Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 11, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3801	9.1	緊急 Network	Deutsche Telekom AG	Telekom Account Management Portal	Deutsche Telekom AGのTelekom Account Management Portalにおける過度な認証試行の不適切な制限に関する脆弱性	CWE-307 過度な認証試行の不適切な制限	CVE-2025-69615	2026-05-11 11:03	2026-03-10	Show	GitHub Exploit DB Packet Storm

3802	6.1	警告 Network	generatedata	generatedata	generatedataにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2025-70025	2026-05-11 11:02	2026-03-10	Show	GitHub Exploit DB Packet Storm

3803	7.5	重要 Network	pdfmake project	pdfmake	pdfmakeにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-26801	2026-05-11 11:02	2026-03-10	Show	GitHub Exploit DB Packet Storm

3804	7.8	重要 Local	Luis Novo (lfnovo)	Open Notebook	Luis Novo (lfnovo)のOpen Notebookにおける複数の脆弱性	CWE-20 CWE-352 CWE-917 CWE-noinfo	CVE-2026-28201	2026-05-11 11:02	2026-05-7	Show	GitHub Exploit DB Packet Storm

3805	9.8	緊急 Network	Xiaomi	MIUI File Explorer	XiaomiのMIUI File Explorerにおける複数の脆弱性	CWE-303 CWE-862	CVE-2026-29515	2026-05-11 11:02	2026-03-11	Show	GitHub Exploit DB Packet Storm

3806	6.1	警告 Network	WorkflowFirst Software LLC	Staff.Wiki	WorkflowFirst Software LLCのStaff.Wikiにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-29969	2026-05-11 11:02	2026-03-26	Show	GitHub Exploit DB Packet Storm

3807	5.4	警告 Network	spomky-labs	webauthn-lib webauthn-symfony-bundle webauthn framwork	spomky-labsのwebauthn-lib等の複数製品における同一生成元ポリシー違反に関する脆弱性	CWE-346 同一生成元ポリシー違反	CVE-2026-30964	2026-05-11 11:02	2026-03-10	Show	GitHub Exploit DB Packet Storm

3808	6.5	警告 Network	appium	Appium/support	appiumのAppium/supportにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-30973	2026-05-11 11:02	2026-03-10	Show	GitHub Exploit DB Packet Storm

3809	8.8	重要 Network	マイクロソフト	Microsoft Windows Server 2025 Microsoft Windows Server 2022 Microsoft Windows 11 24h2 Microsoft Windows 11 25h2 Microsoft …	リモートデスクトップクライアントのリモートでコードが実行される脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-32157	2026-05-11 11:02	2026-04-14	Show	GitHub Exploit DB Packet Storm

3810	10	緊急 Network	Luis Novo (lfnovo)	Open Notebook	Luis Novo (lfnovo)のOpen Notebookにおける入力確認に関する脆弱性	CWE-20 CWE-noinfo	CVE-2026-33587	2026-05-11 11:02	2026-05-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 11, 2026, 5:13 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
355161	-	ibm	aix	Unspecified vulnerability in secldapclntd in IBM AIX 5.3 with SP 5300-11-02 allows attackers to cause a denial of service (LDAP login failure) via unknown vectors. NOTE: some of these details are ob…	NVD-CWE-noinfo	CVE-2010-0922	2010-03-4 14:00	2010-03-4	Show	GitHub Exploit DB Packet Storm

355162	-	ibm	aix	Per: ftp://public.dhe.ibm.com/aix/efixes/iz69977/ IZ69977.epkg.Z	NVD-CWE-noinfo	CVE-2010-0922	2010-03-4 14:00	2010-03-4	Show	GitHub Exploit DB Packet Storm

355163	-	kde	kde_sc	Race condition in workspace/krunner/lock/lockdlg.cc in the KRunner lock module in kdebase in KDE SC 4.4.0 allows physically proximate attackers to bypass KScreenSaver screen locking and access an una…	CWE-362 Race Condition	CVE-2010-0923	2010-03-4 14:00	2010-03-4	Show	GitHub Exploit DB Packet Storm

355164	-	apple	safari	cfnetwork.dll 1.450.5.0 in CFNetwork, as used by safari.exe 531.21.10 in Apple Safari 4.0.3 and 4.0.4 on Windows, allows remote attackers to cause a denial of service (application crash) via a long s…	NVD-CWE-Other	CVE-2010-0924	2010-03-4 14:00	2010-03-4	Show	GitHub Exploit DB Packet Storm

355165	-	apple	safari	cfnetwork.dll 1.450.5.0 in CFNetwork, as used by safari.exe 531.21.10 in Apple Safari 4.0.4 on Windows, allows remote attackers to cause a denial of service (application crash) via a long string in t…	NVD-CWE-Other	CVE-2010-0925	2010-03-4 14:00	2010-03-4	Show	GitHub Exploit DB Packet Storm

355166	-	jtl-software	jtl-shop	SQL injection vulnerability in druckansicht.php in JTL-Shop 2 allows remote attackers to execute arbitrary SQL commands via the s parameter.	CWE-89 SQL Injection	CVE-2010-0691	2010-03-3 14:00	2010-02-24	Show	GitHub Exploit DB Packet Storm

355167	-	iptechinside	com_jquarks	SQL injection vulnerability in the IP-Tech JQuarks (com_jquarks) Component 0.2.3, and possibly earlier, for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter to i…	CWE-89 SQL Injection	CVE-2010-0692	2010-03-3 14:00	2010-02-24	Show	GitHub Exploit DB Packet Storm

355168	-	tdiary	tdiary	Cross-site scripting (XSS) vulnerability in the tb-send.rb (TrackBack transmission) plugin in tDiary 2.2.2 and earlier allows remote attackers to inject arbitrary web script or HTML via unknown vecto…	CWE-79 Cross-site Scripting	CVE-2010-0726	2010-03-3 14:00	2010-03-3	Show	GitHub Exploit DB Packet Storm

355169	-	commodityrentals	vacation_rental_software	SQL injection vulnerability in index.php in CommodityRentals Vacation Rental Software allows remote attackers to execute arbitrary SQL commands via the rental_id parameter in a CalendarView action.	CWE-89 SQL Injection	CVE-2010-0763	2010-03-3 14:00	2010-03-3	Show	GitHub Exploit DB Packet Storm

355170	-	snowflake	t3blog	Cross-site scripting (XSS) vulnerability in the T3BLOG extension 0.6.2 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2010-0797	2010-03-3 14:00	2010-03-3	Show	GitHub Exploit DB Packet Storm