Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 24, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4601	7.5	重要 Network	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows 11 24h2 Microsoft Windows 11 26h1 Microsoft Windows Server 2025	Windows TCP/IP のサービス拒否の脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-40405	2026-05-18 12:06	2026-05-12	Show	GitHub Exploit DB Packet Storm

4602	7.5	重要 Network	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows TCP/IP の情報漏えいの脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-40406	2026-05-18 12:06	2026-05-12	Show	GitHub Exploit DB Packet Storm

4603	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows 共通ログファイルシステムドライバーの特権の昇格の脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-40407	2026-05-18 12:06	2026-05-12	Show	GitHub Exploit DB Packet Storm

4604	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows WAN ARP Driver Elevation of Privilege Vulnerability	CWE-416 解放済みメモリの使用	CVE-2026-40408	2026-05-18 12:06	2026-05-12	Show	GitHub Exploit DB Packet Storm

4605	7	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows SMB クライアントの特権の昇格の脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-40410	2026-05-18 12:06	2026-05-12	Show	GitHub Exploit DB Packet Storm

4606	9.6	緊急 Network	TanStack	tanstack/react-start-rsc @tanstack/router-devtools-core @tanstack/router-utils @tanstack/react-router-devtools @tanstack/valibot-adapter @tanstack/zod-adapter @tanstack/vue-start-se…	TanStackの@tanstack/arktype-adapter等の複数製品における埋め込まれた悪意のあるコードに関する脆弱性	CWE-506 埋め込まれた悪意のあるコード	CVE-2026-45321	2026-05-18 12:06	2026-05-12	Show	GitHub Exploit DB Packet Storm

4607	6.5	警告 Network	IBM HCL Technologies Limited	BigFix WebUI Reports BigFix WebUI Common BigFix WebUI API BigFix WebUI Framework BigFix WebUI Profile Management BigFix WebU…	HCL Technologies LimitedのBigFix WebUI API等の複数製品における不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2025-15633	2026-05-18 12:06	2026-05-9	Show	GitHub Exploit DB Packet Storm

4608	4.3	警告 Network	IBM HCL Technologies Limited	BigFix WebUI Reports BigFix WebUI Common BigFix WebUI API BigFix WebUI Framework BigFix WebUI Profile Management BigFix WebU…	HCL Technologies LimitedのBigFix WebUI API等の複数製品における認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2025-15634	2026-05-18 12:06	2026-05-9	Show	GitHub Exploit DB Packet Storm

4609	4.9	警告 Network	Buffalo Americas, Inc.	TeraStation NAS TS5400R Firmware	Buffalo Americas, Inc.のTeraStation NAS TS5400R Firmwareにおける重要なリソースに対する不適切なパーミッションの割り当てに関する脆弱性	CWE-732 重要なリソースに対する不適切なパーミッションの割り当て	CVE-2026-29516	2026-05-18 12:06	2026-03-16	Show	GitHub Exploit DB Packet Storm

4610	6.5	警告 Network	Mem0	mem0	Mem0のmem0における複数の脆弱性	CWE-306 CWE-862	CVE-2026-31241	2026-05-18 12:06	2026-05-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 24, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
312761	-		apple	mac_os_x mac_os_x_server	Directory traversal vulnerability in iChat in Apple Mac OS X 10.5.8, and 10.6 before 10.6.4, when AIM is used, allows remote attackers to create arbitrary files via directory traversal sequences in a…	CWE-22 Path Traversal	CVE-2010-1374	2024-11-21 10:14	2010-06-18	Show	GitHub Exploit DB Packet Storm

312762	-		apple	mac_os_x_server mac_os_x	Cross-site scripting (XSS) vulnerability in Help Viewer in Apple Mac OS X 10.6 before 10.6.4 allows remote attackers to inject arbitrary web script or HTML via a crafted help: URL, related to "URL pa…	CWE-79 Cross-site Scripting	CVE-2010-1373	2024-11-21 10:14	2010-06-18	Show	GitHub Exploit DB Packet Storm

312763	-		tomatocms	tomatocms	Multiple cross-site scripting (XSS) vulnerabilities in index.php in TomatoCMS 2.0.6 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) keyword or (2) article-id par…	CWE-79 Cross-site Scripting	CVE-2010-1515	2024-11-21 10:14	2010-06-15	Show	GitHub Exploit DB Packet Storm

312764	-		tomatocms	tomatocms	Unrestricted file upload vulnerability in TomatoCMS 2.0.6 and earlier allows remote authenticated users, with certain privileges, to execute arbitrary PHP code by uploading an image file, and then ac…	NVD-CWE-Other	CVE-2010-1514	2024-11-21 10:14	2010-06-15	Show	GitHub Exploit DB Packet Storm

312765	7.5	HIGH Network	acritum	femitter_server	A vulnerability, which was classified as problematic, was found in Acritum Femitter Server 1.04. Affected is an unknown function. The manipulation leads to path traversal. It is possible to launch th…	-	CVE-2010-10011	2024-11-21 10:13	2024-01-13	Show	GitHub Exploit DB Packet Storm

312766	6.1	MEDIUM Network	simplesamlphp	information_cards_module	A vulnerability was found in Information Cards Module on simpleSAMLphp and classified as problematic. This issue affects some unknown processing. The manipulation leads to cross site scripting. The a…	-	CVE-2010-10004	2024-11-21 10:13	2023-01-9	Show	GitHub Exploit DB Packet Storm

312767	6.1	MEDIUM Network	psychostats	psychostats	A vulnerability classified as problematic has been found in Stars Alliance PsychoStats up to 3.2.2a. This affects an unknown part of the file upload/admin/login.php. The manipulation of the argument …	-	CVE-2010-10010	2024-11-21 10:13	2023-06-1	Show	GitHub Exploit DB Packet Storm

312768	9.8	CRITICAL Network	ptome_project	ptome	A vulnerability was found in frioux ptome. It has been rated as critical. This issue affects some unknown processing. The manipulation leads to sql injection. The patch is named 26829bba67858ca0bd4ce…	-	CVE-2010-10009	2024-11-21 10:13	2023-01-19	Show	GitHub Exploit DB Packet Storm

312769	9.8	CRITICAL Network	click-reminder_project	click-reminder	UNSUPPORTED WHEN ASSIGNED A vulnerability was found in lierdakil click-reminder. It has been rated as critical. This issue affects the function db_query of the file src/backend/include/BaseActi…	-	CVE-2010-10007	2024-11-21 10:13	2023-01-18	Show	GitHub Exploit DB Packet Storm

312770	7.5	HIGH Network	jopenid_project	jopenid	A vulnerability, which was classified as problematic, was found in michaelliao jopenid. Affected is the function getAuthentication of the file JOpenId/src/org/expressme/openid/OpenIdManager.java. The…	-	CVE-2010-10006	2024-11-21 10:13	2023-01-18	Show	GitHub Exploit DB Packet Storm