Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 17, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3271	4.3	警告 Network	getkirby	kirby	getkirbyのkirbyにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2026-42174	2026-05-20 13:30	2026-05-9	Show	GitHub Exploit DB Packet Storm

3272	7.5	重要 Network	OpenBao	OpenBao	OpenBaoにおける保存または転送前の重要な情報の削除に関する脆弱性	CWE-212 保存または転送前の重要な情報の不適切な削除	CVE-2026-42186	2026-05-20 13:30	2026-05-14	Show	GitHub Exploit DB Packet Storm

3273	7.5	重要 Network	Ruby-lang.org	Net::IMAP	Ruby-lang.orgのNet::IMAPにおけるアルゴリズムの複雑さに関する脆弱性	CWE-407 アルゴリズムの複雑性	CVE-2026-42245	2026-05-20 13:30	2026-05-9	Show	GitHub Exploit DB Packet Storm

3274	7.4	重要 Network	Ruby-lang.org	Net::IMAP	Ruby-lang.orgのNet::IMAPにおける複数の脆弱性	CWE-392 CWE-393 CWE-636 CWE-754 CWE-841	CVE-2026-42246	2026-05-20 13:30	2026-05-9	Show	GitHub Exploit DB Packet Storm

3275	9.8	緊急 Network	ollama	ollama	Ollamaにおけるダウンロードしたコードの完全性検証不備に関する脆弱性	CWE-494 ダウンロードしたコードの完全性検証不備	CVE-2026-42248	2026-05-20 13:30	2026-04-29	Show	GitHub Exploit DB Packet Storm

3276	9.8	緊急 Network	ollama	ollama	Ollamaにおける複数の脆弱性	CWE-22 CWE-494	CVE-2026-42249	2026-05-20 13:30	2026-04-29	Show	GitHub Exploit DB Packet Storm

3277	9.8	緊急 Network	Ruby-lang.org	Net::IMAP	Ruby-lang.orgのNet::IMAPにおける複数の脆弱性	CWE-77 CWE-93	CVE-2026-42257	2026-05-20 13:30	2026-05-9	Show	GitHub Exploit DB Packet Storm

3278	9.8	緊急 Network	Ruby-lang.org	Net::IMAP	Ruby-lang.orgのNet::IMAPにおける複数の脆弱性	CWE-77 CWE-93	CVE-2026-42258	2026-05-20 13:30	2026-05-9	Show	GitHub Exploit DB Packet Storm

3279	7.1	重要 Network	Quantum Nous	New API	Quantum NousのNew APIにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-42339	2026-05-20 13:30	2026-05-8	Show	GitHub Exploit DB Packet Storm

3280	9.8	緊急 Network	sentry	sentry	sentryにおけるスプーフィングによる認証回避に関する脆弱性	CWE-290 スプーフィングによる認証回避	CVE-2026-42354	2026-05-20 13:30	2026-05-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 17, 2026, 4:19 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
312121	-		paul_mcenery	php_bible_search	SQL injection vulnerability in bible.php in PHP Bible Search, probably 0.99, allows remote attackers to execute arbitrary SQL commands via the chapter parameter.	CWE-89 SQL Injection	CVE-2010-2616	2024-11-21 10:17	2010-07-2	Show	GitHub Exploit DB Packet Storm

312122	-		grafik-power	grafik_cms	Multiple cross-site scripting (XSS) vulnerabilities in admin/admin.php in Grafik CMS 1.1.2, and possibly earlier, allow remote attackers to inject arbitrary web script or HTML via the (1) page_menu a…	CWE-79 Cross-site Scripting	CVE-2010-2615	2024-11-21 10:17	2010-07-2	Show	GitHub Exploit DB Packet Storm

312123	-		grafik-power	grafik_cms	SQL injection vulnerability in admin/admin.php in Grafik CMS 1.1.2, and possibly earlier, allows remote attackers to execute arbitrary SQL commands via the id parameter in an edit_page action.	CWE-89 SQL Injection	CVE-2010-2614	2024-11-21 10:17	2010-07-2	Show	GitHub Exploit DB Packet Storm

312124	-		harmistechnology	com_awd_song	Cross-site scripting (XSS) vulnerability in the JExtensions JE Awd Song (com_awd_song) component for Joomla! allows remote attackers to inject arbitrary web script or HTML via the song review field, …	CWE-79 Cross-site Scripting	CVE-2010-2613	2024-11-21 10:17	2010-07-2	Show	GitHub Exploit DB Packet Storm

312125	-		hp	openvms openvms_for_integrity_servers	Unspecified vulnerability in the HP OpenVMS Auditing feature in OpenVMS ALPHA 7.3-2, 8.2, and 8.3; and OpenVMS for Integrity Servers 8.3 AND 8.3-1H1; allows local users to obtain sensitive informatio…	CWE-200 NVD-CWE-noinfo Information Exposure	CVE-2010-2612	2024-11-21 10:17	2010-07-2	Show	GitHub Exploit DB Packet Storm

312126	5.5	MEDIUM Local	clusterlabs	cluster_glue pacemaker	stonith-ng in pacemaker and cluster-glue passed passwords as commandline parameters, making it possible for local attackers to gain access to passwords of the HA stack and potentially influence its o…	CWE-287 Improper Authentication	CVE-2010-2496	2024-11-21 10:16	2021-10-18	Show	GitHub Exploit DB Packet Storm

312127	7.8	HIGH Local	linux	linux_kernel	A flaw was discovered in gfs2 file system’s handling of acls (access control lists). An unprivileged local attacker could exploit this flaw to gain access or execute any file stored in the gfs2 file …	-	CVE-2010-2525	2024-11-21 10:16	2021-06-22	Show	GitHub Exploit DB Packet Storm

312128	7.5	HIGH Network	znc	znc	NULL pointer dereference vulnerability in ZNC before 0.092 caused by traffic stats when there are unauthenticated connections.	CWE-476 NULL Pointer Dereference	CVE-2010-2488	2024-11-21 10:16	2019-11-13	Show	GitHub Exploit DB Packet Storm

312129	9.8	CRITICAL Network	syscp_project	syscp	syscp 1.4.2.1 allows attackers to add arbitrary paths via the documentroot of a domain by appending a colon to it and setting the open basedir path to use that domain documentroot.	CWE-20 Improper Input Validation	CVE-2010-2476	2024-11-21 10:16	2019-11-8	Show	GitHub Exploit DB Packet Storm

312130	7.5	HIGH Network	shibboleth debian	service_provider debian_linux	The keygen.sh script in Shibboleth SP 2.0 (located in /usr/local/etc/shibboleth by default) uses OpenSSL to create a DES private key which is placed in sp-key.pm. It relies on the root umask (default…	CWE-200 CWE-916 Information Exposure Use of Password Hash With Insufficient Computational Effort	CVE-2010-2450	2024-11-21 10:16	2019-11-8	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed