Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 12, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1371	7.5	重要 Network	HKUDS	DeepCode	HKUDSのDeepCodeにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-32847	2026-06-5 10:51	2026-05-28	Show	GitHub Exploit DB Packet Storm

1372	5.3	警告 Network	storage project	storage	NhostのStorageにおける複数の脆弱性	CWE-343 CWE-345	CVE-2026-33221	2026-06-5 10:51	2026-03-20	Show	GitHub Exploit DB Packet Storm

1373	9.8	緊急 Network	Datadog	dd-trace-java	Datadogのdd-trace-javaにおける信頼できないデータのデシリアライゼーションに関する脆弱性	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2026-33728	2026-06-5 10:51	2026-03-27	Show	GitHub Exploit DB Packet Storm

1374	6.1	警告 Network	Carnegie Mellon University (Project Cyrus)	cveClient	Carnegie Mellon University (Project Cyrus)のcveClientにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-35466	2026-06-5 10:51	2026-04-2	Show	GitHub Exploit DB Packet Storm

1375	7.5	重要 Network	Carnegie Mellon University (Project Cyrus)	cveClient	Carnegie Mellon University (Project Cyrus)のcveClientにおける認証情報の不十分な保護に関する脆弱性	CWE-522 認証情報の不十分な保護	CVE-2026-35467	2026-06-5 10:51	2026-04-2	Show	GitHub Exploit DB Packet Storm

1376	7.5	重要 Network	Mosaic5G	Flexric	Mosaic5GのFlexricにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-37226	2026-06-5 10:51	2026-06-1	Show	GitHub Exploit DB Packet Storm

1377	7.5	重要 Network	Mosaic5G	Flexric	Mosaic5GのFlexricにおける到達可能なアサーションに関する脆弱性	CWE-617 到達可能なアサーション	CVE-2026-37228	2026-06-5 10:51	2026-06-1	Show	GitHub Exploit DB Packet Storm

1378	7.5	重要 Network	Mosaic5G	Flexric	Mosaic5GのFlexricにおける到達可能なアサーションに関する脆弱性	CWE-617 到達可能なアサーション	CVE-2026-37229	2026-06-5 10:51	2026-06-1	Show	GitHub Exploit DB Packet Storm

1379	7.5	重要 Network	Mosaic5G	Flexric	Mosaic5GのFlexricにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-37230	2026-06-5 10:51	2026-06-1	Show	GitHub Exploit DB Packet Storm

1380	7.5	重要 Network	Mosaic5G	Flexric	Mosaic5GのFlexricにおける整数アンダーフローの脆弱性	CWE-191 整数アンダーフロー	CVE-2026-37231	2026-06-5 10:51	2026-06-1	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
344831	-	claroline	claroline	PHP remote file inclusion vulnerability in learnPath/include/scormExport.inc.php in Claroline 1.7.4 and earlier allows remote attackers to execute arbitrary PHP code via the includePath parameter.	NVD-CWE-Other	CVE-2006-1596	2017-10-19 10:29	2006-04-3	Show	GitHub Exploit DB Packet Storm

344832	-	xine	xine-lib	Buffer overflow in xine_list_delete_current in libxine 1.14 and earlier, as distributed in xine-lib 1.1.1 and earlier, allows remote attackers to execute arbitrary code via a crafted MPEG stream.	NVD-CWE-Other	CVE-2006-1664	2017-10-19 10:29	2006-04-7	Show	GitHub Exploit DB Packet Storm

344833	-	xbrite	xbrite_members	SQL injection vulnerability in members.php in XBrite Members 1.1 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.	NVD-CWE-Other	CVE-2006-1694	2017-10-19 10:29	2006-04-11	Show	GitHub Exploit DB Packet Storm

344834	-	clansys	clansys	SQL injection vulnerability in member.php in Clansys 1.1 allows remote attackers to execute arbitrary SQL commands via the showid parameter in the member page to index.php.	NVD-CWE-Other	CVE-2006-1708	2017-10-19 10:29	2006-04-11	Show	GitHub Exploit DB Packet Storm

344835	-	design_nation	dnguestbook	SQL injection vulnerability in admin.php in Design Nation DNGuestbook 2.0 allows remote attackers to execute arbitrary SQL commands via the (1) email and (2) id parameters.	NVD-CWE-Other	CVE-2006-1710	2017-10-19 10:29	2006-04-12	Show	GitHub Exploit DB Packet Storm

344836	-	design_nation	dnguestbook	Successful exploitation requires that "magic_quotes_gpc" is disabled.	NVD-CWE-Other	CVE-2006-1710	2017-10-19 10:29	2006-04-12	Show	GitHub Exploit DB Packet Storm

344837	-	sphider	sphider	PHP remote file inclusion vulnerability in admin/configset.php in Sphider 1.3 and earlier, when register_globals is disabled, allows remote attackers to execute arbitrary PHP code via a URL in the se…	NVD-CWE-Other	CVE-2006-1784	2017-10-19 10:29	2006-04-14	Show	GitHub Exploit DB Packet Storm

344838	-	adcentrix	censtore	censtore.cgi in Censtore 7.3.002 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the page parameter.	NVD-CWE-Other	CVE-2006-1799	2017-10-19 10:29	2006-04-18	Show	GitHub Exploit DB Packet Storm

344839	-	phpwebsite	phpwebsite	Directory traversal vulnerability in the loadConfig function in index.php in phpWebSite 0.10.2 and earlier allows remote attackers to include arbitrary local files and execute arbitrary PHP code via …	NVD-CWE-Other	CVE-2006-1819	2017-10-19 10:29	2006-04-18	Show	GitHub Exploit DB Packet Storm

344840	-	php121	php121_instant_messenger	SQL injection vulnerability in php121language.php in PHP121 1.4 allows remote attackers to execute arbitrary SQL commands and execute arbitrary code via the sess_username variable, as set by the php1…	NVD-CWE-Other	CVE-2006-1828	2017-10-19 10:29	2006-04-20	Show	GitHub Exploit DB Packet Storm