Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2301 7.5 重要
Network 		coredns.io CoreDNS The CoreDNS AuthorsのCoreDNSにおけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2026-32936 2026-05-11 11:11 2026-05-5 Show GitHub Exploit DB Packet Storm
2302 9.9 緊急
Network 		マイクロソフト Azure Managed Instance for Apache Cassandra Azure Managed Instance for Apache Cassandra Remote Code Execution Vulnerability CWE-284
不適切なアクセス制御 		CVE-2026-33109 2026-05-11 11:11 2026-05-7 Show GitHub Exploit DB Packet Storm
2303 7.5 重要
Network 		coredns.io CoreDNS The CoreDNS AuthorsのCoreDNSにおける認証アルゴリズムの不適切な実装に関する脆弱性 CWE-303
認証アルゴリズム上の問題 		CVE-2026-33190 2026-05-11 11:11 2026-05-5 Show GitHub Exploit DB Packet Storm
2304 8.8 重要
Network 		FIT2CLOUD SQLBot FIT2CLOUDのSQLBotにおけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2026-33324 2026-05-11 11:11 2026-05-5 Show GitHub Exploit DB Packet Storm
2305 5.3 警告
Network 		Daniel Garcia Vaultwarden Daniel GarciaのVaultwardenにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-33420 2026-05-11 11:11 2026-05-5 Show GitHub Exploit DB Packet Storm
2306 7.5 重要
Network 		coredns.io CoreDNS The CoreDNS AuthorsのCoreDNSにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-33489 2026-05-11 11:10 2026-05-5 Show GitHub Exploit DB Packet Storm
2307 6.5 警告
Network 		マイクロソフト Microsoft Teams Microsoft Team Events Portal Information Disclosure Vulnerability CWE-285
不適切な認可 		CVE-2026-33823 2026-05-11 11:10 2026-05-7 Show GitHub Exploit DB Packet Storm
2308 9 緊急
Network 		マイクロソフト Azure Managed Instance for Apache Cassandra Azure Managed Instance for Apache Cassandra Remote Code Execution Vulnerability CWE-20
不適切な入力確認 		CVE-2026-33844 2026-05-11 11:10 2026-05-7 Show GitHub Exploit DB Packet Storm
2309 8.2 重要
Network 		マイクロソフト Microsoft Partner Center Microsoft Partner Center Spoofing Vulnerability CWE-610
別領域リソースに対する外部からの制御可能な参照 		CVE-2026-34327 2026-05-11 11:10 2026-05-7 Show GitHub Exploit DB Packet Storm
2310 5.3 警告
Network 		sandboxie-plus Sandboxie sandboxie-plusのSandboxieにおける弱いハッシュの使用に関する脆弱性 CWE-328
脆弱なハッシュの使用 		CVE-2026-34527 2026-05-11 11:10 2026-05-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
345921 - phpmyadmin phpmyadmin Cross-site scripting (XSS) vulnerability in phpMyAdmin 2.8.0.1 allows remote attackers to inject arbitrary web script or HTML via the set_theme parameter. NVD-CWE-Other
CVE-2006-1258 2017-07-20 10:30 2006-03-19 Show GitHub Exploit DB Packet Storm
345922 - aspportal aspportal Multiple cross-site scripting (XSS) vulnerabilities in ASPPortal 3.00 allow remote attackers to inject arbitrary web script or HTML via unknown attack vectors. NVD-CWE-Other
CVE-2006-1261 2017-07-20 10:30 2006-03-19 Show GitHub Exploit DB Packet Storm
345923 - aspportal aspportal Multiple SQL injection vulnerabilities in ASPPortal 3.00 have unknown impact and attack vectors. NVD-CWE-Other
CVE-2006-1262 2017-07-20 10:30 2006-03-19 Show GitHub Exploit DB Packet Storm
345924 - virtual_communication_services vpmi_enterprise Cross-site scripting (XSS) vulnerability in Service_Requests.asp in VPMi Enterprise 3.3 allows remote attackers to inject arbitrary web script or HTML via the Request_Name_Display parameter. NVD-CWE-Other
CVE-2006-1266 2017-07-20 10:30 2006-03-19 Show GitHub Exploit DB Packet Storm
345925 - rahul_dhesi zoo Buffer overflow in the parse function in parse.c in zoo 2.10 might allow local users to execute arbitrary code via long filename command line arguments, which are not properly handled during archive … NVD-CWE-Other
CVE-2006-1269 2017-07-20 10:30 2006-03-19 Show GitHub Exploit DB Packet Storm
345926 - inprotect inprotect Multiple cross-site scripting (XSS) vulnerabilities in zones.php in Inprotect 0.21 allow remote attackers to inject arbitrary web script or HTML via the (1) Name or (2) Description field. NOTE: the … NVD-CWE-Other
CVE-2006-1270 2017-07-20 10:30 2006-03-19 Show GitHub Exploit DB Packet Storm
345927 - inprotect inprotect A remote attacker must have "Manage Zones and Server" permissions on Inprotect to exploit this vulnerability. NVD-CWE-Other
CVE-2006-1270 2017-07-20 10:30 2006-03-19 Show GitHub Exploit DB Packet Storm
345928 - ggz_gaming_zone ggz_gaming_zone GGZ Gaming Zone 0.0.12 allows remote attackers to cause a denial of service (client disconnect) via inputs that produce malformed XML, including (1) trailing ' (apostrophe) character on the ID attrib… CWE-399
 Resource Management Errors 		CVE-2006-1275 2017-07-20 10:30 2006-03-19 Show GitHub Exploit DB Packet Storm
345929 - himpfen_consulting php_simplenews admin.php in Himpfen Consulting Company PHP SimpleNEWS 1.0.0 allows remote attackers to bypass authentication by setting the admin parameter in a cookie. NVD-CWE-Other
CVE-2006-1276 2017-07-20 10:30 2006-03-19 Show GitHub Exploit DB Packet Storm
345930 - sherzod_ruzmetov cgi_session CGI::Session 4.03-1 allows local users to overwrite arbitrary files via a symlink attack on temporary files used by (1) Driver::File, (2) Driver::db_file, and possibly (3) Driver::sqlite. NVD-CWE-Other
CVE-2006-1279 2017-07-20 10:30 2006-03-19 Show GitHub Exploit DB Packet Storm