Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 18, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
351	5.4	警告 Network	Jenkins プロジェクト	Jenkins	Jenkinsにおけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-53441	2026-06-16 13:35	2026-06-10	Show	GitHub Exploit DB Packet Storm

352	7.1	重要 Local	OpenClaw	OpenClaw	OpenClawにおけるスプーフィングによる認証回避に関する脆弱性 New	CWE-290 スプーフィングによる認証回避	CVE-2026-53832	2026-06-16 13:35	2026-06-12	Show	GitHub Exploit DB Packet Storm

353	6.5	警告 Network	OpenClaw	OpenClaw	OpenClawにおけるスプーフィングによる認証回避に関する脆弱性 New	CWE-290 スプーフィングによる認証回避	CVE-2026-53833	2026-06-16 13:35	2026-06-12	Show	GitHub Exploit DB Packet Storm

354	6.5	警告 Network	OpenClaw	OpenClaw	OpenClawにおける不正な認証に関する脆弱性 New	CWE-863 不正な認証	CVE-2026-53834	2026-06-16 13:35	2026-06-12	Show	GitHub Exploit DB Packet Storm

355	4.3	警告 Network	OpenClaw	OpenClaw	OpenClawにおける不正な認証に関する脆弱性 New	CWE-863 不正な認証	CVE-2026-53835	2026-06-16 13:35	2026-06-12	Show	GitHub Exploit DB Packet Storm

356	8.8	重要 Network	OpenClaw	OpenClaw	OpenClawにおける不完全なブラックリストに関する脆弱性 New	CWE-184 不完全なブラックリスト	CVE-2026-53836	2026-06-16 13:35	2026-06-12	Show	GitHub Exploit DB Packet Storm

357	5.3	警告 Network	OpenClaw	OpenClaw	OpenClawにおける安全でない失敗処理に関する脆弱性 New	CWE-636 安全でない失敗処理	CVE-2026-53837	2026-06-16 13:35	2026-06-12	Show	GitHub Exploit DB Packet Storm

358	8.5	重要 Network	LiteSpeed Technologies	LiteSpeed WHM Plugin (previously cPanel/WHM Plugin) LiteSpeed cPanel Plugin	LiteSpeed TechnologiesのLiteSpeed cPanel Plugin等の複数製品におけるUNIX Symbolic Link のフォローに関する脆弱性 New	CWE-61 UNIX Symbolic Link のフォロー	CVE-2026-54420	2026-06-16 13:35	2026-06-14	Show	GitHub Exploit DB Packet Storm

359	7.5	重要 Network	vLLM	vLLM	vLLMにおけるリソースの枯渇に関する脆弱性 New	CWE-400 リソースの枯渇	CVE-2026-5497	2026-06-16 13:35	2026-06-11	Show	GitHub Exploit DB Packet Storm

360	5.5	警告 Local	MongoDB Inc.	MongoDB	MongoDB Inc.のMongoDBにおけるログファイルからの情報漏えいに関する脆弱性 New	CWE-532 ログファイルからの情報漏えい	CVE-2026-9735	2026-06-16 13:35	2026-06-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 18, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
309861	-	jamwiki	jamwiki	Cross-site scripting (XSS) vulnerability in Special:Login in JAMWiki before 0.8.4 allows remote attackers to inject arbitrary web script or HTML via the message parameter.	CWE-79 Cross-site Scripting	CVE-2010-5054	2024-11-21 10:22	2011-11-23	Show	GitHub Exploit DB Packet Storm

309862	-	php-shop-system	com_xobbix	SQL injection vulnerability in the XOBBIX (com_xobbix) component 1.0.1 for Joomla! allows remote attackers to execute arbitrary SQL commands via the prodid parameter in a prod_desc action to index.ph…	CWE-89 SQL Injection	CVE-2010-5053	2024-11-21 10:22	2011-11-23	Show	GitHub Exploit DB Packet Storm

309863	-	get-simple	getsimple_cms	Cross-site scripting (XSS) vulnerability in admin/components.php in GetSimple CMS 2.01 allows remote attackers to inject arbitrary web script or HTML via the val[] parameter.	CWE-79 Cross-site Scripting	CVE-2010-5052	2024-11-21 10:22	2011-11-23	Show	GitHub Exploit DB Packet Storm

309864	-	razorcms	razorcms	Cross-site scripting (XSS) vulnerability in admin/core/admin_func.php in razorCMS 1.0 stable allows remote attackers to inject arbitrary web script or HTML via the content parameter in an edit action…	CWE-79 Cross-site Scripting	CVE-2010-5051	2024-11-21 10:22	2011-11-23	Show	GitHub Exploit DB Packet Storm

309865	-	zohocorp	manageengine_admanager_plus	Cross-site scripting (XSS) vulnerability in jsp/admin/tools/remote_share.jsp in ManageEngine ADManager Plus 4.4.0 allows remote attackers to inject arbitrary web script or HTML via the computerName p…	CWE-79 Cross-site Scripting	CVE-2010-5050	2024-11-21 10:22	2011-11-23	Show	GitHub Exploit DB Packet Storm

309866	-	zabbix	zabbix	SQL injection vulnerability in events.php in Zabbix 1.8.1 and earlier allows remote attackers to execute arbitrary SQL commands via the nav_time parameter.	CWE-89 SQL Injection	CVE-2010-5049	2024-11-21 10:22	2011-11-23	Show	GitHub Exploit DB Packet Storm

309867	-	joomlatune	com_jcomments	Cross-site scripting (XSS) vulnerability in admin.jcomments.php in the JoomlaTune JComments (com_jcomments) component 2.1.0.0 for Joomla! allows remote authenticated users to inject arbitrary web scr…	CWE-79 Cross-site Scripting	CVE-2010-5048	2024-11-21 10:22	2011-11-23	Show	GitHub Exploit DB Packet Storm

309868	-	v-eva	press_release_script	SQL injection vulnerability in page.php in V-EVA Press Release Script allows remote attackers to execute arbitrary SQL commands via the id parameter.	CWE-89 SQL Injection	CVE-2010-5047	2024-11-21 10:22	2011-11-23	Show	GitHub Exploit DB Packet Storm

309869	-	ecocms	ecocms	Cross-site scripting (XSS) vulnerability in admin.php in ecoCMS allows remote attackers to inject arbitrary web script or HTML via the p parameter.	CWE-79 Cross-site Scripting	CVE-2010-5046	2024-11-21 10:22	2011-11-23	Show	GitHub Exploit DB Packet Storm

309870	-	sellatsite	smart_asp_survey	Cross-site scripting (XSS) vulnerability in poll/default.asp in Smart ASP Survey allows remote attackers to inject arbitrary web script or HTML via the catid parameter.	CWE-79 Cross-site Scripting	CVE-2010-5045	2024-11-21 10:22	2011-11-3	Show	GitHub Exploit DB Packet Storm