Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 16, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2351 5.9 警告
Network 		Parse Platform Parse Server Parse PlatformのParse Serverにおける競合状態に関する脆弱性 CWE-362
競合状態 		CVE-2026-43930 2026-05-28 14:40 2026-05-12 Show GitHub Exploit DB Packet Storm
2352 7.5 重要
Network 		Apache Software Foundation Apache CXF Apache Software FoundationのApache CXFにおける入力確認に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2026-44417 2026-05-28 14:40 2026-05-22 Show GitHub Exploit DB Packet Storm
2353 5.3 警告
Network 		Apache Software Foundation Apache CXF Apache Software FoundationのApache CXFにおけるXML 外部エンティティの脆弱性 CWE-611
XML 外部エンティティ参照の不適切な制限 		CVE-2026-44618 2026-05-28 14:40 2026-05-22 Show GitHub Exploit DB Packet Storm
2354 5.4 警告
Network 		Grokability, Inc. Snipe-IT Grokability, Inc.のSnipe-ITにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-44831 2026-05-28 14:40 2026-05-26 Show GitHub Exploit DB Packet Storm
2355 8.8 重要
Network 		Grokability, Inc. Snipe-IT Grokability, Inc.のSnipe-ITにおける複数の脆弱性 CWE-281
CWE-863
CVE-2026-44832 2026-05-28 14:40 2026-05-26 Show GitHub Exploit DB Packet Storm
2356 7.1 重要
Network 		Grokability, Inc. Snipe-IT Grokability, Inc.のSnipe-ITにおけるオープンリダイレクトの脆弱性 CWE-601
オープンリダイレクト 		CVE-2026-44833 2026-05-28 14:40 2026-05-26 Show GitHub Exploit DB Packet Storm
2357 9.8 緊急
Network 		Apache Software Foundation Apache CXF Apache Software FoundationのApache CXFにおけるLDAP インジェクションの脆弱性 CWE-90
LDAP インジェクション 		CVE-2026-44930 2026-05-28 14:40 2026-05-22 Show GitHub Exploit DB Packet Storm
2358 7.8 重要
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2026-46300 2026-05-28 14:40 2026-05-23 Show GitHub Exploit DB Packet Storm
2359 5.3 警告
Network 		Mattermost, Inc. Mattermost Server Mattermost, Inc.のMattermost Serverにおける競合状態に関する脆弱性 CWE-362
競合状態 		CVE-2026-4635 2026-05-28 14:39 2026-05-22 Show GitHub Exploit DB Packet Storm
2360 4.3 警告
Network 		Mattermost, Inc. Mattermost Server Mattermost, Inc.のMattermost Serverにおける指定されたタイプの入力に対する不適切な検証に関する脆弱性 CWE-1287
指定されたタイプの入力に対する不適切な検証 		CVE-2026-4646 2026-05-28 14:39 2026-05-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
345091 - duda webalbum Successful exploitation requires that the "magic_quotes_gpc" parameter is disabled. NVD-CWE-Other
CVE-2006-1480 2017-10-19 10:29 2006-03-29 Show GitHub Exploit DB Packet Storm
345092 - php_ticket php_ticket SQL injection vulnerability in search.php in PHP Ticket 0.71 allows remote authenticated users to execute arbitrary SQL commands and obtain usernames and passwords via the frm_search_in parameter. NVD-CWE-Other
CVE-2006-1481 2017-10-19 10:29 2006-03-29 Show GitHub Exploit DB Packet Storm
345093 - claroline claroline Cross-site scripting (XSS) vulnerability in document/rqmkhtml.php in Claroline 1.7.4 and earlier allows remote attackers to read arbitrary files via ".." sequences in the file parameter in a rqEditHt… NVD-CWE-Other
CVE-2006-1595 2017-10-19 10:29 2006-04-3 Show GitHub Exploit DB Packet Storm
345094 - claroline claroline Successful exploitation requires that "register_globals" is enabled. NVD-CWE-Other
CVE-2006-1595 2017-10-19 10:29 2006-04-3 Show GitHub Exploit DB Packet Storm
345095 - claroline claroline PHP remote file inclusion vulnerability in learnPath/include/scormExport.inc.php in Claroline 1.7.4 and earlier allows remote attackers to execute arbitrary PHP code via the includePath parameter. NVD-CWE-Other
CVE-2006-1596 2017-10-19 10:29 2006-04-3 Show GitHub Exploit DB Packet Storm
345096 - xine xine-lib Buffer overflow in xine_list_delete_current in libxine 1.14 and earlier, as distributed in xine-lib 1.1.1 and earlier, allows remote attackers to execute arbitrary code via a crafted MPEG stream. NVD-CWE-Other
CVE-2006-1664 2017-10-19 10:29 2006-04-7 Show GitHub Exploit DB Packet Storm
345097 - xbrite xbrite_members SQL injection vulnerability in members.php in XBrite Members 1.1 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter. NVD-CWE-Other
CVE-2006-1694 2017-10-19 10:29 2006-04-11 Show GitHub Exploit DB Packet Storm
345098 - clansys clansys SQL injection vulnerability in member.php in Clansys 1.1 allows remote attackers to execute arbitrary SQL commands via the showid parameter in the member page to index.php. NVD-CWE-Other
CVE-2006-1708 2017-10-19 10:29 2006-04-11 Show GitHub Exploit DB Packet Storm
345099 - design_nation dnguestbook SQL injection vulnerability in admin.php in Design Nation DNGuestbook 2.0 allows remote attackers to execute arbitrary SQL commands via the (1) email and (2) id parameters. NVD-CWE-Other
CVE-2006-1710 2017-10-19 10:29 2006-04-12 Show GitHub Exploit DB Packet Storm
345100 - design_nation dnguestbook Successful exploitation requires that "magic_quotes_gpc" is disabled. NVD-CWE-Other
CVE-2006-1710 2017-10-19 10:29 2006-04-12 Show GitHub Exploit DB Packet Storm