Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 8, 2026, 2:12 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3121	7.8	重要 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2026-43500	2026-05-12 10:20	2026-05-11	Show	GitHub Exploit DB Packet Storm

3122	4.3	警告 Network	Weblate	Weblate	Weblateにおけるクロスサイトスクリプティングの脆弱性	CWE-80 クロスサイトスクリプティング (Basic XSS)	CVE-2026-44264	2026-05-12 10:19	2026-05-7	Show	GitHub Exploit DB Packet Storm

3123	9.1	緊急 Network	ollama	ollama	Ollamaにおける境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2026-7482	2026-05-12 10:19	2026-05-4	Show	GitHub Exploit DB Packet Storm

3124	5.5	警告 Local	Open5GS	Open5GS	Open5GSにおけるリソースの不適切なシャットダウンおよびリリースに関する脆弱性	CWE-404 リソースの不適切なシャットダウンおよびリリース	CVE-2026-8119	2026-05-12 10:19	2026-05-8	Show	GitHub Exploit DB Packet Storm

3125	6.5	警告 Network	Open5GS	Open5GS	Open5GSにおけるリソースの不適切なシャットダウンおよびリリースに関する脆弱性	CWE-404 リソースの不適切なシャットダウンおよびリリース	CVE-2026-8120	2026-05-12 10:19	2026-05-8	Show	GitHub Exploit DB Packet Storm

3126	6.5	警告 Network	Open5GS	Open5GS	Open5GSにおけるリソースの不適切なシャットダウンおよびリリースに関する脆弱性	CWE-404 リソースの不適切なシャットダウンおよびリリース	CVE-2026-8121	2026-05-12 10:19	2026-05-8	Show	GitHub Exploit DB Packet Storm

3127	6.5	警告 Network	Open5GS	Open5GS	Open5GSにおけるリソースの不適切なシャットダウンおよびリリースに関する脆弱性	CWE-404 リソースの不適切なシャットダウンおよびリリース	CVE-2026-8122	2026-05-12 10:19	2026-05-8	Show	GitHub Exploit DB Packet Storm

3128	6.5	警告 Network	Open5GS	Open5GS	Open5GSにおけるリソースの不適切なシャットダウンおよびリリースに関する脆弱性	CWE-404 リソースの不適切なシャットダウンおよびリリース	CVE-2026-8123	2026-05-12 10:19	2026-05-8	Show	GitHub Exploit DB Packet Storm

3129	8.8	重要 Network	Shenzhen Tenda Technology Co.,Ltd.	CX12L Pro Firmware	Shenzhen Tenda Technology Co.,Ltd.のCX12L Pro Firmwareにおける複数の脆弱性	CWE-119 CWE-121	CVE-2026-8138	2026-05-12 10:19	2026-05-8	Show	GitHub Exploit DB Packet Storm

3130	7.8	重要 Local	NAVER Corp.	NAVER MYBOX Explorer for Windows	NAVER Corp.のNAVER MYBOX Explorer for Windowsにおける不適切な権限設定に関する脆弱性	CWE-266 不適切な権限設定	CVE-2026-8148	2026-05-12 10:19	2026-05-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 8, 2026, 4:09 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
346261	-	astrodog_press	some_chess	Cross-site request forgery (CSRF) vulnerability in menu.php in Some Chess 1.5 rc2 allows remote attackers to conduct actions as another user, such as changing usernames and passwords, via unspecified…	NVD-CWE-Other	CVE-2006-3272	2017-07-20 10:32	2006-06-29	Show	GitHub Exploit DB Packet Storm

346262	-	yabb	yabb	SQL injection vulnerability in profile.php in YaBB SE 1.5.5 and earlier allows remote attackers to execute SQL commands via a double-encoded user parameter in a viewprofile action.	NVD-CWE-Other	CVE-2006-3275	2017-07-20 10:32	2006-06-29	Show	GitHub Exploit DB Packet Storm

346263	-	realnetworks	helix_dna_server	Heap-based buffer overflow in RealNetworks Helix DNA Server 10.0 and 11.0 allows remote attackers to execute arbitrary code via (1) a long User-Agent HTTP header in the RTSP service and (2) unspecifi…	NVD-CWE-Other	CVE-2006-3276	2017-07-20 10:32	2006-06-29	Show	GitHub Exploit DB Packet Storm

346264	-	realnetworks	helix_dna_server	Upgrade to Helix DNA Server version 11.1 : https://helix-server.helixcommunity.org/2005/devdocs/builds	NVD-CWE-Other	CVE-2006-3276	2017-07-20 10:32	2006-06-29	Show	GitHub Exploit DB Packet Storm

346265	-	positive_software	h-sphere	Cross-site scripting (XSS) vulnerability in H-Sphere 2.5.1 Beta 1 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) next_template, (2) start, (3) curr_menu_id, an…	NVD-CWE-Other	CVE-2006-3278	2017-07-20 10:32	2006-06-29	Show	GitHub Exploit DB Packet Storm

346266	-	cisco	wireless_control_system	The internal database in Cisco Wireless Control System (WCS) for Linux and Windows before 3.2(51) uses an undocumented, hard-coded username and password, which allows remote authenticated users to re…	NVD-CWE-Other	CVE-2006-3285	2017-07-20 10:32	2006-06-29	Show	GitHub Exploit DB Packet Storm

346267	-	cisco	wireless_control_system	The internal database in Cisco Wireless Control System (WCS) for Linux and Windows before 3.2(63) stores a hard-coded username and password in plaintext within unspecified files, which allows remote …	NVD-CWE-Other	CVE-2006-3286	2017-07-20 10:32	2006-06-29	Show	GitHub Exploit DB Packet Storm

346268	-	cisco	wireless_control_system	Cisco Wireless Control System (WCS) for Linux and Windows 4.0(1) and earlier uses a default administrator username "root" and password "public," which allows remote attackers to gain access (aka bug …	NVD-CWE-Other	CVE-2006-3287	2017-07-20 10:32	2006-06-29	Show	GitHub Exploit DB Packet Storm

346269	-	cisco	wireless_control_system	Unspecified vulnerability in the TFTP server in Cisco Wireless Control System (WCS) for Linux and Windows before 3.2(51), when configured to use a directory path name that contains a space character,…	NVD-CWE-Other	CVE-2006-3288	2017-07-20 10:32	2006-06-29	Show	GitHub Exploit DB Packet Storm

346270	-	cisco	wireless_control_system	Cross-site scripting (XSS) vulnerability in the login page of the HTTP interface for the Cisco Wireless Control System (WCS) for Linux and Windows before 3.2(51) allows remote attackers to inject arb…	NVD-CWE-Other	CVE-2006-3289	2017-07-20 10:32	2006-06-29	Show	GitHub Exploit DB Packet Storm