Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 7, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1171 9.8 緊急
Network 		Open JS Foundation WebdriverIO Open JS FoundationのWebdriverIOにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-25244 2026-05-21 10:55 2026-05-18 Show GitHub Exploit DB Packet Storm
1172 6.5 警告
Network 		マイクロソフト Power Automate for Desktop Microsoft Power Automate デスクトップの情報漏えいの脆弱性 CWE-200
情報漏えい 		CVE-2026-40374 2026-05-21 10:55 2026-05-12 Show GitHub Exploit DB Packet Storm
1173 7.8 重要
Local 		protobufjs project protobufjs-cli protobufjs projectのprotobufjs-cliにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-42290 2026-05-21 10:55 2026-05-13 Show GitHub Exploit DB Packet Storm
1174 6.1 警告
Network 		beaugunderson ip-address beaugundersonのip-addressにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-42338 2026-05-21 10:55 2026-05-12 Show GitHub Exploit DB Packet Storm
1175 7.6 重要
Network 		PocketBase PocketBase PocketBaseにおける認証に関する脆弱性 CWE-287
不適切な認証 		CVE-2026-44166 2026-05-21 10:55 2026-05-12 Show GitHub Exploit DB Packet Storm
1176 7.2 重要
Network 		German Cancer Research Center (DKFZ) nnU-Net German Cancer Research Center (DKFZ)のnnU-Netにおけるインジェクションに関する脆弱性 CWE-74
インジェクション 		CVE-2026-44246 2026-05-21 10:55 2026-05-12 Show GitHub Exploit DB Packet Storm
1177 8.7 重要
Network 		protobufjs project protobufjs-cli protobufjs projectのprotobufjs-cliにおけるコードインジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2026-44295 2026-05-21 10:55 2026-05-13 Show GitHub Exploit DB Packet Storm
1178 9.8 緊急
Network 		WGDashboard WGDashboard WGDashboardにおける入力確認に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2026-44343 2026-05-21 10:55 2026-05-12 Show GitHub Exploit DB Packet Storm
1179 8.8 重要
Network 		Tabby Tabby TabbyにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-45035 2026-05-21 10:55 2026-05-15 Show GitHub Exploit DB Packet Storm
1180 7 重要
Local 		Tabby Tabby TabbyにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-45036 2026-05-21 10:55 2026-05-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
310971 9.8 CRITICAL
Network 		web-cyradm_project web-cyradm A vulnerability, which was classified as critical, has been found in web-cyradm. Affected by this issue is some unknown functionality of the file auth.inc.php. The manipulation of the argument login/… - CVE-2007-10002 2024-11-21 09:27 2023-01-8 Show GitHub Exploit DB Packet Storm
310972 9.8 CRITICAL
Network 		clamav
debian 		clamav
debian_linux 		There is a possible heap overflow in libclamav/fsg.c before 0.100.0. CWE-787
 Out-of-bounds Write 		CVE-2007-0899 2024-11-21 09:27 2019-11-6 Show GitHub Exploit DB Packet Storm
310973 9.8 CRITICAL
Network 		acme thttpd thttpd 2007 has buffer underflow. CWE-787
 Out-of-bounds Write 		CVE-2007-0158 2024-11-21 09:25 2019-12-28 Show GitHub Exploit DB Packet Storm
310974 6.8 MEDIUM
Adjacent 		gnome
opensuse
suse 		networkmanager
opensuse
linux_enterprise_desktop
linux_enterprise_server 		NetworkManager 0.9.x does not pin a certificate's subject to an ESSID when 802.11X authentication is used. CWE-295
Improper Certificate Validation  		CVE-2006-7246 2024-11-21 09:24 2020-01-28 Show GitHub Exploit DB Packet Storm
310975 5.5 MEDIUM
Local 		gnu glibc The nscd daemon in the GNU C Library (glibc) before version 2.5 does not close incoming client sockets if they cannot be handled by the daemon, allowing local users to carry out a denial of service a… CWE-19
 Data Processing Errors 		CVE-2006-7254 2024-11-21 09:24 2019-04-11 Show GitHub Exploit DB Packet Storm
310976 - gehealthcare infinia_ii GE Healthcare Infinia II has a default password of (1) infinia for the infinia user, (2) #bigguy1 for the acqservice user, (3) dont4get2 for the Administrator user, (4) #bigguy1 for the emergency use… CWE-255
Credentials Management 		CVE-2006-7253 2024-11-21 09:24 2015-08-4 Show GitHub Exploit DB Packet Storm
310977 - joomla com_weblinks SQL injection vulnerability in the Weblinks (com_weblinks) component for Joomla! and Mambo 1.0.9 and earlier allows remote attackers to execute arbitrary SQL commands via the title parameter. CWE-89
SQL Injection 		CVE-2006-7247 2024-11-21 09:24 2012-09-7 Show GitHub Exploit DB Packet Storm
310978 - freebsd
netbsd 		freebsd
netbsd 		Integer overflow in the calloc function in libc/stdlib/malloc.c in jemalloc in libc for FreeBSD 6.4 and NetBSD makes it easier for context-dependent attackers to perform memory-related attacks such a… CWE-189
Numeric Errors 		CVE-2006-7252 2024-11-21 09:24 2012-07-26 Show GitHub Exploit DB Packet Storm
310979 - openssl openssl The mime_hdr_cmp function in crypto/asn1/asn_mime.c in OpenSSL 0.9.8t and earlier allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted S… NVD-CWE-Other
CVE-2006-7250 2024-11-21 09:24 2012-02-29 Show GitHub Exploit DB Packet Storm
310980 - libpng libpng Memory leak in pngwutil.c in libpng 1.2.13beta1, and other versions before 1.2.15beta3, allows context-dependent attackers to cause a denial of service (memory leak or segmentation fault) via a JPEG … CWE-399
 Resource Management Errors 		CVE-2006-7244 2024-11-21 09:24 2011-09-1 Show GitHub Exploit DB Packet Storm