Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 13, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252821	7.5	危険	ヒューレット・パッカード	-	HP Storage Essentials における重要な情報を取得される脆弱性	CWE-noinfo 情報不足	CVE-2010-4029	2012-03-27 18:42	2010-10-26	Show	GitHub Exploit DB Packet Storm

252822	7.5	危険	ヒューレット・パッカード	-	HP LoadRunner の LoadRunner Web Tours におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2010-4028	2012-03-27 18:42	2010-10-26	Show	GitHub Exploit DB Packet Storm

252823	5.6	警告	ヒューレット・パッカード	-	HP Palm webOS のカメラアプリケーションにおける任意のファイルを上書される脆弱性	CWE-noinfo 情報不足	CVE-2010-4027	2012-03-27 18:42	2010-10-26	Show	GitHub Exploit DB Packet Storm

252824	6.2	警告	ヒューレット・パッカード	-	HP Palm webOS のサービス API における権限を取得される脆弱性	CWE-noinfo 情報不足	CVE-2010-4026	2012-03-27 18:42	2010-10-26	Show	GitHub Exploit DB Packet Storm

252825	9.3	危険	ヒューレット・パッカード	-	HP Palm webOS の Doc Viewer における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2010-4025	2012-03-27 18:42	2010-10-26	Show	GitHub Exploit DB Packet Storm

252826	6.8	警告	ヒューレット・パッカード	-	HP Insight Control Power Management におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2010-4024	2012-03-27 18:42	2010-10-25	Show	GitHub Exploit DB Packet Storm

252827	4.3	警告	ヒューレット・パッカード	-	HP Insight Control Power Management におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4023	2012-03-27 18:42	2010-10-25	Show	GitHub Exploit DB Packet Storm

252828	6.2	警告	アップル	-	Apple の iOS におけるパスワードロックを回避される脆弱性	CWE-362 競合状態	CVE-2010-4012	2012-03-27 18:42	2010-12-8	Show	GitHub Exploit DB Packet Storm

252829	5	警告	オラクル	-	Oracle Mojarra における View State を変更される脆弱性	CWE-310 暗号の問題	CVE-2010-4007	2012-03-27 18:42	2010-10-20	Show	GitHub Exploit DB Packet Storm

252830	7.5	危険	wsnlinks	-	WSN Links の search.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4006	2012-03-27 18:42	2010-11-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
31	7.0	HIGH Local	-	-	A race condition was found in the abrt-dbus D-Bus service's ChownProblemDir method. ChownProblemDir opens the dump directory with DD_OPEN_READONLY and calls dd_chown to change ownership of all files … New	CWE-362 Race Condition	CVE-2026-54229	2026-06-13 12:16	2026-06-13	Show	GitHub Exploit DB Packet Storm

32	7.8	HIGH Local	-	-	A time-of-check time-of-use (TOCTOU) race condition was found in the abrt-dbus D-Bus service's SetElement method. Between dump directory creation and post-create event execution, any local user can c… New	CWE-367 Time-of-check Time-of-use (TOCTOU) Race Condition	CVE-2026-54228	2026-06-13 12:16	2026-06-13	Show	GitHub Exploit DB Packet Storm

33	-		-	-	Quest Bot is an opensource modern Discord Bot built for moderation, utilities and support. Prior to version 1.0.5, the latest release suppresses mentions in several moderation commands, but /unban an… New	CWE-116 Improper Encoding or Escaping of Output	CVE-2026-47188	2026-06-13 12:16	2026-06-12	Show	GitHub Exploit DB Packet Storm

34	-		-	-	Quest Bot is an opensource modern Discord Bot built for moderation, utilities and support. Prior to version 1.0.4, several moderation commands echo user-controlled reason text in public bot replies w… New	CWE-116 Improper Encoding or Escaping of Output	CVE-2026-47175	2026-06-13 12:16	2026-06-12	Show	GitHub Exploit DB Packet Storm

35	-		-	-	tmp is a temporary file and directory creator for node.js. Prior to 0.2.6, the tmp npm package contains a path traversal vulnerability that allows escaping the intended temporary directory when untru… New	CWE-22 Path Traversal	CVE-2026-44705	2026-06-13 12:16	2026-06-12	Show	GitHub Exploit DB Packet Storm

36	8.6	HIGH Network	axios	axios	Axios is a promise based HTTP client for the browser and Node.js. Prior to 0.32.0 and 1.16.0, Axios does not normalise IPv4-mapped IPv6 addresses. When NO_PROXY lists an IPv4 address such as 127.0.0.… New	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-44492	2026-06-13 12:16	2026-06-12	Show	GitHub Exploit DB Packet Storm

37	7.5	HIGH Network	axios	axios	Axios is a promise based HTTP client for the browser and Node.js. Prior to 0.32.0 and 1.16.0, Axios’ Node.js HTTP adapter can leak proxy credentials to a redirect target in affected versions. When a … New	CWE-200 Information Exposure	CVE-2026-44486	2026-06-13 12:16	2026-06-12	Show	GitHub Exploit DB Packet Storm

38	4.9	MEDIUM Network	-	-	The LWS Optimize – All-in-One Speed Booster & Cache Tools plugin for WordPress is vulnerable to Arbitrary File Read in versions up to, and including, 3.3.19. This is due to the combine_current_css() … New	CWE-22 Path Traversal	CVE-2026-12089	2026-06-13 12:16	2026-06-13	Show	GitHub Exploit DB Packet Storm

39	8.8	HIGH Network	vim	vim	Vim is an open source, command line text editor. Prior to version 9.2.0495, a Vimscript code injection vulnerability exists in s:NetrwBookHistSave() in the netrw plugin (runtime/pack/dist/opt/netrw/a… New	CWE-74 CWE-94 Injection Code Injection	CVE-2026-47162	2026-06-13 10:04	2026-06-12	Show	GitHub Exploit DB Packet Storm

40	7.5	HIGH Network	apache	cxf	There is no restriction on the amount of attachment headers that a message can contain when being deserialized by Apache CXF, which can lead to uncontrolled resource consumption or a denial of servic… New	CWE-400 Uncontrolled Resource Consumption	CVE-2026-50645	2026-06-13 10:00	2026-06-12	Show	GitHub Exploit DB Packet Storm