Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 20, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
331 9.9 緊急
Network 		アドビシステムズ Adobe ColdFusion アドビのAdobe ColdFusionにおける入力確認に関する脆弱性 CWE-20
CWE-noinfo
CVE-2026-47931 2026-06-16 13:36 2026-06-9 Show GitHub Exploit DB Packet Storm
332 9.6 緊急
Network 		アドビシステムズ Adobe ColdFusion アドビのAdobe ColdFusionにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-47932 2026-06-16 13:36 2026-06-9 Show GitHub Exploit DB Packet Storm
333 5.4 警告
Network 		アドビシステムズ Adobe ColdFusion アドビのAdobe ColdFusionにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-47933 2026-06-16 13:36 2026-06-9 Show GitHub Exploit DB Packet Storm
334 7.4 重要
Network 		アドビシステムズ Adobe ColdFusion アドビのAdobe ColdFusionにおけるXML 外部エンティティの脆弱性 CWE-611
XML 外部エンティティ参照の不適切な制限 		CVE-2026-47960 2026-06-16 13:36 2026-06-9 Show GitHub Exploit DB Packet Storm
335 6.5 警告
Network 		ERLANG Erlang/ssh
Erlang/OTP 		ERLANGのErlang/OTP等の複数製品における情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2026-48855 2026-06-16 13:36 2026-06-10 Show GitHub Exploit DB Packet Storm
336 6.5 警告
Network 		ERLANG Erlang/OTP
Erlang/Inets (Inets) 		ERLANGのErlang/Inets (Inets)等の複数製品におけるオープンリダイレクトの脆弱性 CWE-601
オープンリダイレクト 		CVE-2026-48856 2026-06-16 13:36 2026-06-10 Show GitHub Exploit DB Packet Storm
337 5.3 警告
Network 		ERLANG Erlang/ssh
Erlang/OTP 		ERLANGのErlang/OTP等の複数製品におけるタイミングの違いに起因する情報漏えいに関する脆弱性 CWE-208
タイミングの違いに起因する情報漏えい 		CVE-2026-48859 2026-06-16 13:36 2026-06-10 Show GitHub Exploit DB Packet Storm
338 6.5 警告
Network 		ERLANG Erlang/SSL (Erlang SSL)
Erlang/OTP 		ERLANGのErlang/OTP等の複数製品における複数の脆弱性 CWE-1025
CWE-863
CVE-2026-48860 2026-06-16 13:36 2026-06-10 Show GitHub Exploit DB Packet Storm
339 5.3 警告
Network 		guzzlephp psr-7 guzzlephpのpsr-7における複数の脆弱性 CWE-20
CWE-918
CWE-918
CVE-2026-48998 2026-06-16 13:36 2026-06-11 Show GitHub Exploit DB Packet Storm
340 5.3 警告
Network 		guzzlephp psr-7 guzzlephpのpsr-7における複数の脆弱性 CWE-113
CWE-20
CWE-93
CVE-2026-49214 2026-06-16 13:36 2026-06-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 21, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
309671 - vwar virtual_war The createRandomPassword function in includes/functions_common.php in Virtual War (aka VWar) 1.6.1 R2 uses a small range of values to select the seed argument for the PHP mt_srand function, which mak… CWE-310
Cryptographic Issues 		CVE-2010-5066 2024-11-21 10:22 2012-10-8 Show GitHub Exploit DB Packet Storm
309672 - vwar virtual_war popup.php in Virtual War (aka VWar) 1.6.1 R2 allows remote attackers to bypass intended member restrictions and read news posts via a modified newsid parameter in a printnews action. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2010-5065 2024-11-21 10:22 2012-10-8 Show GitHub Exploit DB Packet Storm
309673 - vwar virtual_war Multiple cross-site scripting (XSS) vulnerabilities in Virtual War (aka VWar) 1.6.1 R2 allow remote attackers to inject arbitrary web script or HTML via (1) the Additional Information field to challe… CWE-79
Cross-site Scripting 		CVE-2010-5064 2024-11-21 10:22 2012-10-8 Show GitHub Exploit DB Packet Storm
309674 - vwar virtual_war SQL injection vulnerability in article.php in Virtual War (aka VWar) 1.6.1 R2 allows remote attackers to execute arbitrary SQL commands via the ratearticleselect parameter. CWE-89
SQL Injection 		CVE-2010-5063 2024-11-21 10:22 2012-10-8 Show GitHub Exploit DB Packet Storm
309675 - modx modx_revolution Directory traversal vulnerability in manager/controllers/default/resource/tvs.php in MODx Revolution 2.0.2-pl, and possibly earlier, when magic_quotes_gpc is disabled, allows remote attackers to read… CWE-22
Path Traversal 		CVE-2010-5278 2024-11-21 10:22 2012-10-8 Show GitHub Exploit DB Packet Storm
309676 - karim_ratib views_bulk_operations Unspecified vulnerability in the Views Bulk Operations module 6 before 6.x-1.10 for Drupal allows remote authenticated users with user management permissions to bypass intended access restrictions an… NVD-CWE-noinfo
CVE-2010-5277 2024-11-21 10:22 2012-10-8 Show GitHub Exploit DB Packet Storm
309677 - memcache_project memcache The Memcache module 5.x before 5.x-1.10 and 6.x before 6.x-1.6 for Drupal does not properly handle the $user object in memcache_admin, which might "lead to a role change not being recognized until th… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2010-5276 2024-11-21 10:22 2012-10-8 Show GitHub Exploit DB Packet Storm
309678 - memcache_project memcache Cross-site scripting (XSS) vulnerability in memcache_admin in the Memcache module 5.x before 5.x-1.10 and 6.x before 6.x-1.6 for Drupal allows remote attackers to inject arbitrary web script or HTML … CWE-79
Cross-site Scripting 		CVE-2010-5275 2024-11-21 10:22 2012-10-8 Show GitHub Exploit DB Packet Storm
309679 - silverstripe silverstripe SilverStripe 2.3.x before 2.3.10 and 2.4.x before 2.4.4 uses weak entropy when generating tokens for (1) the CSRF protection mechanism, (2) autologin, (3) "forgot password" functionality, and (4) pas… CWE-310
Cryptographic Issues 		CVE-2010-5079 2024-11-21 10:22 2012-09-18 Show GitHub Exploit DB Packet Storm
309680 - silverstripe silverstripe SilverStripe 2.3.x before 2.3.10 and 2.4.x before 2.4.4 stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain version information v… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2010-5078 2024-11-21 10:22 2012-09-18 Show GitHub Exploit DB Packet Storm