Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 28, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
5511 5.3 警告
Network 		Eclipse Foundation Vert.x Eclipse FoundationのVert.xにおける複数の脆弱性 CWE-295
CWE-770
CVE-2026-6860 2026-05-14 10:15 2026-05-6 Show GitHub Exploit DB Packet Storm
5512 7.5 重要
Network 		The PHP Group PHP The PHP GroupのPHPにおける境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2026-7258 2026-05-14 10:15 2026-05-10 Show GitHub Exploit DB Packet Storm
5513 6.5 警告
Network 		The PHP Group PHP The PHP GroupのPHPにおけるNULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2026-7259 2026-05-14 10:15 2026-05-10 Show GitHub Exploit DB Packet Storm
5514 9.8 緊急
Network 		The PHP Group PHP The PHP GroupのPHPにおける解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-7261 2026-05-14 10:15 2026-05-10 Show GitHub Exploit DB Packet Storm
5515 7.5 重要
Network 		The PHP Group PHP The PHP GroupのPHPにおけるNULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2026-7262 2026-05-14 10:15 2026-05-10 Show GitHub Exploit DB Packet Storm
5516 7.5 重要
Network 		The PHP Group PHP The PHP GroupのPHPにおける複数の脆弱性 CWE-404
CWE-835
CVE-2026-7263 2026-05-14 10:15 2026-05-10 Show GitHub Exploit DB Packet Storm
5517 4.4 警告
Local 		Ivanti secure access client Ivantiのsecure access clientにおける重要なリソースに対する不適切なパーミッションの割り当てに関する脆弱性 CWE-732
重要なリソースに対する不適切なパーミッションの割り当て 		CVE-2026-7431 2026-05-14 10:15 2026-05-12 Show GitHub Exploit DB Packet Storm
5518 7 重要
Local 		Ivanti secure access client Ivantiのsecure access clientにおける競合状態に関する脆弱性 CWE-362
競合状態 		CVE-2026-7432 2026-05-14 10:14 2026-05-12 Show GitHub Exploit DB Packet Storm
5519 8.8 重要
Network 		SUN NET TECHNOLOGIES CO., LTD. eHRD CTMS SUN NET TECHNOLOGIES CO., LTD.のeHRD CTMSにおけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2026-7489 2026-05-14 10:14 2026-05-2 Show GitHub Exploit DB Packet Storm
5520 7.5 重要
Network 		The PHP Group PHP The PHP GroupのPHPにおける複数の脆弱性 CWE-125
CWE-190
CVE-2026-7568 2026-05-14 10:14 2026-05-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 28, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
313961 - strongswan strongswan The IKE daemon in strongSwan 4.3.x before 4.3.7 and 4.4.x before 4.4.1 does not properly check the return values of snprintf calls, which allows remote attackers to execute arbitrary code via crafted… CWE-94
Code Injection 		CVE-2010-2628 2024-11-21 10:17 2010-08-21 Show GitHub Exploit DB Packet Storm
313962 - uzbl uzbl The default configuration of the <Button2> binding in Uzbl before 2010.08.05 does not properly use the @SELECTED_URI feature, which allows user-assisted remote attackers to execute arbitrary commands… CWE-94
Code Injection 		CVE-2010-2809 2024-11-21 10:17 2010-08-20 Show GitHub Exploit DB Packet Storm
313963 - freetype freetype Unspecified vulnerability in FreeType 2.3.9, and other versions before 2.4.2, allows remote attackers to cause a denial of service via vectors involving nested Standard Encoding Accented Character (a… NVD-CWE-noinfo
CVE-2010-3054 2024-11-21 10:17 2010-08-20 Show GitHub Exploit DB Packet Storm
313964 - freetype freetype bdf/bdflib.c in FreeType before 2.4.2 allows remote attackers to cause a denial of service (application crash) via a crafted BDF font file, related to an attempted modification of a value in a static… CWE-20
 Improper Input Validation  		CVE-2010-3053 2024-11-21 10:17 2010-08-20 Show GitHub Exploit DB Packet Storm
313965 - squirrelmail squirrelmail functions/imap_general.php in SquirrelMail before 1.4.21 does not properly handle 8-bit characters in passwords, which allows remote attackers to cause a denial of service (disk consumption) by makin… CWE-399
 Resource Management Errors 		CVE-2010-2813 2024-11-21 10:17 2010-08-20 Show GitHub Exploit DB Packet Storm
313966 - freetype
apple
canonical 		freetype
mac_os_x
iphone_os
tvos
ubuntu_linux 		Buffer overflow in the Mac_Read_POST_Resource function in base/ftobjs.c in FreeType before 2.4.2 allows remote attackers to cause a denial of service (memory corruption and application crash) or poss… CWE-120
Classic Buffer Overflow 		CVE-2010-2808 2024-11-21 10:17 2010-08-20 Show GitHub Exploit DB Packet Storm
313967 - freetype
canonical
apple 		freetype
ubuntu_linux
mac_os_x
iphone_os
tvos 		FreeType before 2.4.2 uses incorrect integer data types during bounds checking, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a… CWE-681
 Incorrect Conversion between Numeric Types 		CVE-2010-2807 2024-11-21 10:17 2010-08-20 Show GitHub Exploit DB Packet Storm
313968 - freetype
canonical
apple 		freetype
ubuntu_linux
mac_os_x
iphone_os
tvos 		Array index error in the t42_parse_sfnts function in type42/t42parse.c in FreeType before 2.4.2 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary … CWE-129
 Improper Validation of Array Index 		CVE-2010-2806 2024-11-21 10:17 2010-08-20 Show GitHub Exploit DB Packet Storm
313969 - freetype
canonical
apple 		freetype
ubuntu_linux
mac_os_x
iphone_os
tvos 		The FT_Stream_EnterFrame function in base/ftstream.c in FreeType before 2.4.2 does not properly validate certain position values, which allows remote attackers to cause a denial of service (applicati… CWE-20
 Improper Input Validation  		CVE-2010-2805 2024-11-21 10:17 2010-08-20 Show GitHub Exploit DB Packet Storm
313970 - znc znc Multiple unspecified vulnerabilities in ZNC 0.092 allow remote attackers to cause a denial of service (exception and daemon crash) via unknown vectors related to "unsafe substr() calls." NVD-CWE-noinfo
CVE-2010-2934 2024-11-21 10:17 2010-08-18 Show GitHub Exploit DB Packet Storm