Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 15, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2781 8.1 重要
Network 		Pivotal Software, Inc. Spring Security VMwareのSpring Securityにおけるホストの不一致による証明書の検証に関する脆弱性 CWE-297
ホストの不一致による証明書の不適切な検証 		CVE-2026-22747 2026-04-27 11:28 2026-04-22 Show GitHub Exploit DB Packet Storm
2782 6.5 警告
Network 		Pivotal Software, Inc. Spring Security VMwareのSpring Securityにおける入力確認に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2026-22748 2026-04-27 11:28 2026-04-22 Show GitHub Exploit DB Packet Storm
2783 7.5 重要
Network 		Pivotal Software, Inc. Spring Security VMwareのSpring Securityにおける保護メカニズムの不具合に関する脆弱性 CWE-693
保護メカニズムの不具合 		CVE-2026-22753 2026-04-27 11:28 2026-04-22 Show GitHub Exploit DB Packet Storm
2784 7.5 重要
Network 		Pivotal Software, Inc. Spring Security VMwareのSpring Securityにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-22754 2026-04-27 11:28 2026-04-22 Show GitHub Exploit DB Packet Storm
2785 7.8 重要
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-23344 2026-04-27 11:28 2026-03-25 Show GitHub Exploit DB Packet Storm
2786 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける不特定の脆弱性 CWE-noinfo
情報不足 		CVE-2026-23345 2026-04-27 11:28 2026-03-25 Show GitHub Exploit DB Packet Storm
2787 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける不特定の脆弱性 CWE-noinfo
情報不足 		CVE-2026-23346 2026-04-27 11:28 2026-03-25 Show GitHub Exploit DB Packet Storm
2788 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける不特定の脆弱性 CWE-noinfo
情報不足 		CVE-2026-23347 2026-04-27 11:28 2026-03-25 Show GitHub Exploit DB Packet Storm
2789 4.7 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける競合状態に関する脆弱性 CWE-362
競合状態 		CVE-2026-23348 2026-04-27 11:28 2026-03-25 Show GitHub Exploit DB Packet Storm
2790 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux KernelにおけるNULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2026-23349 2026-04-27 11:28 2026-03-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
315491 - vmware player EMC VMware Player allows user-assisted attackers to cause a denial of service (unrecoverable application failure) via a long value of the ide1:0.fileName parameter in the .vmx file of a virtual machi… NVD-CWE-Other
CVE-2006-3547 2024-08-8 04:15 2006-07-13 Show GitHub Exploit DB Packet Storm
315492 - tor tor Tor before 0.1.1.20 kills the circuit when it receives an unrecognized relay command, which causes network circuits to be disbanded. NOTE: while this item is listed under the "Security fixes" sectio… NVD-CWE-Other
CVE-2006-3416 2024-08-8 04:15 2006-07-7 Show GitHub Exploit DB Packet Storm
315493 - jelsoft vbulletin Cross-site scripting (XSS) vulnerability in member.php in vBulletin 3.5.x allows remote attackers to inject arbitrary web script or HTML via the u parameter. NOTE: the vendor has disputed this repor… NVD-CWE-Other
CVE-2006-3253 2024-08-8 04:15 2006-06-28 Show GitHub Exploit DB Packet Storm
315494 - microsoft windows_xp The Task scheduler (at.exe) on Microsoft Windows XP spawns each scheduled process with SYSTEM permissions, which allows local users to gain privileges. NOTE: this issue has been disputed by third pa… NVD-CWE-Other
CVE-2006-3209 2024-08-8 04:15 2006-06-24 Show GitHub Exploit DB Packet Storm
315495 - mysql
oracle 		mysql Off-by-one buffer overflow in the Instance_options::complete_initialization function in instance_options.cc in the Instance Manager in MySQL before 5.0.23 and 5.1 before 5.1.12 might allow local user… CWE-189
Numeric Errors 		CVE-2006-3486 2024-08-8 04:15 2006-07-11 Show GitHub Exploit DB Packet Storm
315496 - mozilla firefox Cross-domain vulnerability in Mozilla Firefox allows remote attackers to access restricted information from other domains via an object tag with a data parameter that references a link on the attacke… NVD-CWE-Other
CVE-2006-3352 2024-08-8 04:15 2006-07-6 Show GitHub Exploit DB Packet Storm
315497 - phorum phorum SQL injection vulnerability in search.php in Phorum 5.1.14 and earlier allows remote attackers to execute arbitrary SQL commands via the page parameter. NOTE: the vendor has disputed this report, st… NVD-CWE-Other
CVE-2006-3249 2024-08-8 04:15 2006-06-27 Show GitHub Exploit DB Packet Storm
315498 - nucleus_group nucleus_cms Multiple PHP remote file inclusion vulnerabilities in Nucleus 3.23 allow remote attackers to execute arbitrary PHP code via a URL the DIR_LIBS parameter in (1) path/action.php, and to files in path/n… CWE-94
Code Injection 		CVE-2006-3136 2024-08-8 04:15 2006-06-23 Show GitHub Exploit DB Packet Storm
315499 - iglooweb doublespeak PHP remote file inclusion vulnerability in DoubleSpeak 0.1, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via the config[private] parameter in multiple files… NVD-CWE-Other
CVE-2006-3069 2024-08-8 04:15 2006-06-19 Show GitHub Exploit DB Packet Storm
315500 - phorum phorum PHP remote file inclusion vulnerability in common.php in PHORUM 5.1.13 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the PHORUM[http_path] parameter. NOTE: this issu… NVD-CWE-Other
CVE-2006-3053 2024-08-8 04:15 2006-06-16 Show GitHub Exploit DB Packet Storm