Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 20, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
541 6.5 警告
Network 		Apache Software Foundation Apache CXF Apache Software FoundationのApache CXFにおけるデジタル署名の検証に関する脆弱性 CWE-347
デジタル署名の不適切な検証 		CVE-2026-50634 2026-06-15 11:15 2026-06-12 Show GitHub Exploit DB Packet Storm
542 7.5 重要
Network 		Apache Software Foundation Apache CXF Apache Software FoundationのApache CXFにおけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2026-50645 2026-06-15 11:15 2026-06-12 Show GitHub Exploit DB Packet Storm
543 8.8 重要
Network 		OpenClaw OpenClaw OpenClawにおけるTime-of-check Time-of-use (TOCTOU) 競合状態の脆弱性 CWE-367
Time-of-check Time-of-use (TOCTOU) 競合状態 		CVE-2026-53806 2026-06-15 11:15 2026-06-11 Show GitHub Exploit DB Packet Storm
544 8.8 重要
Network 		OpenClaw OpenClaw OpenClawにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-53807 2026-06-15 11:14 2026-06-11 Show GitHub Exploit DB Packet Storm
545 6.5 警告
Network 		OpenClaw OpenClaw OpenClawにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-53808 2026-06-15 11:14 2026-06-11 Show GitHub Exploit DB Packet Storm
546 3.8
Local 		OpenClaw OpenClaw OpenClawにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-53809 2026-06-15 11:14 2026-06-11 Show GitHub Exploit DB Packet Storm
547 8.8 重要
Network 		OpenClaw OpenClaw OpenClawにおける信頼できない制御領域からの機能の組み込みに関する脆弱性 CWE-829
信頼性のない制御領域からの機能の組み込み 		CVE-2026-53810 2026-06-15 11:14 2026-06-11 Show GitHub Exploit DB Packet Storm
548 8.8 重要
Network 		OpenClaw OpenClaw OpenClawにおけるスプーフィングによる認証回避に関する脆弱性 CWE-290
スプーフィングによる認証回避 		CVE-2026-53811 2026-06-15 11:14 2026-06-11 Show GitHub Exploit DB Packet Storm
549 7.7 重要
Network 		OpenClaw OpenClaw OpenClawにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-53812 2026-06-15 11:14 2026-06-11 Show GitHub Exploit DB Packet Storm
550 7.8 重要
Local 		OpenClaw OpenClaw OpenClawにおける制御されていない検索パスの要素に関する脆弱性 CWE-427
制御されていない検索パスの要素 		CVE-2026-53813 2026-06-15 11:14 2026-06-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 21, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
309641 - binarymoon timthumb Cross-site scripting (XSS) vulnerability in the displayError function in timthumb.php in TimThumb before 1.15 (r85), as used in multiple products, allows remote attackers to inject arbitrary web scri… CWE-79
Cross-site Scripting 		CVE-2010-5303 2024-11-21 10:22 2014-08-22 Show GitHub Exploit DB Packet Storm
309642 - binarymoon timthumb Cross-site scripting (XSS) vulnerability in timthumb.php in TimThumb before 1.15 as of 20100908 (r88), as used in multiple products, allows remote attackers to inject arbitrary web script or HTML via… CWE-79
Cross-site Scripting 		CVE-2010-5302 2024-11-21 10:22 2014-08-22 Show GitHub Exploit DB Packet Storm
309643 - echoping_project echoping Multiple buffer overflows in readline.c in Echoping 6.0.2 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted reply in the (1) TLS_readline o… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2010-5111 2024-11-21 10:22 2014-06-17 Show GitHub Exploit DB Packet Storm
309644 - senkas kolibri Stack-based buffer overflow in Kolibri 2.0 allows remote attackers to execute arbitrary code via a long URI in a HEAD request. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2010-5301 2024-11-21 10:22 2014-06-13 Show GitHub Exploit DB Packet Storm
309645 - jzip jzip Stack-based buffer overflow in Jzip 1.3 through 2.0.0.132900 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long file name in a zip archive. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2010-5300 2024-11-21 10:22 2014-06-11 Show GitHub Exploit DB Packet Storm
309646 - microp_project microp Stack-based buffer overflow in MicroP 0.1.1.1600 allows remote attackers to execute arbitrary code via a crafted .mppl file. NOTE: it has been reported that the overflow is in the lpFileName paramet… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2010-5299 2024-11-21 10:22 2014-05-23 Show GitHub Exploit DB Packet Storm
309647 - fedoraproject
randall_hand 		fedora
yerase\'s_tnef_stream_reader 		Off-by-one error in the DecompressRTF function in ytnef.c in Yerase's TNEF Stream Reader allows remote attackers to cause a denial of service (crash) via a crafted TNEF file, which triggers a buffer … CWE-189
Numeric Errors 		CVE-2010-5109 2024-11-21 10:22 2014-05-6 Show GitHub Exploit DB Packet Storm
309648 - blender blender The undo save quit routine in the kernel in Blender 2.5, 2.63a, and earlier allows local users to overwrite arbitrary files via a symlink attack on the quit.blend temporary file. NOTE: this issue mi… CWE-59
Link Following 		CVE-2010-5105 2024-11-21 10:22 2014-04-28 Show GitHub Exploit DB Packet Storm
309649 - openssl
mariadb
fedoraproject
suse 		openssl
mariadb
fedora
linux_enterprise_server
linux_enterprise_software_development_kit
linux_enterprise_desktop
linux_enterprise_workstation_extension 		Race condition in the ssl3_read_bytes function in s3_pkt.c in OpenSSL through 1.0.1g, when SSL_MODE_RELEASE_BUFFERS is enabled, allows remote attackers to inject data across sessions or cause a denia… CWE-362
Race Condition 		CVE-2010-5298 2024-11-21 10:22 2014-04-15 Show GitHub Exploit DB Packet Storm
309650 - wordpress wordpress WordPress before 3.0.1, when a Multisite installation is used, permanently retains the "site administrators can add users" option once changed, which might allow remote authenticated administrators t… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2010-5297 2024-11-21 10:22 2014-01-21 Show GitHub Exploit DB Packet Storm