Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 9, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230331 7.5 危険 redaction system - Redaction System における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2006-5302 2012-12-20 18:02 2006-10-17 Show GitHub Exploit DB Packet Storm
230332 6.8 警告 phpBB - phpBB 用の SpamBlockerMODv モジュールにおける PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2006-5301 2012-12-20 18:02 2006-10-17 Show GitHub Exploit DB Packet Storm
230333 4.3 警告 Tincan - phplist の index.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-5294 2012-12-20 18:02 2006-10-16 Show GitHub Exploit DB Packet Storm
230334 6.8 警告 phpoutsourcing - PhpOutsourcing Noah's Classifieds の index.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-5293 2012-12-20 18:02 2006-10-16 Show GitHub Exploit DB Packet Storm
230335 7.5 危険 Xerox - Xerox WorkCentre における認証を回避される脆弱性 - CVE-2006-5290 2012-12-20 18:02 2006-10-3 Show GitHub Exploit DB Packet Storm
230336 7.5 危険 Vtiger - Vtiger CRM における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5289 2012-12-20 18:02 2006-10-13 Show GitHub Exploit DB Packet Storm
230337 5.1 警告 xeobook - Xeobook の sign.php における SQL インジェクションの脆弱性 - CVE-2006-5287 2012-12-20 18:02 2006-10-13 Show GitHub Exploit DB Packet Storm
230338 7.5 危険 xeoport - XeoPort の index.php における SQL インジェクションの脆弱性 - CVE-2006-5285 2012-12-20 18:02 2006-10-13 Show GitHub Exploit DB Packet Storm
230339 7.5 危険 sh-news - SH-News における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5282 2012-12-20 18:02 2006-10-13 Show GitHub Exploit DB Packet Storm
230340 7.5 危険 phpmyagenda - phpMyAgenda の templates/header.php3 におけるディレクトリトラバーサルの脆弱性 - CVE-2006-5263 2012-12-20 18:02 2006-10-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1041 7.5 HIGH
Network 		- - In IMS, there is a possible system crash due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed. New - CVE-2025-71251 2026-05-7 23:56 2026-05-6 Show GitHub Exploit DB Packet Storm
1042 7.5 HIGH
Network 		- - In Modem IMS, there is a possible improper input validation. This could lead to remote denial of service with no additional execution privileges needed. New - CVE-2025-71252 2026-05-7 23:56 2026-05-6 Show GitHub Exploit DB Packet Storm
1043 7.5 HIGH
Network 		- - In Modem IMS, there is a possible improper input validation. This could lead to remote denial of service with no additional execution privileges needed. New - CVE-2025-71253 2026-05-7 23:56 2026-05-6 Show GitHub Exploit DB Packet Storm
1044 7.5 HIGH
Network 		- - In Modem IMS, there is a possible improper input validation. This could lead to remote denial of service with no additional execution privileges needed. New - CVE-2025-71254 2026-05-7 23:56 2026-05-6 Show GitHub Exploit DB Packet Storm
1045 7.5 HIGH
Network 		- - In Modem IMS, there is a possible improper input validation. This could lead to remote denial of service with no additional execution privileges needed. New - CVE-2025-71255 2026-05-7 23:56 2026-05-6 Show GitHub Exploit DB Packet Storm
1046 7.5 HIGH
Network 		- - In nr modem, there is a possible improper input validation. This could lead to remote denial of service with no additional execution privileges needed. New - CVE-2025-71256 2026-05-7 23:56 2026-05-6 Show GitHub Exploit DB Packet Storm
1047 4.4 MEDIUM
Local 		- - An off-by-one error (CWE-193) in the ConsumeUnit16Array and ConsumeUnit64Array functions in Velocidex Velociraptor before version 0.76.5 on Windows and Linux allows a local attacker to cause a Denial… New CWE-193
 Off-by-one Error 		CVE-2026-7572 2026-05-7 23:56 2026-05-6 Show GitHub Exploit DB Packet Storm
1048 5.0 MEDIUM
Network 		- - An authorization bypass (CWE-639) in the GetUserRoles gRPC API endpoint in Velocidex Velociraptor below version 0.76.5 allows any authenticated low-privilege user to retrieve the complete ACL policy … New CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2026-7573 2026-05-7 23:56 2026-05-6 Show GitHub Exploit DB Packet Storm
1049 - - - An authenticated (non-super) administrator can create a maintenance period with a JavaScript payload that is executed by any user that opens tooltip for that maintenance period in the Host navigator … New CWE-79
Cross-site Scripting 		CVE-2026-23926 2026-05-7 23:56 2026-05-6 Show GitHub Exploit DB Packet Storm
1050 - - - A user able to connect to Agent 2 can inject an Oracle TNS connection string via the 'service' parameter. This can lead to Agent 2 connecting to an attacker-controlled server and leaking Oracle datab… New CWE-522
 Insufficiently Protected Credentials 		CVE-2026-23927 2026-05-7 23:56 2026-05-6 Show GitHub Exploit DB Packet Storm