Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 14, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2701 4.3 警告
Network 		シックス・アパート株式会社 Movable Type Premium (Advanced Edition)
Movable Type
Movable Type Advanced
Movable Type Premium 		Movable Typeにおける権限チェックの欠如の脆弱性 CWE-Other
その他 		CVE-2026-44392 2026-05-20 14:09 2026-05-20 Show GitHub Exploit DB Packet Storm
2702 4.3 警告
Network 		Outlook.com Microsoft Edge Chromium Microsoft Edge (Chromium ベース) for Android のスプーフィングの脆弱性 CWE-451
ユーザインターフェースにおける重要情報の誤った表示 		CVE-2026-40416 2026-05-20 13:31 2026-05-12 Show GitHub Exploit DB Packet Storm
2703 4.3 警告
Network 		Mattermost, Inc. Mattermost Server Mattermost, Inc.のMattermost Serverにおける有効期限後または解放後のリソースの操作に関する脆弱性 CWE-672
有効期限後または解放後のリソースの操作 		CVE-2026-4053 2026-05-20 13:31 2026-05-15 Show GitHub Exploit DB Packet Storm
2704 6.5 警告
Network 		Mattermost, Inc. Mattermost Server Mattermost, Inc.のMattermost Serverにおける例外的な状態のチェックに関する脆弱性 CWE-754
例外的な状態における不適切なチェック 		CVE-2026-4054 2026-05-20 13:31 2026-05-15 Show GitHub Exploit DB Packet Storm
2705 8.2 重要
Network 		TheCodingMachine Gotenberg TheCodingMachineのGotenbergにおける複数の脆弱性 CWE-184
CWE-73
CVE-2026-40893 2026-05-20 13:31 2026-05-14 Show GitHub Exploit DB Packet Storm
2706 7.8 重要
Local 		George Nachman iTerm2 George NachmanのiTerm2における信頼できない制御領域からの機能の組み込みに関する脆弱性 CWE-829
信頼性のない制御領域からの機能の組み込み 		CVE-2026-41253 2026-05-20 13:31 2026-04-18 Show GitHub Exploit DB Packet Storm
2707 8.2 重要
Network 		Quantum Nous New API Quantum NousのNew APIにおける複数の脆弱性 CWE-1188
CWE-345
CWE-863
CVE-2026-41432 2026-05-20 13:31 2026-05-8 Show GitHub Exploit DB Packet Storm
2708 8.8 重要
Network 		anyscale ray anyscaleのrayにおける複数の脆弱性 CWE-502
CWE-94
CVE-2026-41486 2026-05-20 13:31 2026-05-8 Show GitHub Exploit DB Packet Storm
2709 4.4 警告
Local 		cilium cilium ciliumにおける複数の脆弱性 CWE-200
CWE-312
CWE-312
CVE-2026-41520 2026-05-20 13:31 2026-05-8 Show GitHub Exploit DB Packet Storm
2710 7 重要
Local 		VMware VMware Fusion VMwareのVMware FusionにおけるTime-of-check Time-of-use (TOCTOU) 競合状態の脆弱性 CWE-367
Time-of-check Time-of-use (TOCTOU) 競合状態 		CVE-2026-41702 2026-05-20 13:31 2026-05-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
311721 - mantisbt mantisbt Cross-site scripting (XSS) vulnerability in manage_proj_cat_add.php in MantisBT 1.2.2 allows remote authenticated administrators to inject arbitrary web script or HTML via the name parameter in an Ad… CWE-79
Cross-site Scripting 		CVE-2010-2574 2024-11-21 10:16 2010-08-10 Show GitHub Exploit DB Packet Storm
311722 - redhat jboss_enterprise_soa_platform The default configuration of the deployment descriptor (aka web.xml) in picketlink-sts.war in (1) the security_saml quickstart, (2) the webservice_proxy_security quickstart, (3) the web-console appli… CWE-16
Configuration 		CVE-2010-2493 2024-11-21 10:16 2010-08-10 Show GitHub Exploit DB Packet Storm
311723 - redhat jboss_enterprise_service_bus
jboss_enterprise_soa_platform 		JBoss Enterprise Service Bus (ESB) before 4.7 CP02 in JBoss Enterprise SOA Platform before 5.0.2 does not properly consider the security domain with which a service is secured, which might allow remo… CWE-20
 Improper Input Validation  		CVE-2010-2474 2024-11-21 10:16 2010-08-10 Show GitHub Exploit DB Packet Storm
311724 8.1 HIGH
Network 		gnupg
fedoraproject
debian 		gnupg
fedora
debian_linux 		Use-after-free vulnerability in kbx/keybox-blob.c in GPGSM in GnuPG 2.x through 2.0.16 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a certifica… CWE-416
 Use After Free 		CVE-2010-2547 2024-11-21 10:16 2010-08-6 Show GitHub Exploit DB Packet Storm
311725 - raphael_assenat libmikmod Multiple heap-based buffer overflows in loaders/load_it.c in libmikmod, possibly 3.1.12, might allow remote attackers to execute arbitrary code via (1) crafted samples or (2) crafted instrument defin… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2010-2546 2024-11-21 10:16 2010-08-5 Show GitHub Exploit DB Packet Storm
311726 - heinz_mauelshagen lvm2 The cluster logical volume manager daemon (clvmd) in lvm2-cluster in LVM2 before 2.02.72, as used in Red Hat Global File System (GFS) and other products, does not verify client credentials upon a soc… CWE-287
Improper Authentication 		CVE-2010-2526 2024-11-21 10:16 2010-08-5 Show GitHub Exploit DB Packet Storm
311727 - moinmo moinmoin Multiple cross-site scripting (XSS) vulnerabilities in MoinMoin 1.7.3 and earlier, 1.8.x before 1.8.8, and 1.9.x before 1.9.3 allow remote attackers to inject arbitrary web script or HTML via crafted… CWE-79
Cross-site Scripting 		CVE-2010-2487 2024-11-21 10:16 2010-08-5 Show GitHub Exploit DB Packet Storm
311728 - umn
osgeo 		mapserver mapserv.c in mapserv in MapServer before 4.10.6 and 5.x before 5.6.4 does not properly restrict the use of CGI command-line arguments that were intended for debugging, which allows remote attackers t… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2010-2540 2024-11-21 10:16 2010-08-3 Show GitHub Exploit DB Packet Storm
311729 - umn
osgeo 		mapserver Buffer overflow in the msTmpFile function in maputil.c in mapserv in MapServer before 4.10.6 and 5.x before 5.6.4 allows local users to cause a denial of service via vectors involving names of tempor… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2010-2539 2024-11-21 10:16 2010-08-3 Show GitHub Exploit DB Packet Storm
311730 - adjam rekonq Multiple cross-site scripting (XSS) vulnerabilities in rekonq 0.5 and earlier allow remote attackers to inject arbitrary web script or HTML via (1) a URL associated with a nonexistent domain name, re… CWE-79
Cross-site Scripting 		CVE-2010-2536 2024-11-21 10:16 2010-08-3 Show GitHub Exploit DB Packet Storm