Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 24, 2026, 4:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4551	5.4	警告 Network	GitLab.org	GitLab	GitLab.orgのGitLabにおけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2025-12669	2026-05-18 12:08	2026-05-14	Show	GitHub Exploit DB Packet Storm

4552	4.3	警告 Network	GitLab.org	GitLab	GitLab.orgのGitLabにおけるユーザ制御の鍵による認証回避に関する脆弱性	CWE-639 ユーザ制御の鍵による認証回避	CVE-2025-13874	2026-05-18 12:08	2026-05-14	Show	GitHub Exploit DB Packet Storm

4553	7.5	重要 Network	GitLab.org	GitLab	GitLab.orgのGitLabにおける入力で指定された数量の不適切な検証に関する脆弱性	CWE-1284 入力で指定された数量の不適切な検証	CVE-2025-14869	2026-05-18 12:08	2026-05-14	Show	GitHub Exploit DB Packet Storm

4554	7.5	重要 Network	GitLab.org	GitLab	GitLab.orgのGitLabにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2025-14870	2026-05-18 12:08	2026-05-14	Show	GitHub Exploit DB Packet Storm

4555	5.6	警告 Network	デル	elastic cloud storage Dell ObjectScale	デルのelastic cloud storage等の複数製品における認証回避の脆弱性	CWE-302 認証回避の脆弱性	CVE-2025-43992	2026-05-18 12:08	2026-05-11	Show	GitHub Exploit DB Packet Storm

4556	6.7	警告 Local	フォーティネット	FortiAP-U FortiAP FortiAP-W2	フォーティネットのFortiAP-U等の複数製品におけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2025-53680	2026-05-18 12:08	2026-05-12	Show	GitHub Exploit DB Packet Storm

4557	7.2	重要 Network	フォーティネット	FortiMail	フォーティネットのFortiMailにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2025-53681	2026-05-18 12:08	2026-05-12	Show	GitHub Exploit DB Packet Storm

4558	8.8	重要 Network	フォーティネット	FortiOS	フォーティネットのFortiOSにおける境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2025-53844	2026-05-18 12:08	2026-05-12	Show	GitHub Exploit DB Packet Storm

4559	6.7	警告 Local	フォーティネット	FortiAP FortiAP-W2	フォーティネットのFortiAP-W2等の複数製品におけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2025-53870	2026-05-18 12:08	2026-05-12	Show	GitHub Exploit DB Packet Storm

4560	5.3	警告 Network	strapi	strapi	strapiにおける過度な認証試行の不適切な制限に関する脆弱性	CWE-307 過度な認証試行の不適切な制限	CVE-2025-64526	2026-05-18 12:08	2026-05-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 24, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
312761	-		apple	mac_os_x mac_os_x_server	Directory traversal vulnerability in iChat in Apple Mac OS X 10.5.8, and 10.6 before 10.6.4, when AIM is used, allows remote attackers to create arbitrary files via directory traversal sequences in a…	CWE-22 Path Traversal	CVE-2010-1374	2024-11-21 10:14	2010-06-18	Show	GitHub Exploit DB Packet Storm

312762	-		apple	mac_os_x_server mac_os_x	Cross-site scripting (XSS) vulnerability in Help Viewer in Apple Mac OS X 10.6 before 10.6.4 allows remote attackers to inject arbitrary web script or HTML via a crafted help: URL, related to "URL pa…	CWE-79 Cross-site Scripting	CVE-2010-1373	2024-11-21 10:14	2010-06-18	Show	GitHub Exploit DB Packet Storm

312763	-		tomatocms	tomatocms	Multiple cross-site scripting (XSS) vulnerabilities in index.php in TomatoCMS 2.0.6 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) keyword or (2) article-id par…	CWE-79 Cross-site Scripting	CVE-2010-1515	2024-11-21 10:14	2010-06-15	Show	GitHub Exploit DB Packet Storm

312764	-		tomatocms	tomatocms	Unrestricted file upload vulnerability in TomatoCMS 2.0.6 and earlier allows remote authenticated users, with certain privileges, to execute arbitrary PHP code by uploading an image file, and then ac…	NVD-CWE-Other	CVE-2010-1514	2024-11-21 10:14	2010-06-15	Show	GitHub Exploit DB Packet Storm

312765	7.5	HIGH Network	acritum	femitter_server	A vulnerability, which was classified as problematic, was found in Acritum Femitter Server 1.04. Affected is an unknown function. The manipulation leads to path traversal. It is possible to launch th…	-	CVE-2010-10011	2024-11-21 10:13	2024-01-13	Show	GitHub Exploit DB Packet Storm

312766	6.1	MEDIUM Network	simplesamlphp	information_cards_module	A vulnerability was found in Information Cards Module on simpleSAMLphp and classified as problematic. This issue affects some unknown processing. The manipulation leads to cross site scripting. The a…	-	CVE-2010-10004	2024-11-21 10:13	2023-01-9	Show	GitHub Exploit DB Packet Storm

312767	6.1	MEDIUM Network	psychostats	psychostats	A vulnerability classified as problematic has been found in Stars Alliance PsychoStats up to 3.2.2a. This affects an unknown part of the file upload/admin/login.php. The manipulation of the argument …	-	CVE-2010-10010	2024-11-21 10:13	2023-06-1	Show	GitHub Exploit DB Packet Storm

312768	9.8	CRITICAL Network	ptome_project	ptome	A vulnerability was found in frioux ptome. It has been rated as critical. This issue affects some unknown processing. The manipulation leads to sql injection. The patch is named 26829bba67858ca0bd4ce…	-	CVE-2010-10009	2024-11-21 10:13	2023-01-19	Show	GitHub Exploit DB Packet Storm

312769	9.8	CRITICAL Network	click-reminder_project	click-reminder	UNSUPPORTED WHEN ASSIGNED A vulnerability was found in lierdakil click-reminder. It has been rated as critical. This issue affects the function db_query of the file src/backend/include/BaseActi…	-	CVE-2010-10007	2024-11-21 10:13	2023-01-18	Show	GitHub Exploit DB Packet Storm

312770	7.5	HIGH Network	jopenid_project	jopenid	A vulnerability, which was classified as problematic, was found in michaelliao jopenid. Affected is the function getAuthentication of the file JOpenId/src/org/expressme/openid/OpenIdManager.java. The…	-	CVE-2010-10006	2024-11-21 10:13	2023-01-18	Show	GitHub Exploit DB Packet Storm