Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 19, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2591	9.8	緊急 Network	Apache Software Foundation	Apache CXF	Apache Software FoundationのApache CXFにおけるLDAP インジェクションの脆弱性	CWE-90 LDAP インジェクション	CVE-2026-44930	2026-05-28 14:40	2026-05-22	Show	GitHub Exploit DB Packet Storm

2592	7.8	重要 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2026-46300	2026-05-28 14:40	2026-05-23	Show	GitHub Exploit DB Packet Storm

2593	5.3	警告 Network	Mattermost, Inc.	Mattermost Server	Mattermost, Inc.のMattermost Serverにおける競合状態に関する脆弱性	CWE-362 競合状態	CVE-2026-4635	2026-05-28 14:39	2026-05-22	Show	GitHub Exploit DB Packet Storm

2594	4.3	警告 Network	Mattermost, Inc.	Mattermost Server	Mattermost, Inc.のMattermost Serverにおける指定されたタイプの入力に対する不適切な検証に関する脆弱性	CWE-1287 指定されたタイプの入力に対する不適切な検証	CVE-2026-4646	2026-05-28 14:39	2026-05-22	Show	GitHub Exploit DB Packet Storm

2595	8.1	重要 Network	Ruby-lang.org	Ruby	Ruby-lang.orgのRubyにおける競合状態に関する脆弱性	CWE-362 競合状態	CVE-2026-46727	2026-05-28 14:39	2026-05-22	Show	GitHub Exploit DB Packet Storm

2596	8.8	重要 Network	litellm	litellm	LiteLLMにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-47101	2026-05-28 14:39	2026-05-21	Show	GitHub Exploit DB Packet Storm

2597	8.8	重要 Network	litellm	litellm	LiteLLMにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-47102	2026-05-28 14:39	2026-05-21	Show	GitHub Exploit DB Packet Storm

2598	9.8	緊急 Network	Joomla!	Joomla!	Joomla!におけるアクセス制御に関する脆弱性	CWE-284 CWE-noinfo	CVE-2026-48898	2026-05-28 14:39	2026-05-26	Show	GitHub Exploit DB Packet Storm

2599	9.8	緊急 Network	Joomla!	Joomla!	Joomla!におけるアクセス制御に関する脆弱性	CWE-284 CWE-noinfo	CVE-2026-48899	2026-05-28 14:39	2026-05-26	Show	GitHub Exploit DB Packet Storm

2600	4.3	警告 Network	Joomla!	Joomla!	Joomla!におけるアクセス制御に関する脆弱性	CWE-284 CWE-noinfo	CVE-2026-48900	2026-05-28 14:39	2026-05-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 19, 2026, 4:01 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
311201	-	apereo	phpcas	PGTStorage/pgt-file.php in phpCAS before 1.1.3, when proxy mode is enabled, allows local users to overwrite arbitrary files via a symlink attack on an unspecified file.	CWE-59 Link Following	CVE-2010-3691	2024-11-21 10:19	2010-10-8	Show	GitHub Exploit DB Packet Storm

311202	-	apereo	phpcas	Multiple cross-site scripting (XSS) vulnerabilities in phpCAS before 1.1.3, when proxy mode is enabled, allow remote attackers to inject arbitrary web script or HTML via (1) a crafted Proxy Granting …	CWE-79 Cross-site Scripting	CVE-2010-3690	2024-11-21 10:19	2010-10-8	Show	GitHub Exploit DB Packet Storm

311203	-	alvaro_herrera	pl\/php	The PL/php add-on 1.4 and earlier for PostgreSQL does not properly protect script execution by a different SQL user identity within the same session, which allows remote authenticated users to gain p…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2010-3781	2024-11-21 10:19	2010-10-7	Show	GitHub Exploit DB Packet Storm

311204	-	dovecot	dovecot	Dovecot 1.2.x before 1.2.15 allows remote authenticated users to cause a denial of service (master process outage) by simultaneously disconnecting many (1) IMAP or (2) POP3 sessions.	NVD-CWE-Other	CVE-2010-3780	2024-11-21 10:19	2010-10-7	Show	GitHub Exploit DB Packet Storm

311205	-	dovecot	dovecot	Dovecot 1.2.x before 1.2.15 and 2.0.x before 2.0.beta2 grants the admin permission to the owner of each mailbox in a non-public namespace, which might allow remote authenticated users to bypass inten…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2010-3779	2024-11-21 10:19	2010-10-7	Show	GitHub Exploit DB Packet Storm

311206	-	dovecot	dovecot	plugins/acl/acl-backend-vfile.c in Dovecot 1.2.x before 1.2.15 and 2.0.x before 2.0.5 interprets an ACL entry as a directive to add to the permissions granted by another ACL entry, instead of a direc…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2010-3707	2024-11-21 10:19	2010-10-7	Show	GitHub Exploit DB Packet Storm

311207	-	dovecot	dovecot	plugins/acl/acl-backend-vfile.c in Dovecot 1.2.x before 1.2.15 and 2.0.x before 2.0.5 interprets an ACL entry as a directive to add to the permissions granted by another ACL entry, instead of a direc…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2010-3706	2024-11-21 10:19	2010-10-7	Show	GitHub Exploit DB Packet Storm

311208	-	adobe	acrobat acrobat_reader	Adobe Reader and Acrobat 9.x before 9.4, and 8.x before 8.2.5 on Windows and Mac OS X, allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vecto…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2010-3658	2024-11-21 10:19	2010-10-7	Show	GitHub Exploit DB Packet Storm

311209	-	adobe	acrobat acrobat_reader	Unspecified vulnerability in Adobe Reader and Acrobat 9.x before 9.4, and 8.x before 8.2.5 on Windows and Mac OS X, allows attackers to cause a denial of service via unknown vectors, a different vuln…	NVD-CWE-noinfo	CVE-2010-3657	2024-11-21 10:19	2010-10-7	Show	GitHub Exploit DB Packet Storm

311210	-	adobe	acrobat acrobat_reader	Unspecified vulnerability in Adobe Reader and Acrobat 9.x before 9.4, and 8.x before 8.2.5 on Windows and Mac OS X, allows attackers to cause a denial of service via unknown vectors, a different vuln…	NVD-CWE-noinfo	CVE-2010-3656	2024-11-21 10:19	2010-10-7	Show	GitHub Exploit DB Packet Storm