887 2026-05-28 14:38 2026-05-21 Show GitHub Exploit DB Packet Storm
2398 6.4 警告
Network 		Concrete CMS Concrete CMS Concrete CMSにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-7890 2026-05-28 14:38 2026-05-21 Show GitHub Exploit DB Packet Storm
2399 7.2 重要
Network 		Concrete CMS Concrete CMS Concrete CMSにおける複数の脆弱性 CWE-23
CWE-434
CWE-98
CVE-2026-8134 2026-05-28 14:37 2026-05-21 Show GitHub Exploit DB Packet Storm
2400 7.2 重要
Network 		Concrete CMS Concrete CMS Concrete CMSにおける信頼できないデータのデシリアライゼーションに関する脆弱性 CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2026-8135 2026-05-28 14:37 2026-05-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
311271 - redhat evince Array index error in the PK font parser in the dvi-backend component in Evince 2.32 and earlier allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary … CWE-20
 Improper Input Validation  		CVE-2010-2640 2024-11-21 10:17 2011-01-8 Show GitHub Exploit DB Packet Storm
311272 - ibm websphere_service_registry_and_repository IBM WebSphere Service Registry and Repository (WSRR) 7.0.0 before FP1 does not properly implement access control, which allows remote attackers to perform governance actions via unspecified API reque… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2010-2644 2024-11-21 10:17 2010-12-23 Show GitHub Exploit DB Packet Storm
311273 - microsoft windows_server_2008
windows_server_2003
windows_2003_server 		The Netlogon RPC Service in Microsoft Windows Server 2003 SP2 and Server 2008 Gold, SP2, and R2, when the domain controller role is enabled, allows remote attackers to cause a denial of service (NULL… NVD-CWE-Other
CVE-2010-2742 2024-11-21 10:17 2010-12-17 Show GitHub Exploit DB Packet Storm
311274 - realnetworks realplayer
realplayer_sp 		Integer overflow in RealNetworks RealPlayer 11.0 through 11.1, RealPlayer SP 1.0 through 1.0.1, Mac RealPlayer 11.0 through 11.1, and Linux RealPlayer 11.0.2.1744 allows remote attackers to execute a… CWE-189
Numeric Errors 		CVE-2010-2999 2024-11-21 10:17 2010-12-15 Show GitHub Exploit DB Packet Storm
311275 - realnetworks realplayer
realplayer_sp 		Use-after-free vulnerability in RealNetworks RealPlayer 11.0 through 11.1, RealPlayer SP 1.0 through 1.0.1, Mac RealPlayer 11.0 through 11.1, Linux RealPlayer 11.0.2.1744, and possibly HelixPlayer 1.… CWE-399
 Resource Management Errors 		CVE-2010-2997 2024-11-21 10:17 2010-12-15 Show GitHub Exploit DB Packet Storm
311276 - redhat enterprise_virtualization_manager
spice-activex 		Race condition in the SPICE (aka spice-activex) plug-in for Internet Explorer in Red Hat Enterprise Virtualization (RHEV) Manager before 2.2.4 allows local users to create a certain named pipe, and c… CWE-362
Race Condition 		CVE-2010-2793 2024-11-21 10:17 2010-12-9 Show GitHub Exploit DB Packet Storm
311277 - linux linux_kernel The io_submit_one function in fs/aio.c in the Linux kernel before 2.6.23 allows local users to cause a denial of service (NULL pointer dereference) via a crafted io_submit system call with an IOCB_FL… NVD-CWE-Other
CVE-2010-3066 2024-11-21 10:17 2010-12-7 Show GitHub Exploit DB Packet Storm
311278 - andy_armstrong cgi.pm
cgi-simple 		The multipart_init function in (1) CGI.pm before 3.50 and (2) Simple.pm in CGI::Simple 1.112 and earlier uses a hardcoded value of the MIME boundary string in multipart/x-mixed-replace content, which… CWE-94
Code Injection 		CVE-2010-2761 2024-11-21 10:17 2010-12-7 Show GitHub Exploit DB Packet Storm
311279 - ibm websphere_commerce IBM WebSphere Commerce Enterprise 7.0 before 7.0.0.2 allows remote attackers to read messages intended for other recipients via vectors involving access by the outbound messaging system to the RunTim… CWE-200
Information Exposure 		CVE-2010-2639 2024-11-21 10:17 2010-12-7 Show GitHub Exploit DB Packet Storm
311280 - linux
fedoraproject
suse
opensuse
debian
canonical 		linux_kernel
fedora
linux_enterprise_desktop
linux_enterprise_server
opensuse
debian_linux
ubuntu_linux 		drivers/media/video/v4l2-compat-ioctl32.c in the Video4Linux (V4L) implementation in the Linux kernel before 2.6.36 on 64-bit platforms does not validate the destination of a memory copy operation, w… CWE-20
 Improper Input Validation  		CVE-2010-2963 2024-11-21 10:17 2010-11-27 Show GitHub Exploit DB Packet Storm