Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 18, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2421	5.5	警告 Local		-	アップルのmacOSにおける境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2025-46280	2026-05-29 11:18	2026-05-26	Show	GitHub Exploit DB Packet Storm

2422	7	重要 Local		-	アップルのmacOSにおける競合状態に関する脆弱性	CWE-362 競合状態	CVE-2025-46284	2026-05-29 11:18	2026-05-26	Show	GitHub Exploit DB Packet Storm

2423	5.5	警告 Local		-	アップルのmacOSにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2025-46307	2026-05-29 11:18	2026-05-26	Show	GitHub Exploit DB Packet Storm

2424	7.5	重要 Network	WSO2	WSO2 Universal Gateway WSO2 API Control Plane WSO2 API Manager WSO2 Traffic Manager	WSO2のWSO2 API Control Plane等の複数製品におけるインジェクションに関する脆弱性	CWE-74 インジェクション	CVE-2025-8154	2026-05-29 11:18	2026-05-11	Show	GitHub Exploit DB Packet Storm

2425	8.8	重要 Network	WSO2	WSO2 Universal Gateway WSO2 API Control Plane WSO2 API Manager WSO2 Traffic Manager	WSO2のWSO2 API Control Plane等の複数製品におけるパーミッションの不適切な保持に関する脆弱性	CWE-281 パーミッションの不適切な保持	CVE-2025-8325	2026-05-29 11:18	2026-05-11	Show	GitHub Exploit DB Packet Storm

2426	7.2	重要 Network	WSO2	WSO2 Identity Server	WSO2のWSO2 Identity Serverにおける複数の脆弱性	CWE-284 CWE-863	CVE-2025-9973	2026-05-29 11:18	2026-05-11	Show	GitHub Exploit DB Packet Storm

2427	6.5	警告 Network	GitLab.org	GitLab	GitLab.orgのGitLabにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-1402	2026-05-29 11:18	2026-05-27	Show	GitHub Exploit DB Packet Storm

2428	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける再帰制御に関する脆弱性	CWE-674 不適切な再帰制御	CVE-2026-23292	2026-05-29 11:18	2026-03-25	Show	GitHub Exploit DB Packet Storm

2429	9.8	緊急 Network	マイクロソフト	Microsoft Power Pages	Microsoft Power Pages Remote Code Execution Vulnerability	CWE-77 コマンドインジェクション	CVE-2026-23652	2026-05-29 11:18	2026-05-22	Show	GitHub Exploit DB Packet Storm

2430	7.1	重要 Network	lfprojects	mlflow	lfprojectsのmlflowにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-2393	2026-05-29 11:18	2026-05-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 18, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
311491	-	pecl-php	alternative_php_cache	Cross-site scripting (XSS) vulnerability in apc.php in the Alternative PHP Cache (APC) extension before 3.1.4 for PHP allows remote attackers to inject arbitrary web script or HTML via unspecified ve…	CWE-79 Cross-site Scripting	CVE-2010-3294	2024-11-21 10:18	2010-09-25	Show	GitHub Exploit DB Packet Storm

311492	-	hp	openview_network_node_manager	Unspecified vulnerability in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allows remote attackers to cause a denial of service via unknown vectors.	NVD-CWE-noinfo	CVE-2010-3285	2024-11-21 10:18	2010-09-25	Show	GitHub Exploit DB Packet Storm

311493	-	hp	system_management_homepage	Unspecified vulnerability in HP System Management Homepage (SMH) before 6.2 allows remote attackers to obtain sensitive information via unknown vectors.	CWE-200 NVD-CWE-noinfo Information Exposure	CVE-2010-3284	2024-11-21 10:18	2010-09-25	Show	GitHub Exploit DB Packet Storm

311494	-	hp	system_management_homepage	Open redirect vulnerability in HP System Management Homepage (SMH) before 6.2 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.	CWE-20 Improper Input Validation	CVE-2010-3283	2024-11-21 10:18	2010-09-25	Show	GitHub Exploit DB Packet Storm

311495	-	rsa	authentication_agent_for_web	Directory traversal vulnerability in RSA Authentication Agent 7.0 before P2 for Web allows remote attackers to read unspecified data via unknown vectors.	CWE-22 Path Traversal	CVE-2010-3261	2024-11-21 10:18	2010-09-25	Show	GitHub Exploit DB Packet Storm

311496	-	alcatel-lucent	omnivista_4760_server	Stack-based buffer overflow in the HTTP proxy service in Alcatel-Lucent OmniVista 4760 server before R5.1.06.03.c_Patch3 allows remote attackers to execute arbitrary code or cause a denial of service…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2010-3281	2024-11-21 10:18	2010-09-24	Show	GitHub Exploit DB Packet Storm

311497	-	alcatel-lucent	ccagent omnitouch_contact_center	The CCAgent option 9.0.8.4 and earlier in the management server (aka TSA) component in Alcatel-Lucent OmniTouch Contact Center Standard Edition relies on client-side authorization checking, and uncon…	CWE-200 Information Exposure	CVE-2010-3280	2024-11-21 10:18	2010-09-24	Show	GitHub Exploit DB Packet Storm

311498	-	alcatel-lucent	ccagent omnitouch_contact_center	The default configuration of the CCAgent option before 9.0.8.4 in the management server (aka TSA) component in Alcatel-Lucent OmniTouch Contact Center Standard Edition enables maintenance access, whi…	CWE-16 Configuration	CVE-2010-3279	2024-11-21 10:18	2010-09-24	Show	GitHub Exploit DB Packet Storm

311499	-	digitalworkroom	cms_digital_workroom	Cross-site scripting (XSS) vulnerability in netautor/napro4/home/login2.php in CMS Digital Workroom (formerly Netautor Professional) 5.5.0 allows remote attackers to inject arbitrary web script or HT…	CWE-79 Cross-site Scripting	CVE-2010-3489	2024-11-21 10:18	2010-09-23	Show	GitHub Exploit DB Packet Storm

311500	-	houbysoft	quickshare	Directory traversal vulnerability in QuickShare 1.0 allows remote attackers to read arbitrary files via a ... (triple dot) in the URL.	CWE-22 Path Traversal	CVE-2010-3488	2024-11-21 10:18	2010-09-23	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed