Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 23, 2026, 10:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
5071 7.5 重要
Network 		GitHub Enterprise Server GitHubのEnterprise Serverにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-7541 2026-05-13 10:21 2026-05-7 Show GitHub Exploit DB Packet Storm
5072 9.8 緊急
Network 		GitHub Enterprise Server GitHubのEnterprise Serverにおける複数の脆弱性 CWE-436
CWE-918
CVE-2026-8034 2026-05-13 10:21 2026-05-7 Show GitHub Exploit DB Packet Storm
5073 6.5 警告
Network 		MongoDB Inc. MongoDB MongoDB Inc.のMongoDBにおけるNULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2026-8063 2026-05-13 10:21 2026-05-7 Show GitHub Exploit DB Packet Storm
5074 5.4 警告
Network 		MISP MISP MISPにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-8080 2026-05-13 10:21 2026-05-7 Show GitHub Exploit DB Packet Storm
5075 9.8 緊急
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品における例外的な状態のチェックに関する脆弱性 CWE-754
CWE-noinfo
CVE-2026-8091 2026-05-13 10:21 2026-05-7 Show GitHub Exploit DB Packet Storm
5076 8.1 重要
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品における複数の脆弱性 CWE-125
CWE-416
CWE-787
CVE-2026-8092 2026-05-13 10:21 2026-05-7 Show GitHub Exploit DB Packet Storm
5077 8.1 重要
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品におけるバッファエラーの脆弱性 CWE-119
バッファエラー 		CVE-2026-8093 2026-05-13 10:21 2026-05-7 Show GitHub Exploit DB Packet Storm
5078 9.8 緊急
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品におけるコードインジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2026-8094 2026-05-13 10:21 2026-05-7 Show GitHub Exploit DB Packet Storm
5079 6.1 警告
Network 		GitHub Enterprise Server GitHubのEnterprise Serverにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-8106 2026-05-13 10:21 2026-05-7 Show GitHub Exploit DB Packet Storm
5080 7.2 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. AC6 ファームウェア Shenzhen Tenda Technology Co.,Ltd.のAC6 ファームウェアにおける複数の脆弱性 CWE-77
CWE-78
CWE-78
CVE-2026-8259 2026-05-13 10:21 2026-05-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 23, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
347761 - joomlamo com_jinventory Directory traversal vulnerability in jinventory.php in the JInventory (com_jinventory) component 1.23.02 and possibly other versions before 1.26.03, a module for Joomla!, allows remote attackers to r… CWE-22
Path Traversal 		CVE-2010-1305 2017-08-17 10:32 2010-04-9 Show GitHub Exploit DB Packet Storm
347762 - roberto_aloi com_joomlapicasa2 Directory traversal vulnerability in the Picasa (com_joomlapicasa2) component 2.0 and 2.0.5 for Joomla! allows remote attackers to read arbitrary local files via a .. (dot dot) in the controller para… CWE-22
Path Traversal 		CVE-2010-1306 2017-08-17 10:32 2010-04-9 Show GitHub Exploit DB Packet Storm
347763 - software.realtyna com_joomlaupdater Directory traversal vulnerability in the Magic Updater (com_joomlaupdater) component for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter to inde… CWE-22
Path Traversal 		CVE-2010-1307 2017-08-17 10:32 2010-04-9 Show GitHub Exploit DB Packet Storm
347764 - joomlamo com_weberpcustomer Directory traversal vulnerability in weberpcustomer.php in the webERPcustomer (com_weberpcustomer) component 1.2.1 and 1.x before 1.06.02 for Joomla! allows remote attackers to read arbitrary files v… CWE-22
Path Traversal 		CVE-2010-1315 2017-08-17 10:32 2010-04-9 Show GitHub Exploit DB Packet Storm
347765 - heartlogic hl-sitemanager SQL injection vulnerability in Heartlogic HL-SiteManager allows remote attackers to execute arbitrary SQL commands via unknown vectors. CWE-89
SQL Injection 		CVE-2010-1331 2017-08-17 10:32 2010-04-10 Show GitHub Exploit DB Packet Storm
347766 - heartlogic hl-sitemanager Per: http://jvndb.jvn.jp/en/contents/2010/JVNDB-2010-000010.html '[Do not use HL-SiteManager] As patches will not be provided, users are recommended to discontinue use of HL-SiteManager and s… CWE-89
SQL Injection 		CVE-2010-1331 2017-08-17 10:32 2010-04-10 Show GitHub Exploit DB Packet Storm
347767 - prettybook prettyformmail Cross-site scripting (XSS) vulnerability in PrettyBook PrettyFormMail allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2010-1332 2017-08-17 10:32 2010-04-10 Show GitHub Exploit DB Packet Storm
347768 - prettybook prettyformmail Per: http://jvndb.jvn.jp/en/contents/2010/JVNDB-2010-000007.html 'Solution [Do not use PrettyFormMail] As patches will not be provided, users are recommended to discontinue use of Pretty… CWE-79
Cross-site Scripting 		CVE-2010-1332 2017-08-17 10:32 2010-04-10 Show GitHub Exploit DB Packet Storm
347769 - almas compiere Multiple cross-site scripting (XSS) vulnerabilities in Almas Inc. Compiere J300_A02 and earlier allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2010-1333 2017-08-17 10:32 2010-04-10 Show GitHub Exploit DB Packet Storm
347770 - miftahovn insky_cms Multiple PHP remote file inclusion vulnerabilities in Insky CMS 006-0111, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the ROOT parameter to (1)… CWE-94
Code Injection 		CVE-2010-1335 2017-08-17 10:32 2010-04-10 Show GitHub Exploit DB Packet Storm