Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 19, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
751 8.7 重要
Network 		GitLab.org GitLab GitLab.orgのGitLabにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-6552 2026-06-12 14:44 2026-06-11 Show GitHub Exploit DB Packet Storm
752 3.7
Network 		GitLab.org GitLab GitLab.orgのGitLabにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-6976 2026-06-12 14:44 2026-06-11 Show GitHub Exploit DB Packet Storm
753 7.5 重要
Network 		GitLab.org GitLab GitLab.orgのGitLabにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-7250 2026-06-12 14:44 2026-06-11 Show GitHub Exploit DB Packet Storm
754 8.7 重要
Network 		GitLab.org GitLab GitLab.orgのGitLabにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-8589 2026-06-12 14:44 2026-06-11 Show GitHub Exploit DB Packet Storm
755 6.5 警告
Network 		GitLab.org GitLab GitLab.orgのGitLabにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-9204 2026-06-12 14:44 2026-06-11 Show GitHub Exploit DB Packet Storm
756 4.3 警告
Network 		GitLab.org GitLab GitLab.orgのGitLabにおける置換文字列の無害化に関する脆弱性 CWE-153
置換文字列の不適切な無害化 		CVE-2026-9694 2026-06-12 14:44 2026-06-11 Show GitHub Exploit DB Packet Storm
757 7.8 重要
Local 		The Open Group Unix opengroupのUnixにおける古典的バッファオーバーフローの脆弱性 CWE-120
古典的バッファオーバーフロー 		CVE-2025-71263 2026-06-12 14:35 2026-03-13 Show GitHub Exploit DB Packet Storm
758 7.5 重要
Network 		Dana Powers (dpkp) kafka-python Dana Powers (dpkp)のkafka-pythonにおける過剰なサイズ値のメモリ割り当てに関する脆弱性 CWE-789
過剰なサイズ値のメモリ割り当て 		CVE-2026-10142 2026-06-12 14:35 2026-06-10 Show GitHub Exploit DB Packet Storm
759 7.5 重要
Network 		Dana Powers (dpkp) kafka-python Dana Powers (dpkp)のkafka-pythonにおけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2026-10143 2026-06-12 14:35 2026-06-10 Show GitHub Exploit DB Packet Storm
760 7.8 重要
Local 		マイクロソフト Microsoft Office 2024 Long-Term Servicing Channel Edition
Microsoft Office 2021 Long Term Servicing Channel Edition
Microsoft&nb… 		Microsoft Excel のリモートでコードが実行される脆弱性 CWE-843
型の取り違え 		CVE-2026-44817 2026-06-12 14:35 2026-06-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 19, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
309851 - google chrome The Cascading Style Sheets (CSS) implementation in Google Chrome 4 does not properly handle the :visited pseudo-class, which allows remote attackers to obtain sensitive information about visited web … CWE-200
Information Exposure 		CVE-2010-5069 2024-11-21 10:22 2011-12-8 Show GitHub Exploit DB Packet Storm
309852 - opera opera_browser The Cascading Style Sheets (CSS) implementation in Opera 10.5 does not properly handle the :visited pseudo-class, which allows remote attackers to obtain sensitive information about visited web pages… CWE-200
Information Exposure 		CVE-2010-5068 2024-11-21 10:22 2011-12-8 Show GitHub Exploit DB Packet Storm
309853 - mh_products kleinanzeigenmarkt SQL injection vulnerability in search.php in MH Products kleinanzeigenmarkt allows remote attackers to execute arbitrary SQL commands via the c parameter. CWE-89
SQL Injection 		CVE-2010-5062 2024-11-21 10:22 2011-11-23 Show GitHub Exploit DB Packet Storm
309854 - rsstatic rsstatic SQL injection vulnerability in index.php in RSStatic allows remote attackers to execute arbitrary SQL commands via the maxarticles parameter. CWE-89
SQL Injection 		CVE-2010-5061 2024-11-21 10:22 2011-11-23 Show GitHub Exploit DB Packet Storm
309855 - internet-works nus_newssystem SQL injection vulnerability in Nus.php in NUs Newssystem 1.02 allows remote attackers to execute arbitrary SQL commands via the id parameter. CWE-89
SQL Injection 		CVE-2010-5060 2024-11-21 10:22 2011-11-23 Show GitHub Exploit DB Packet Storm
309856 - cmscout cmscout SQL injection vulnerability in index.php in CMScout 2.0.8 allows remote attackers to execute arbitrary SQL commands via the album parameter in a photos action. CWE-89
SQL Injection 		CVE-2010-5059 2024-11-21 10:22 2011-11-23 Show GitHub Exploit DB Packet Storm
309857 - alephsystem cms_ariadna SQL injection vulnerability in detResolucion.php in CMS Ariadna 1.1 allows remote attackers to execute arbitrary SQL commands via the res_id parameter. NOTE: the provenance of this information is un… CWE-89
SQL Injection 		CVE-2010-5058 2024-11-21 10:22 2011-11-23 Show GitHub Exploit DB Packet Storm
309858 - alephsystem cms_ariadna SQL injection vulnerability in detResolucion.php in CMS Ariadna 1.1 allows remote attackers to execute arbitrary SQL commands via the tipodoc_id parameter. CWE-89
SQL Injection 		CVE-2010-5057 2024-11-21 10:22 2011-11-23 Show GitHub Exploit DB Packet Storm
309859 - gbu_grafici com_gbufacebook SQL injection vulnerability in the GBU Facebook (com_gbufacebook) component 1.0.5 for Joomla! allows remote attackers to execute arbitrary SQL commands via the face_id parameter in a show_face action… CWE-89
SQL Injection 		CVE-2010-5056 2024-11-21 10:22 2011-11-23 Show GitHub Exploit DB Packet Storm
309860 - almnzm almnzm SQL injection vulnerability in index.php in Almnzm 2.1 allows remote attackers to execute arbitrary SQL commands via the id parameter. CWE-89
SQL Injection 		CVE-2010-5055 2024-11-21 10:22 2011-11-23 Show GitHub Exploit DB Packet Storm