Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 29, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
5971 6.5 警告
Network 		Mozilla Foundation Mozilla Firefox Mozilla FoundationのMozilla Firefoxにおけるバッファエラーの脆弱性 CWE-119
バッファエラー 		CVE-2026-8388 2026-05-14 10:13 2026-05-12 Show GitHub Exploit DB Packet Storm
5972 8.5 重要
Network 		Guardsix ODBC
Logpoint 		GuardsixのLogpoint等の複数製品におけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-35548 2026-05-14 10:13 2026-04-22 Show GitHub Exploit DB Packet Storm
5973 6.5 警告
Network 		Raindrop Raindrop Raindropにおける複数の脆弱性 CWE-20
CWE-284
CVE-2026-31192 2026-05-14 10:13 2026-04-22 Show GitHub Exploit DB Packet Storm
5974 7.3 重要
Network 		D-Link Systems, Inc. DCS-932L Firmware D-Link CorporationのDCS-932L Firmwareにおけるコマンドインジェクションの脆弱性 CWE-77
コマンドインジェクション 		CVE-2026-36983 2026-05-14 10:13 2026-05-11 Show GitHub Exploit DB Packet Storm
5975 7.5 重要
Network 		Niko Fohr (fohrloop) dash-uploader Niko Fohr (fohrloop)のdash-uploaderにおける複数の脆弱性 CWE-400
CWE-670
CWE-noinfo
CVE-2026-38361 2026-05-14 10:12 2026-05-8 Show GitHub Exploit DB Packet Storm
5976 9.8 緊急
Network 		Mauricio Poppe (mauriciopoppe) math-codegen Mauricio Poppe (mauriciopoppe)のmath-codegenにおけるコードインジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2026-41507 2026-05-14 10:12 2026-05-8 Show GitHub Exploit DB Packet Storm
5977 9.8 緊急
Network 		CROSS-CRYPT.COM CROSS CROSS-CRYPT.COMのCROSSにおける複数の脆弱性 CWE-121
CWE-122
CVE-2026-41509 2026-05-14 10:12 2026-05-8 Show GitHub Exploit DB Packet Storm
5978 7.5 重要
Network 		DCIT CryptX DCITのCryptXにおける複数の脆弱性 CWE-335
CWE-338
CVE-2026-41564 2026-05-14 10:12 2026-04-23 Show GitHub Exploit DB Packet Storm
5979 6.1 警告
Network 		th30d4y w4nn4d13/ip th30d4yのw4nn4d13/ipにおける複数の脆弱性 CWE-79
CWE-79
CWE-80
CVE-2026-41575 2026-05-14 10:12 2026-05-8 Show GitHub Exploit DB Packet Storm
5980 7.8 重要
Local 		dail8859 Notepad Next dail8859のNotepad Nextにおけるコードインジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2026-42214 2026-05-14 10:12 2026-05-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 29, 2026, 4:19 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
350141 - ajsquare aj_shopping_cart SQL injection vulnerability in index.php in AJ Shopping Cart 1.0 allows remote attackers to execute arbitrary SQL commands via the maincatid parameter in a showmaincatlanding action. CWE-89
SQL Injection 		CVE-2010-1876 2017-08-17 10:32 2010-05-12 Show GitHub Exploit DB Packet Storm
350142 - jtmreseller com_jtm SQL injection vulnerability in the JTM Reseller (com_jtm) component 1.9 Beta for Joomla! allows remote attackers to execute arbitrary SQL commands via the author parameter in a search action to index… CWE-89
SQL Injection 		CVE-2010-1877 2017-08-17 10:32 2010-05-12 Show GitHub Exploit DB Packet Storm
350143 - blueflyingfish.no-ip com_orgchart Directory traversal vulnerability in the OrgChart (com_orgchart) component 1.0.0 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter to index.ph… CWE-22
Path Traversal 		CVE-2010-1878 2017-08-17 10:32 2010-05-12 Show GitHub Exploit DB Packet Storm
350144 - php php The Zend Engine in PHP 5.2 through 5.2.13 and 5.3 through 5.3.2 allows context-dependent attackers to obtain sensitive information by interrupting the handler for the (1) ZEND_BW_XOR opcode (shift_le… CWE-200
Information Exposure 		CVE-2010-1914 2017-08-17 10:32 2010-05-12 Show GitHub Exploit DB Packet Storm
350145 - php php The preg_quote function in PHP 5.2 through 5.2.13 and 5.3 through 5.3.2 allows context-dependent attackers to obtain sensitive information (memory contents) by causing a userspace interruption of an … CWE-200
Information Exposure 		CVE-2010-1915 2017-08-17 10:32 2010-05-12 Show GitHub Exploit DB Packet Storm
350146 - php php Stack consumption vulnerability in PHP 5.2 through 5.2.13 and 5.3 through 5.3.2 allows context-dependent attackers to cause a denial of service (PHP crash) via a crafted first argument to the fnmatch… CWE-399
 Resource Management Errors 		CVE-2010-1917 2017-08-17 10:32 2010-05-12 Show GitHub Exploit DB Packet Storm
350147 - phpscripte24 web_social_network_freunde_community SQL injection vulnerability in user.php in Hi Web Wiesbaden Web 2.0 Social Network Freunde Community System allows remote attackers to execute arbitrary SQL commands via the id parameter in a showgal… CWE-89
SQL Injection 		CVE-2010-1923 2017-08-17 10:32 2010-05-13 Show GitHub Exploit DB Packet Storm
350148 - phpscripte24 live_shopping_multi_portal_system SQL injection vulnerability in index.php in Hi Web Wiesbaden Live Shopping Multi Portal System allows remote attackers to execute arbitrary SQL commands via the artikel parameter. CWE-89
SQL Injection 		CVE-2010-1924 2017-08-17 10:32 2010-05-13 Show GitHub Exploit DB Packet Storm
350149 - openmairie openplanning Directory traversal vulnerability in scr/soustab.php in openMairie openPlanning 1.00, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via direct… CWE-22
Path Traversal 		CVE-2010-1928 2017-08-17 10:32 2010-05-13 Show GitHub Exploit DB Packet Storm
350150 - openmairie openpresse Directory traversal vulnerability in scr/soustab.php in openMairie Openpresse 1.01, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via director… CWE-22
Path Traversal 		CVE-2010-1935 2017-08-17 10:32 2010-05-13 Show GitHub Exploit DB Packet Storm