Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 22, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
5211	9.8	緊急 Network	Electerm project	Electerm	Electerm projectのElectermにおけるコマンドインジェクションの脆弱性	CWE-77 コマンドインジェクション	CVE-2026-41501	2026-05-11 11:09	2026-05-8	Show	GitHub Exploit DB Packet Storm

5212	7.8	重要 Local	Sebastian Bergmann	PHPUnit	Sebastian BergmannのPHPUnitにおける複数の脆弱性	CWE-88 CWE-93	CVE-2026-41570	2026-05-11 11:09	2026-05-8	Show	GitHub Exploit DB Packet Storm

5213	7.5	重要 Network	Zcash Foundation	Zebra-chain Zebrad	Zcash FoundationのZebra-chain等の複数製品における到達可能なアサーションに関する脆弱性	CWE-617 到達可能なアサーション	CVE-2026-41584	2026-05-11 11:09	2026-05-8	Show	GitHub Exploit DB Packet Storm

5214	5.3	警告 Network	projectdiscovery	Nuclei	ProjectDiscovery, Inc.のNucleiにおけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2026-41645	2026-05-11 11:09	2026-05-8	Show	GitHub Exploit DB Packet Storm

5215	5.5	警告 Local	projectdiscovery	Nuclei	ProjectDiscovery, Inc.のNucleiにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-41646	2026-05-11 11:09	2026-05-8	Show	GitHub Exploit DB Packet Storm

5216	8.1	重要 Network		-	OpenC3のOpenC3 COSMOSにおける未検証のパスワード変更に関する脆弱性	CWE-620 未検証のパスワード変更	CVE-2026-42084	2026-05-11 11:09	2026-05-4	Show	GitHub Exploit DB Packet Storm

5217	4.3	警告 Network		-	OpenC3のOpenC3 COSMOSにおける相対パストラバーサルの脆弱性	CWE-23 相対的パストラバーサル	CVE-2026-42085	2026-05-11 11:09	2026-05-4	Show	GitHub Exploit DB Packet Storm

5218	4.6	警告 Network		-	OpenC3のOpenC3 COSMOSにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-42086	2026-05-11 11:09	2026-05-4	Show	GitHub Exploit DB Packet Storm

5219	9.6	緊急 Network		-	OpenC3のOpenC3 COSMOSにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2026-42087	2026-05-11 11:09	2026-05-4	Show	GitHub Exploit DB Packet Storm

5220	9.8	緊急 Network	litellm	litellm	LiteLLMにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2026-42208	2026-05-11 11:09	2026-05-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 23, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
347601	-	timeclock-software	employee_timeclock_software	Cross-site request forgery (CSRF) vulnerability in add_user.php in Employee Timeclock Software 0.99 allows remote attackers to hijack the authentication of an administrator for requests that create n…	CWE-352 Origin Validation Error	CVE-2010-0707	2017-08-17 10:32	2010-02-26	Show	GitHub Exploit DB Packet Storm

347602	-	sun	java_system_directory_server	Multiple unspecified vulnerabilities in (1) ns-slapd and (2) slapd.exe in Sun Directory Server Enterprise Edition 7.0, Sun Java System Directory Server 5.2, and Sun Java System Directory Server Enter…	NVD-CWE-noinfo	CVE-2010-0708	2017-08-17 10:32	2010-02-26	Show	GitHub Exploit DB Packet Storm

347603	-	limny	limny	Multiple cross-site request forgery (CSRF) vulnerabilities in Limny 2.0 allow remote attackers to (1) hijack the authentication of users or administrators for requests that change the email address o…	CWE-352 Origin Validation Error	CVE-2010-0709	2017-08-17 10:32	2010-02-26	Show	GitHub Exploit DB Packet Storm

347604	-	zenoss	zenoss	Multiple SQL injection vulnerabilities in zport/dmd/Events/getJSONEventsInfo in Zenoss 2.3.3, and other versions before 2.5, allow remote authenticated users to execute arbitrary SQL commands via the…	CWE-89 SQL Injection	CVE-2010-0712	2017-08-17 10:32	2010-02-27	Show	GitHub Exploit DB Packet Storm

347605	-	moinmo	moinmoin	The default configuration of cfg.packagepages_actions_excluded in MoinMoin before 1.8.7 does not prevent unsafe package actions, which has unspecified impact and attack vectors.	CWE-16 Configuration	CVE-2010-0717	2017-08-17 10:32	2010-02-27	Show	GitHub Exploit DB Packet Storm

347606	-	microsoft	windows_media_player	Buffer overflow in Microsoft Windows Media Player 9 and 11.0.5721.5145 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted .mpg file.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2010-0718	2017-08-17 10:32	2010-02-27	Show	GitHub Exploit DB Packet Storm

347607	-	microsoft	windows_2000 windows_2003_server windows_7 windows_server_2008 windows_vista windows_xp	An unspecified API in Microsoft Windows 2000, Windows XP, Windows Server 2003, Windows Vista, Windows Server 2008, and Windows 7 does not validate arguments, which allows local users to cause a denia…	CWE-20 Improper Input Validation	CVE-2010-0719	2017-08-17 10:32	2010-02-27	Show	GitHub Exploit DB Packet Storm

347608	-	systemsoftware	erotik_auktionshaus	SQL injection vulnerability in news.php in Erotik Auktionshaus allows remote attackers to execute arbitrary SQL commands via the id parameter.	CWE-89 SQL Injection	CVE-2010-0720	2017-08-17 10:32	2010-02-27	Show	GitHub Exploit DB Packet Storm

347609	-	systemsoftware	auktionshaus_gelb	SQL injection vulnerability in news.php in Auktionshaus Gelb 3.0 allows remote attackers to execute arbitrary SQL commands via the id parameter.	CWE-89 SQL Injection	CVE-2010-0721	2017-08-17 10:32	2010-02-27	Show	GitHub Exploit DB Packet Storm

347610	-	mhproducts	php_auktion_pro	SQL injection vulnerability in news.php in Php Auktion Pro allows remote attackers to execute arbitrary SQL commands via the id parameter.	CWE-89 SQL Injection	CVE-2010-0722	2017-08-17 10:32	2010-02-27	Show	GitHub Exploit DB Packet Storm