Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
21 5.3 警告
Network 		VMware Spring Framework VMwareのSpring Frameworkにおける不正な認証に関する脆弱性 New CWE-863
不正な認証 		CVE-2026-41852 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
22 5.1 警告
Local 		ImageMagick ImageMagick ImageMagickにおける複数の脆弱性 New CWE-125
CWE-191
CVE-2026-42326 2026-06-12 14:53 2026-06-10 Show GitHub Exploit DB Packet Storm
23 7.5 重要
Network 		Svelte project Svelte Svelte projectのSvelteにおける非効率的な正規表現の複雑さに関する脆弱性 New CWE-1333
非効率的な正規表現の複雑さ 		CVE-2026-42567 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
24 7.5 重要
Network 		Svelte project devalue Svelte projectのdevalueにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 New CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-42570 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
25 6.1 警告
Network 		Svelte project Svelte Svelte projectのSvelteにおけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-42573 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
26 6.1 警告
Network 		Svelte project Svelte Svelte projectのSvelteにおけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-42599 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
27 7.8 重要
Local 		マイクロソフト Microsoft Windows 11 25h2
Microsoft Windows 11 26h1
Microsoft Windows 11 24h2 		Windows 管理者保護のセキュリティ機能バイパスの脆弱性 New CWE-284
不適切なアクセス制御 		CVE-2026-42829 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
28 7 重要
Local 		マイクロソフト Microsoft Windows 11 23h2
Microsoft Windows Server 2022
Microsoft Windows Server 2016
Microsoft Windows Server 2019
Microsoft&n… 		Windows Function Discovery Service (fdwsd.dll) の特権昇格の脆弱性 New CWE-362
CWE-416
CVE-2026-42836 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
29 7.8 重要
Local 		マイクロソフト Microsoft Windows 11 23h2
Microsoft Windows Server 2022
Microsoft Windows Server 2019
Microsoft Windows 11 26h1
Microsoft … 		Windows Projected File System の特権の昇格の脆弱性 New CWE-125
境界外読み取り 		CVE-2026-42837 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
30 9.6 緊急
Network 		flowiseai flowise flowiseaiのflowiseにおける複数の脆弱性 New CWE-284
CWE-639
CWE-915
CVE-2026-42861 2026-06-12 14:52 2026-06-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
344871 - sun solaris Unspecified vulnerability in Sun Solaris 10 allows local users to cause a denial of service (null dereference) via unspecified vectors involving the use of the find command on the "/proc" filesystem.… NVD-CWE-Other
CVE-2006-0191 2017-10-11 10:30 2006-01-13 Show GitHub Exploit DB Packet Storm
344872 - squirrelmail squirrelmail Interpretation conflict in the MagicHTML filter in SquirrelMail 1.4.0 to 1.4.5 allows remote attackers to conduct cross-site scripting (XSS) attacks via style sheet specifiers with invalid (1) "/*" a… NVD-CWE-Other
CVE-2006-0195 2017-10-11 10:30 2006-02-24 Show GitHub Exploit DB Packet Storm
344873 - htmltonuke htmltonuke PHP remote file inclusion vulnerability in htmltonuke.php in the htmltonuke 2.0 alpha, and possibly other versions, module for PHP-Nuke allows remote attackers to execute arbitrary PHP code via a URL… CWE-94
Code Injection 		CVE-2006-0308 2017-10-11 10:30 2006-01-19 Show GitHub Exploit DB Packet Storm
344874 - cisco aironet_ap1100
aironet_ap1130ag
aironet_ap1200
aironet_ap1230ag
aironet_ap1240ag
aironet_ap1300
aironet_ap1400
aironet_ap350 		Cisco IOS before 12.3-7-JA2 on Aironet Wireless Access Points (WAP) allows remote authenticated users to cause a denial of service (termination of packet passing or termination of client connections)… CWE-399
 Resource Management Errors 		CVE-2006-0354 2017-10-11 10:30 2006-01-23 Show GitHub Exploit DB Packet Storm
344875 - squirrelmail squirrelmail CRLF injection vulnerability in SquirrelMail 1.4.0 to 1.4.5 allows remote attackers to inject arbitrary IMAP commands via newline characters in the mailbox parameter of the sqimap_mailbox_select comm… NVD-CWE-Other
CVE-2006-0377 2017-10-11 10:30 2006-02-24 Show GitHub Exploit DB Packet Storm
344876 - hp hp-ux Unspecified vulnerability in HP HP-UX B.11.00, B.11.04, and B.11.11 allows local users to gain privileges via unknown attack vectors. NVD-CWE-Other
CVE-2006-0436 2017-10-11 10:30 2006-01-26 Show GitHub Exploit DB Packet Storm
344877 - greg_roelofs libpng Heap-based buffer overflow in the alpha strip capability in libpng 1.2.7 allows context-dependent attackers to cause a denial of service (crash) when the png_do_strip_filler function is used to strip… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2006-0481 2017-10-11 10:30 2006-02-1 Show GitHub Exploit DB Packet Storm
344878 - cisco ios The TCL shell in Cisco IOS 12.2(14)S before 12.2(14)S16, 12.2(18)S before 12.2(18)S11, and certain other releases before 25 January 2006 does not perform Authentication, Authorization, and Accounting… NVD-CWE-Other
CVE-2006-0485 2017-10-11 10:30 2006-02-1 Show GitHub Exploit DB Packet Storm
344879 - cisco ios Certain Cisco IOS releases in 12.2S based trains with maintenance release number 25 and later, 12.3T based trains, and 12.4 based trains reuse a Tcl Shell process across login sessions of different l… NVD-CWE-Other
CVE-2006-0486 2017-10-11 10:30 2006-02-1 Show GitHub Exploit DB Packet Storm
344880 - sun solaris Unspecified vulnerability in the kernel processing in Solaris 10 64 bit platform, when running in 64-bit mode, allows local users to cause a denial of service (system panic) via unknown attack vector… NVD-CWE-Other
CVE-2006-0516 2017-10-11 10:30 2006-02-2 Show GitHub Exploit DB Packet Storm