Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 14, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
851 7.4 重要
Network 		AsyncHTTPClient project AsyncHTTPClient AsyncHTTPClient projectのAsyncHTTPClientにおける情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2026-45300 2026-06-9 14:14 2026-06-5 Show GitHub Exploit DB Packet Storm
852 8.8 重要
Network 		マイクロソフト Microsoft Copilot Microsoft M365 Copilot Remote Code Execution Vulnerability CWE-77
コマンドインジェクション 		CVE-2026-45497 2026-06-9 14:14 2026-06-4 Show GitHub Exploit DB Packet Storm
853 8.1 重要
Network 		Termix Termix Termixにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-45743 2026-06-9 14:14 2026-06-5 Show GitHub Exploit DB Packet Storm
854 9.9 緊急
Network 		Termix Termix TermixにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-45744 2026-06-9 14:14 2026-06-5 Show GitHub Exploit DB Packet Storm
855 8 重要
Network 		Termix Termix Termixにおける証明書検証に関する脆弱性 CWE-295
不正な証明書検証 		CVE-2026-45745 2026-06-9 14:14 2026-06-5 Show GitHub Exploit DB Packet Storm
856 9 緊急
Network 		Termix Termix Termixにおける複数の脆弱性 CWE-284
CWE-639
CVE-2026-45746 2026-06-9 14:13 2026-06-5 Show GitHub Exploit DB Packet Storm
857 9.8 緊急
Network 		Termix Termix TermixにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-45748 2026-06-9 14:13 2026-06-5 Show GitHub Exploit DB Packet Storm
858 8.1 重要
Network 		Termix Termix Termixにおける単一要素認証の使用に関する脆弱性 CWE-308
単一要素認証の使用 		CVE-2026-45749 2026-06-9 14:13 2026-06-5 Show GitHub Exploit DB Packet Storm
859 9 緊急
Network 		Termix Termix Termixにおける複数の脆弱性 CWE-639
CWE-78
CVE-2026-45750 2026-06-9 14:13 2026-06-5 Show GitHub Exploit DB Packet Storm
860 7.5 重要
Network 		マイクロソフト Copilot Chat (Microsoft Edge) Copilot Chat (Microsoft Edge) の情報漏えいの脆弱性 CWE-74
インジェクション 		CVE-2026-47644 2026-06-9 14:13 2026-06-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
310221 - cstr festival festival_server in Centre for Speech Technology Research (CSTR) Festival, probably 2.0.95-beta and earlier, places a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gai… NVD-CWE-Other
CVE-2010-3996 2024-11-21 10:20 2010-11-6 Show GitHub Exploit DB Packet Storm
310222 - microsoft windows_xp
windows_7
windows_vista
windows_server_2003 		Untrusted search path vulnerability in the Data Access Objects (DAO) library (dao360.dll) in Microsoft Windows XP Professional SP3, Windows Server 2003 R2 Enterprise Edition SP3, Windows Vista Busine… NVD-CWE-Other
CVE-2010-4182 2024-11-21 10:20 2010-11-5 Show GitHub Exploit DB Packet Storm
310223 - yaws yaws Directory traversal vulnerability in Yaws 1.89 allows remote attackers to read arbitrary files via ..\ (dot dot backslash) and other sequences. CWE-22
Path Traversal 		CVE-2010-4181 2024-11-21 10:20 2010-11-5 Show GitHub Exploit DB Packet Storm
310224 - exv2 exv2 Multiple cross-site scripting (XSS) vulnerabilities in eXV2 CMS 2.10 allow remote attackers to inject arbitrary web script or HTML via the (1) rssfeedURL parameter to manual/caferss/example.php and t… CWE-79
Cross-site Scripting 		CVE-2010-4155 2024-11-21 10:20 2010-11-4 Show GitHub Exploit DB Packet Storm
310225 - rhinosoft ftp_voyager Directory traversal vulnerability in Rhino Software, Inc. FTP Voyager 15.2.0.11, and possibly earlier, allows remote FTP servers to write arbitrary files via a "..\" (dot dot backslash) in a filename. CWE-22
Path Traversal 		CVE-2010-4154 2024-11-21 10:20 2010-11-4 Show GitHub Exploit DB Packet Storm
310226 - crossftp crossftp_pro Directory traversal vulnerability in CrossFTP Pro 1.65a, and probably earlier, allows remote FTP servers to write arbitrary files via a "..\" (dot dot backslash) in a filename. CWE-22
Path Traversal 		CVE-2010-4153 2024-11-21 10:20 2010-11-4 Show GitHub Exploit DB Packet Storm
310227 - 4site 4site_cms SQL injection vulnerability in catalog/index.shtml in 4site CMS 2.6, and possibly earlier, allows remote attackers to execute arbitrary SQL commands via the cat parameter. NOTE: the i and th vectors… CWE-89
SQL Injection 		CVE-2010-4152 2024-11-21 10:20 2010-11-4 Show GitHub Exploit DB Packet Storm
310228 - deluxebb deluxebb SQL injection vulnerability in misc.php in DeluxeBB 1.3, and possibly earlier, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the xthedateformat para… CWE-89
SQL Injection 		CVE-2010-4151 2024-11-21 10:20 2010-11-4 Show GitHub Exploit DB Packet Storm
310229 - wsnlinks
wsn 		wsn_links
links 		Multiple SQL injection vulnerabilities in search.php in WSN Links 5.0.x before 5.0.81, 5.1.x before 5.1.51, and 6.0.x before 6.0.1 allow remote attackers to execute arbitrary SQL commands via the (1)… CWE-89
SQL Injection 		CVE-2010-4006 2024-11-21 10:20 2010-11-4 Show GitHub Exploit DB Packet Storm
310230 - deliciousdays cforms Multiple cross-site scripting (XSS) vulnerabilities in wp-content/plugins/cforms/lib_ajax.php in cforms WordPress plugin 11.5 allow remote attackers to inject arbitrary web script or HTML via the (1)… CWE-79
Cross-site Scripting 		CVE-2010-3977 2024-11-21 10:20 2010-11-3 Show GitHub Exploit DB Packet Storm