Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 14, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2961 7.8 重要
Local 		マイクロソフト Microsoft Windows 11 25h2
Microsoft Windows Server 2016
Microsoft Windows 10 1809
Microsoft Windows 11 23h2
Microsoft Wind… 		Windows メッセージ キュー (MSMQ) の特権昇格の脆弱性 CWE-415
二重解放 		CVE-2026-33838 2026-05-18 12:17 2026-05-12 Show GitHub Exploit DB Packet Storm
2962 7 重要
Local 		マイクロソフト Microsoft Windows 11 25h2
Microsoft Windows 10 1809
Microsoft Windows 11 23h2
Microsoft Windows Server 2022
Microsoft Wind… 		Win32k の特権の昇格の脆弱性 CWE-362
競合状態 		CVE-2026-33839 2026-05-18 12:17 2026-05-12 Show GitHub Exploit DB Packet Storm
2963 7.8 重要
Local 		マイクロソフト Microsoft Windows 11 25h2
Microsoft Windows 11 24h2
Microsoft Windows 11 26h1
Microsoft Windows Server 2025 		Win32k の特権の昇格の脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-33840 2026-05-18 12:17 2026-05-12 Show GitHub Exploit DB Packet Storm
2964 7.8 重要
Local 		マイクロソフト Microsoft Windows 11 25h2
Microsoft Windows 11 23h2
Microsoft Windows Server 2022
Microsoft Windows 11 24h2
Microsoft Wind… 		Windows カーネルの特権の昇格の脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-33841 2026-05-18 12:17 2026-05-12 Show GitHub Exploit DB Packet Storm
2965 7.5 重要
Network 		MediaWiki MediaWiki MediaWikiにおける情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2026-34087 2026-05-18 12:17 2026-05-11 Show GitHub Exploit DB Packet Storm
2966 7.5 重要
Network 		MediaWiki MediaWiki MediaWikiにおける情報漏えいに関する脆弱性 CWE-200
CWE-noinfo
CVE-2026-34088 2026-05-18 12:17 2026-05-11 Show GitHub Exploit DB Packet Storm
2967 7.5 重要
Network 		MediaWiki Checkuser MediaWikiのCheckuserにおける情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2026-34090 2026-05-18 12:17 2026-05-11 Show GitHub Exploit DB Packet Storm
2968 7.5 重要
Network 		MediaWiki MediaWiki MediaWikiにおける情報漏えいに関する脆弱性 CWE-200
CWE-noinfo
CVE-2026-34091 2026-05-18 12:17 2026-05-11 Show GitHub Exploit DB Packet Storm
2969 7.5 重要
Network 		MediaWiki MediaWiki MediaWikiにおける情報漏えいに関する脆弱性 CWE-200
CWE-noinfo
CVE-2026-34092 2026-05-18 12:17 2026-05-11 Show GitHub Exploit DB Packet Storm
2970 8.8 重要
Adjacent 		マイクロソフト Microsoft Windows 11 25h2
Microsoft Windows Server 2016
Microsoft Windows 10 1809
Microsoft Windows 11 23h2
Microsoft Wind… 		Microsoft Message Queuing (MSMQ) のリモートでコードが実行される脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-34329 2026-05-18 12:17 2026-05-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 15, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
311921 - phpcityportal phpcityportal Cross-site scripting (XSS) vulnerability in cms_data.php in PHPCityPortal 1.3 allows remote attackers to inject arbitrary web script or HTML via the page parameter. CWE-79
Cross-site Scripting 		CVE-2010-2318 2024-11-21 10:16 2010-06-18 Show GitHub Exploit DB Packet Storm
311922 - wmsdesign wmscms Multiple SQL injection vulnerabilities in WmsCms 2.0 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) search, (2) sbr, (3) pid, (4) sbl, and (5) FilePath parameters to… CWE-89
SQL Injection 		CVE-2010-2317 2024-11-21 10:16 2010-06-18 Show GitHub Exploit DB Packet Storm
311923 - wmsdesign wmscms Multiple cross-site scripting (XSS) vulnerabilities in default.asp in WmsCms 2.0 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) search, (2) sbr, (3) p, and (4) … CWE-79
Cross-site Scripting 		CVE-2010-2316 2024-11-21 10:16 2010-06-18 Show GitHub Exploit DB Packet Storm
311924 - smartisoft phpbazar PHP remote file inclusion vulnerability in picturelib.php in SmartISoft phpBazar 2.1.1 allows remote attackers to execute arbitrary PHP code via a URL in the cat parameter. CWE-94
Code Injection 		CVE-2010-2315 2024-11-21 10:16 2010-06-18 Show GitHub Exploit DB Packet Storm
311925 - edmondhui.homeip np_twitter PHP remote file inclusion vulnerability in nucleus/plugins/NP_Twitter.php in the NP_Twitter Plugin 0.8 and 0.9 for Nucleus, when register_globals is enabled, allows remote attackers to execute arbitr… CWE-94
Code Injection 		CVE-2010-2314 2024-11-21 10:16 2010-06-18 Show GitHub Exploit DB Packet Storm
311926 - anodyne-productions simm_management_system Directory traversal vulnerability in index.php in Anodyne Productions SIMM Management System (SMS) 2.6.10, when magic_quotes_gpc is disabled, allows remote attackers to read arbitrary files via a .. … CWE-22
Path Traversal 		CVE-2010-2313 2024-11-21 10:16 2010-06-18 Show GitHub Exploit DB Packet Storm
311927 - hauntmax haunted_house_directory_listing_cms SQL injection vulnerability in index.php in HauntmAx Haunted House Directory Listing CMS allows remote attackers to execute arbitrary SQL commands via the state parameter in a listings action. CWE-89
SQL Injection 		CVE-2010-2312 2024-11-21 10:16 2010-06-17 Show GitHub Exploit DB Packet Storm
311928 - power-tab power_tab_editor Stack-based buffer overflow in Power Tab Editor 1.7 build 80 allows user-assisted remote attackers to execute arbitrary code via a .ptb file with a long font name. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2010-2311 2024-11-21 10:16 2010-06-17 Show GitHub Exploit DB Packet Storm
311929 - solarwinds tftp_server SolarWinds TFTP Server 10.4.0.13 allows remote attackers to cause a denial of service (crash) via a long write request. CWE-20
 Improper Input Validation  		CVE-2010-2310 2024-11-21 10:16 2010-06-17 Show GitHub Exploit DB Packet Storm
311930 - evological evocam Buffer overflow in the web server for EvoLogical EvoCam 3.6.6 and 3.6.7 allows remote attackers to execute arbitrary code via a long GET request. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2010-2309 2024-11-21 10:16 2010-06-17 Show GitHub Exploit DB Packet Storm