Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 17, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
711 4.7 警告
Local 		ImageMagick ImageMagick ImageMagickにおける無限ループに関する脆弱性 CWE-835
無限ループ 		CVE-2026-48733 2026-06-12 14:46 2026-06-10 Show GitHub Exploit DB Packet Storm
712 5.5 警告
Local 		ImageMagick ImageMagick ImageMagickにおける再帰制御に関する脆弱性 CWE-674
不適切な再帰制御 		CVE-2026-48734 2026-06-12 14:46 2026-06-10 Show GitHub Exploit DB Packet Storm
713 5.9 警告
Network 		ImageMagick ImageMagick ImageMagickにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-48994 2026-06-12 14:46 2026-06-10 Show GitHub Exploit DB Packet Storm
714 7.5 重要
Network 		ImageMagick ImageMagick ImageMagickにおける入力確認に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2026-49218 2026-06-12 14:46 2026-06-10 Show GitHub Exploit DB Packet Storm
715 5.5 警告
Local 		ImageMagick ImageMagick ImageMagickにおける複数の脆弱性 CWE-200
CWE-22
CWE-78
CWE-863
CVE-2026-49219 2026-06-12 14:46 2026-06-10 Show GitHub Exploit DB Packet Storm
716 7.5 重要
Network 		NLnet Labs Routinator NLnet LabsのRoutinatorにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-49233 2026-06-12 14:46 2026-06-8 Show GitHub Exploit DB Packet Storm
717 7.5 重要
Network 		NLnet Labs Routinator NLnet LabsのRoutinatorにおける入力確認に関する脆弱性 CWE-20
CWE-noinfo
CVE-2026-49234 2026-06-12 14:46 2026-06-8 Show GitHub Exploit DB Packet Storm
718 7.5 重要
Network 		NLnet Labs Routinator NLnet LabsのRoutinatorにおける例外的な状態の処理に関する脆弱性 CWE-755
例外的な状態における不適切な処理 		CVE-2026-49235 2026-06-12 14:46 2026-06-8 Show GitHub Exploit DB Packet Storm
719 5.5 警告
Local 		NSA Ghidra NSAのGhidraにおける無限ループに関する脆弱性 CWE-835
無限ループ 		CVE-2026-49495 2026-06-12 14:46 2026-06-10 Show GitHub Exploit DB Packet Storm
720 6.1 警告
Local 		NSA Ghidra NSAのGhidraにおける解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-49496 2026-06-12 14:45 2026-06-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 17, 2026, 4:19 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
310001 - deltascripts php_classifieds PHP remote file inclusion vulnerability in tools/phpmailer/class.phpmailer.php in PHP Classifieds 7.3 allows remote attackers to execute arbitrary PHP code via a URL in the lang_path parameter. CWE-94
Code Injection 		CVE-2010-4914 2024-11-21 10:22 2011-10-8 Show GitHub Exploit DB Packet Storm
310002 - coldgen coldusergroup Cross-site scripting (XSS) vulnerability in the search feature in ColdGen ColdUserGroup 1.06 allows remote attackers to inject arbitrary web script or HTML via the Keywords parameter. NOTE: some of … CWE-79
Cross-site Scripting 		CVE-2010-4913 2024-11-21 10:22 2011-10-8 Show GitHub Exploit DB Packet Storm
310003 - discuz ucenter_home SQL injection vulnerability in shop.php in UCenter Home 2.0 allows remote attackers to execute arbitrary SQL commands via the shopid parameter in a view action. CWE-89
SQL Injection 		CVE-2010-4912 2024-11-21 10:22 2011-10-8 Show GitHub Exploit DB Packet Storm
310004 - sellatsite php_classifieds_ads SQL injection vulnerability in classi/detail.php in PHP Classifieds Ads allows remote attackers to execute arbitrary SQL commands via the sid parameter. CWE-89
SQL Injection 		CVE-2010-4911 2024-11-21 10:22 2011-10-8 Show GitHub Exploit DB Packet Storm
310005 - coldgen coldcalendar SQL injection vulnerability in index.cfm in ColdGen ColdCalendar 2.06 allows remote attackers to execute arbitrary SQL commands via the EventID parameter in a ViewEventDetails action. CWE-89
SQL Injection 		CVE-2010-4910 2024-11-21 10:22 2011-10-8 Show GitHub Exploit DB Packet Storm
310006 - mechbunny paysitereviewcms Multiple cross-site scripting (XSS) vulnerabilities in PaysiteReviewCMS 1.1 allow remote attackers to inject arbitrary web script or HTML via the (1) q parameter to search.php or the (2) image parame… CWE-79
Cross-site Scripting 		CVE-2010-4909 2024-11-21 10:22 2011-10-8 Show GitHub Exploit DB Packet Storm
310007 - virtuenetz virtue_shopping_mall SQL injection vulnerability in detail.php in Virtue Shopping Mall allows remote attackers to execute arbitrary SQL commands via the prodid parameter. CWE-89
SQL Injection 		CVE-2010-4908 2024-11-21 10:22 2011-10-8 Show GitHub Exploit DB Packet Storm
310008 - zenphoto zenphoto Cross-site scripting (XSS) vulnerability in zp-core/admin.php in Zenphoto 1.3 allows remote attackers to inject arbitrary web script or HTML via the user parameter. NOTE: the from parameter is alrea… CWE-79
Cross-site Scripting 		CVE-2010-4907 2024-11-21 10:22 2011-10-8 Show GitHub Exploit DB Packet Storm
310009 - zenphoto zenphoto SQL injection vulnerability in zp-core/full-image.php in Zenphoto 1.3 and 1.3.1.2 allows remote attackers to execute arbitrary SQL commands via the a parameter. NOTE: some of these details are obtai… CWE-89
SQL Injection 		CVE-2010-4906 2024-11-21 10:22 2011-10-8 Show GitHub Exploit DB Packet Storm
310010 - softbizscripts article_directory_script SQL injection vulnerability in article_details.php in Softbiz Article Directory Script allows remote attackers to execute arbitrary SQL commands via the sbiz_id parameter. CWE-89
SQL Injection 		CVE-2010-4905 2024-11-21 10:22 2011-10-8 Show GitHub Exploit DB Packet Storm