Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 10, 2026, 12:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2821 9.8 緊急
Network 		レッドハット
GNU Project		 Red Hat OpenShift Container Platform
Red Hat Hardened Images
GnuTLS
Red Hat Enterprise Linux 		GNU Project等の複数ベンダの製品におけるNull バイト相互作用エラー (Poison Null Byte) の脆弱性 CWE-626
Null バイト相互作用エラー (Poison Null Byte) 		CVE-2026-42010 2026-05-15 11:00 2026-05-7 Show GitHub Exploit DB Packet Storm
2822 9.6 緊急
Network 		langflow langflow langflowにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-42048 2026-05-15 11:00 2026-05-12 Show GitHub Exploit DB Packet Storm
2823 5.5 警告
Local 		ImageMagick ImageMagick ImageMagickにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-121
スタックオーバーフロー 		CVE-2026-42050 2026-05-15 11:00 2026-05-11 Show GitHub Exploit DB Packet Storm
2824 8.1 重要
Network 		- OpenC3のOpenC3 COSMOSにおける不要な特権による実行に関する脆弱性 CWE-250
不要な特権による実行 		CVE-2026-42088 2026-05-15 11:00 2026-05-4 Show GitHub Exploit DB Packet Storm
2825 8.8 重要
Network 		litellm litellm LiteLLMにおけるテンプレートエンジンで使用される特殊な要素の不適切な無効化に関する脆弱性 CWE-1336
テンプレートエンジンで使用される特殊な要素の不適切な無効化 		CVE-2026-42203 2026-05-15 11:00 2026-05-8 Show GitHub Exploit DB Packet Storm
2826 9.1 緊急
Network 		axios project axios axios projectのaxiosにおけるオブジェクトプロトタイプ属性の不適切に制御された変更に関する脆弱性 CWE-1321
オブジェクトプロトタイプ属性の不適切に制御された変更 (プロトタイプの汚染) 		CVE-2026-42264 2026-05-15 11:00 2026-05-8 Show GitHub Exploit DB Packet Storm
2827 5.7 警告
Network 		Kimai project kimai Kimai projectのKimaiにおけるCSV ファイル内の数式要素の中和に関する脆弱性 CWE-1236
CSV ファイル内の数式要素の不適切な中和 		CVE-2026-42267 2026-05-15 11:00 2026-05-8 Show GitHub Exploit DB Packet Storm
2828 7.5 重要
Network 		The Go Project Go The Go ProjectのGoにおける不特定の脆弱性 CWE-noinfo
情報不足 		CVE-2026-42499 2026-05-15 11:00 2026-05-7 Show GitHub Exploit DB Packet Storm
2829 7.5 重要
Network 		The Go Project Go The Go ProjectのGoにおけるデジタル署名の検証に関する脆弱性 CWE-347
デジタル署名の不適切な検証 		CVE-2026-42501 2026-05-15 11:00 2026-05-7 Show GitHub Exploit DB Packet Storm
2830 9.1 緊急
Network 		Grav CMS grav Grav CMSのgravにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-42608 2026-05-15 11:00 2026-05-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1061 5.3 MEDIUM
Network 		- - A weakness has been identified in erzhongxmu JeeWMS up to 141740afb2ba14d441c82a833d0a418d07ca2d69. This issue affects some unknown processing of the file /base-boot/actuator of the component Boot Ac… New CWE-200
CWE-284
Information Exposure
Improper Access Control 		CVE-2026-11458 2026-06-8 23:57 2026-06-7 Show GitHub Exploit DB Packet Storm
1062 7.3 HIGH
Network 		- - A flaw has been found in Boost Serialization up to 1.91. The impacted element is an unknown function. This manipulation causes improper validation of specified type of input. It is possible to initia… New CWE-20
CWE-1287
 Improper Input Validation 
 Improper Validation of Specified Type of Input 		CVE-2026-11460 2026-06-8 23:57 2026-06-8 Show GitHub Exploit DB Packet Storm
1063 7.3 HIGH
Network 		- - A vulnerability was found in Chengdu Everbrite Network Technology BeikeShop up to 1.6.0.22. This impacts the function callback of the file plugins/Stripe/Controllers/StripeController.php of the compo… New CWE-266
CWE-285
 Incorrect Privilege Assignment
Improper Authorization 		CVE-2026-11462 2026-06-8 23:57 2026-06-8 Show GitHub Exploit DB Packet Storm
1064 3.1 LOW
Network 		- - A vulnerability was identified in JeecgBoot up to 3.9.2. Affected by this vulnerability is the function queryPageList of the file src\main\java\org\jeecg\modules\system\controller\SysUserController.j… New CWE-200
CWE-284
Information Exposure
Improper Access Control 		CVE-2026-11464 2026-06-8 23:57 2026-06-8 Show GitHub Exploit DB Packet Storm
1065 7.3 HIGH
Network 		- - A vulnerability was found in SourceCodester Class and Exam Timetabling System 1.0. The impacted element is an unknown function of the file /index2.php. The manipulation of the argument Password resul… New CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-11471 2026-06-8 23:57 2026-06-8 Show GitHub Exploit DB Packet Storm
1066 7.3 HIGH
Network 		- - A vulnerability was determined in SourceCodester Class and Exam Timetabling System 1.0. This affects an unknown function of the file /index1.php. This manipulation of the argument Password causes sql… New CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-11472 2026-06-8 23:57 2026-06-8 Show GitHub Exploit DB Packet Storm
1067 6.3 MEDIUM
Network 		- - A vulnerability was identified in jflyfox jfinal_cms up to 5.1.0. This impacts the function list of the file AdvicefeedbackController.java. Such manipulation of the argument orderBy leads to sql inje… New CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-11473 2026-06-8 23:57 2026-06-8 Show GitHub Exploit DB Packet Storm
1068 5.4 MEDIUM
Network 		- - A security vulnerability has been detected in jishenghua jshERP up to 3.6. This vulnerability affects the function addAccountHeadAndDetail of the file jshERP-boot/src/main/java/com/jsh/erp/service/Ac… New CWE-22
Path Traversal 		CVE-2026-11467 2026-06-8 23:57 2026-06-8 Show GitHub Exploit DB Packet Storm
1069 4.7 MEDIUM
Network 		- - A flaw has been found in jishenghua jshERP up to 3.6. Impacted is the function insertPlatformConfig of the file jshERP-boot/src/main/java/com/jsh/erp/service/PlatformConfigService.java of the compone… New CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-11469 2026-06-8 23:57 2026-06-8 Show GitHub Exploit DB Packet Storm
1070 6.3 MEDIUM
Network 		- - A vulnerability has been found in hs-web hsweb-framework up to 5.0.1. The affected element is the function denied of the file hsweb-system/hsweb-system-file/src/main/java/org/hswebframework/web/file/… New CWE-22
Path Traversal 		CVE-2026-11470 2026-06-8 23:57 2026-06-8 Show GitHub Exploit DB Packet Storm