Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 13, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1931	9.8	緊急 Network	IBM	IBM HTTP Server	IBMのIBM HTTP Serverにおけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2026-9170	2026-05-29 11:15	2026-05-26	Show	GitHub Exploit DB Packet Storm

1932	5.3	警告 Local	squirrel-lang	squirrel	squirrel-langのsquirrelにおける複数の脆弱性	CWE-119 CWE-122	CVE-2026-9541	2026-05-29 11:15	2026-05-26	Show	GitHub Exploit DB Packet Storm

1933	7.8	重要 Local	OpenVPN Technologies	OpenVPN Connect	OpenVPN TechnologiesのOpenVPN Connectにおける複数の脆弱性	CWE-267 CWE-270 CWE-648 CWE-78	CVE-2026-9560	2026-05-29 11:15	2026-05-26	Show	GitHub Exploit DB Packet Storm

1934	7.5	重要 Network	Honeywell International Inc.	Control Network Module Firmware	Honeywell International Inc.のControl Network Module Firmwareにおけるファイルおよびディレクトリ情報の漏えいに関する脆弱性	CWE-538 ファイルおよびディレクトリ情報の漏えい	CVE-2026-5434	2026-05-28 14:45	2026-05-21	Show	GitHub Exploit DB Packet Storm

1935	7.5	重要 Network	デル	elastic cloud storage	デルのelastic cloud storageにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2022-31231	2026-05-28 14:45	2026-05-22	Show	GitHub Exploit DB Packet Storm

1936	7.8	重要 Local	Check MK	Check MK	Check MKにおける制御されていない検索パスの要素に関する脆弱性	CWE-427 制御されていない検索パスの要素	CVE-2024-47091	2026-05-28 14:45	2026-05-13	Show	GitHub Exploit DB Packet Storm

1937	5.5	警告 Local		-	AutoGPTのAutoGPT Platformにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2025-32425	2026-05-28 14:44	2026-05-13	Show	GitHub Exploit DB Packet Storm

1938	6.5	警告 Network	Neo Technology	Neo4j	Neo TechnologyのNeo4jにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-1471	2026-05-28 14:44	2026-03-11	Show	GitHub Exploit DB Packet Storm

1939	9.8	緊急 Network	Neo Technology	Neo4j	Neo TechnologyのNeo4jにおける複数の脆弱性	CWE-287 CWE-863	CVE-2026-1524	2026-05-28 14:44	2026-03-11	Show	GitHub Exploit DB Packet Storm

1940	5.4	警告 Network	Webmin Project	Webmin	Webmin ProjectのWebminにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-22678	2026-05-28 14:44	2026-05-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
345061	-	aewebworks	aedating	Multiple PHP remote file inclusion vulnerabilities in AEDating 4.1, and possibly earlier versions, allow remote attackers to execute arbitrary PHP code via a URL in the dir[inc] parameter in (1) inc/…	NVD-CWE-Other	CVE-2006-4870	2017-10-19 10:29	2006-09-20	Show	GitHub Exploit DB Packet Storm

345062	-	unak	unak_cms	Multiple PHP remote file inclusion vulnerabilities in UNAK-CMS 1.5 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the dirroot parameter to (1) fckeditor/editor/filemana…	NVD-CWE-Other	CVE-2006-4890	2017-10-19 10:29	2006-09-20	Show	GitHub Exploit DB Packet Storm

345063	-	cmtexts	cmtexts	CMtextS 1.0 and earlier stores users_logins/admin.txt under the web document root with insufficient access control, which allows remote attackers to obtain the administrator password.	NVD-CWE-Other	CVE-2006-4897	2017-10-19 10:29	2006-09-20	Show	GitHub Exploit DB Packet Storm

345064	-	guanxicrm	guanxicrm_business_solution	PHP remote file inclusion vulnerability in include/phpxd/phpXD.php in guanxiCRM 0.9.1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the appconf[rootpath] parameter.	NVD-CWE-Other	CVE-2006-4898	2017-10-19 10:29	2006-09-20	Show	GitHub Exploit DB Packet Storm

345065	-	marc_logemann	more.groupware	SQL injection vulnerability in modules/calendar/week.php in More.groupware 0.74 allows remote attackers to execute arbitrary SQL commands via the new_calendarid parameter.	NVD-CWE-Other	CVE-2006-4906	2017-10-19 10:29	2006-09-21	Show	GitHub Exploit DB Packet Storm

345066	-	php_docwriter	php_docwriter	PHP remote file inclusion vulnerability in PHP DocWriter 0.3 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the script parameter.	NVD-CWE-Other	CVE-2006-4912	2017-10-19 10:29	2006-09-21	Show	GitHub Exploit DB Packet Storm

345067	-	alstrasoft	e-friends	Directory traversal vulnerability in chat/getStartOptions.php in AlstraSoft E-friends 4.85 allows remote attackers to include arbitrary local files and possibly execute arbitrary code via a .. (dot d…	NVD-CWE-Other	CVE-2006-4913	2017-10-19 10:29	2006-09-21	Show	GitHub Exploit DB Packet Storm

345068	-	asp_indir	tekman_portal	SQL injection vulnerability in uye_profil.asp in Tekman Portal (TR) 1.0 allows remote attackers to execute arbitrary SQL commands via the uye_id parameter.	NVD-CWE-Other	CVE-2006-4916	2017-10-19 10:29	2006-09-21	Show	GitHub Exploit DB Packet Storm

345069	-	simple_discussion_board	simple_discussion_board	Multiple PHP remote file inclusion vulnerabilities in Simple Discussion Board 0.1.0 allow remote attackers to execute arbitrary PHP code via a URL in the (1) env_dir parameter to (a) blank.php, (b) a…	NVD-CWE-Other	CVE-2006-4918	2017-10-19 10:29	2006-09-21	Show	GitHub Exploit DB Packet Storm

345070	-	siteatschool	siteatschool	Directory traversal vulnerability in starnet/editors/htmlarea/popups/images.php in Site@School (S@S) 2.4.02 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the dir p…	NVD-CWE-Other	CVE-2006-4919	2017-10-19 10:29	2006-09-21	Show	GitHub Exploit DB Packet Storm