Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3131 2.7
Network 		projectcapsule capsule Project CapsuleのCapsuleにおける入力確認に関する脆弱性 CWE-20
CWE-noinfo
CVE-2026-30963 2026-06-5 10:47 2026-06-1 Show GitHub Exploit DB Packet Storm
3132 6.5 警告
Network 		lfprojects mlflow lfprojectsのmlflowにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-3198 2026-06-5 10:47 2026-06-2 Show GitHub Exploit DB Packet Storm
3133 5.4 警告
Network 		Shopify React Router ShopifyのReact Routerにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-33244 2026-06-5 10:47 2026-06-2 Show GitHub Exploit DB Packet Storm
3134 6.1 警告
Network 		- SAPのSAP Netweaver Application Server ABAPにおけるオープンリダイレクトの脆弱性 CWE-601
オープンリダイレクト 		CVE-2026-34257 2026-06-5 10:47 2026-04-14 Show GitHub Exploit DB Packet Storm
3135 7.5 重要
Network 		prefect prefect Prefect Technologies, Inc.のPrefectにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-3514 2026-06-5 10:47 2026-06-2 Show GitHub Exploit DB Packet Storm
3136 7.9 重要
Network 		オラクル REST Data Services オラクルのREST Data Servicesにおける複数の脆弱性 CWE-352
CWE-400
CVE-2026-35266 2026-06-5 10:47 2026-05-28 Show GitHub Exploit DB Packet Storm
3137 8.1 重要
Network 		オラクル REST Data Services オラクルのREST Data Servicesにおける複数の脆弱性 CWE-284
CWE-400
CVE-2026-35277 2026-06-5 10:47 2026-05-28 Show GitHub Exploit DB Packet Storm
3138 6.3 警告
Network 		VIVOTEK Inc. Network Camera FD8136 ファームウェア VIVOTEK Inc.のNetwork Camera FD8136 ファームウェアにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-121
スタックオーバーフロー 		CVE-2026-35716 2026-06-5 10:47 2026-06-2 Show GitHub Exploit DB Packet Storm
3139 6.3 警告
Network 		VIVOTEK Inc. Network Camera FD8136 ファームウェア VIVOTEK Inc.のNetwork Camera FD8136 ファームウェアにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-121
スタックオーバーフロー 		CVE-2026-35717 2026-06-5 10:47 2026-06-2 Show GitHub Exploit DB Packet Storm
3140 6.5 警告
Network 		VIVOTEK Inc. Network Camera FD8136 ファームウェア VIVOTEK Inc.のNetwork Camera FD8136 ファームウェアにおけるパストラバーサルの脆弱性 CWE-22
CWE-22
CVE-2026-35718 2026-06-5 10:47 2026-06-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 27, 2026, 4:35 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
344611 - mirabilis icq Cross-Application Scripting (XAS) vulnerability in ICQ Client 5.04 build 2321 and earlier allows remote attackers to inject arbitrary web script from one application into another via a banner, which … NVD-CWE-Other
CVE-2006-2303 2018-10-19 01:39 2006-05-11 Show GitHub Exploit DB Packet Storm
344612 - novell client Multiple integer overflows in the DPRPC library (DPRPCW32.DLL) in Novell Client 4.83 SP3, 4.90 SP2 and 4.91 SP2 allow remote attackers to execute arbitrary code via an XDR encoded array with a field … NVD-CWE-Other
CVE-2006-2304 2018-10-19 01:39 2006-05-11 Show GitHub Exploit DB Packet Storm
344613 - website_baker website_baker Cross-site scripting (XSS) vulnerability in Website Baker CMS before 2.6.4 allows remote attackers to inject arbitrary web script or HTML via a user display name. NVD-CWE-Other
CVE-2006-2307 2018-10-19 01:39 2006-05-11 Show GitHub Exploit DB Packet Storm
344614 - etype eserv Directory traversal vulnerability in the IMAP service in EServ/3 3.25 allows remote authenticated users to read other user's email messages, create/rename arbitrary directories on the system, and del… NVD-CWE-Other
CVE-2006-2308 2018-10-19 01:39 2006-06-2 Show GitHub Exploit DB Packet Storm
344615 - etype eserv The HTTP service in EServ/3 3.25 allows remote attackers to obtain sensitive information via crafted HTTP requests containing dot, space, and slash characters, which reveals the source code of script… NVD-CWE-Other
CVE-2006-2309 2018-10-19 01:39 2006-06-2 Show GitHub Exploit DB Packet Storm
344616 - postgresql postgresql PostgreSQL 8.1.x before 8.1.4, 8.0.x before 8.0.8, 7.4.x before 7.4.13, 7.3.x before 7.3.15, and earlier versions allows context-dependent attackers to bypass SQL injection protection methods in appl… NVD-CWE-Other
CVE-2006-2313 2018-10-19 01:39 2006-05-24 Show GitHub Exploit DB Packet Storm
344617 - postgresql postgresql PostgreSQL 8.1.x before 8.1.4, 8.0.x before 8.0.8, 7.4.x before 7.4.13, 7.3.x before 7.3.15, and earlier versions allows context-dependent attackers to bypass SQL injection protection methods in appl… NVD-CWE-Other
CVE-2006-2314 2018-10-19 01:39 2006-05-24 Show GitHub Exploit DB Packet Storm
344618 - intel proset_wireless S24EvMon.exe in the Intel PROset/Wireless software, possibly 10.1.0.33, uses a S24EventManagerSharedMemory shared memory section with weak permissions, which allows local users to read or modify pass… NVD-CWE-Other
CVE-2006-2316 2018-10-19 01:39 2006-05-12 Show GitHub Exploit DB Packet Storm
344619 - ideal_science idealbb Unspecified vulnerability in Ideal Science Ideal BB 1.5.4a and earlier allows remote attackers to read arbitrary files under the web root via unspecified attack vectors related to the OpenTextFile me… NVD-CWE-Other
CVE-2006-2317 2018-10-19 01:39 2006-05-12 Show GitHub Exploit DB Packet Storm
344620 - ideal_science idealbb Incomplete blacklist vulnerability in Ideal Science Ideal BB 1.5.4a and earlier allows remote attackers to upload and execute an ASP script via a ".asa" file, which bypasses the check for the ".asp" … NVD-CWE-Other
CVE-2006-2318 2018-10-19 01:39 2006-05-12 Show GitHub Exploit DB Packet Storm