Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 28, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3461	7.1	重要 Network	networktocode	nautobot	networktocodeのnautobotにおける複数の脆弱性	CWE-471 CWE-749	CVE-2026-44798	2026-06-3 15:35	2026-05-28	Show	GitHub Exploit DB Packet Storm

3462	6.1	警告 Network	Mistune project	Mistune	Mistune projectのMistuneにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-44896	2026-06-3 15:35	2026-05-26	Show	GitHub Exploit DB Packet Storm

3463	6.1	警告 Network	Mistune project	Mistune	Mistune projectのMistuneにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-44897	2026-06-3 15:35	2026-05-26	Show	GitHub Exploit DB Packet Storm

3464	6.1	警告 Network	Mistune project	Mistune	Mistune projectのMistuneにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-44898	2026-06-3 15:35	2026-05-26	Show	GitHub Exploit DB Packet Storm

3465	6.1	警告 Network	Mistune project	Mistune	Mistune projectのMistuneにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-44899	2026-06-3 15:35	2026-05-26	Show	GitHub Exploit DB Packet Storm

3466	10	緊急 Network	The Go Project	crypto	The Go Projectのcryptoにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-46595	2026-06-3 15:35	2026-05-22	Show	GitHub Exploit DB Packet Storm

3467	7.5	重要 Network	The Go Project	crypto	The Go Projectのcryptoにおける不正な型変換に関する脆弱性	CWE-704 不正な型変換またはキャスト	CVE-2026-46597	2026-06-3 15:35	2026-05-22	Show	GitHub Exploit DB Packet Storm

3468	5.3	警告 Network	The Go Project	crypto	The Go Projectのcryptoにおける配列インデックスの検証に関する脆弱性	CWE-129 配列インデックスの不適切な検証	CVE-2026-46598	2026-06-3 15:35	2026-05-22	Show	GitHub Exploit DB Packet Storm

3469	7.5	重要 Network	benoitc	hackney	benoitcのhackneyにおけるCRLF インジェクションの脆弱性	CWE-93 CRLF インジェクション	CVE-2026-47072	2026-06-3 15:35	2026-05-25	Show	GitHub Exploit DB Packet Storm

3470	7.5	重要 Network	benoitc	hackney	benoitcのhackneyにおけるCRLF インジェクションの脆弱性	CWE-93 CRLF インジェクション	CVE-2026-47075	2026-06-3 15:35	2026-05-25	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 28, 2026, 4:01 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
345081	-	phpselect	phpselect	Cross-site scripting (XSS) vulnerability in PHPSelect linksubmit allows remote attackers to inject arbitrary web script or HTML via (1) the description parameter to linklist.php and possibly other ve…	NVD-CWE-Other	CVE-2006-1622	2018-10-19 01:33	2006-04-5	Show	GitHub Exploit DB Packet Storm

345082	-	andries_bruinsma	flexible_development	Unspecified vulnerability in main.php in an unspecified "file created by Andries Bruinsma," possibly a FleXiBle Development (FXB) application, allows remote attackers to include and execute arbitrary…	NVD-CWE-Other	CVE-2006-1623	2018-10-19 01:33	2006-04-5	Show	GitHub Exploit DB Packet Storm

345083	-	linux	linux_kernel	The default configuration of syslogd in the Linux sysklogd package does not enable the -x (disable name lookups) option, which allows remote attackers to cause a denial of service (traffic amplificat…	NVD-CWE-Other	CVE-2006-1624	2018-10-19 01:33	2006-04-5	Show	GitHub Exploit DB Packet Storm

345084	-	mybulletinboard	mybulletinboard	Cross-site scripting (XSS) vulnerability in inc/functions_post.php in MyBB (aka MyBulletinBoard) 1.10 allows remote attackers to inject arbitrary web script or HTML via a JavaScript event in a BBCode…	NVD-CWE-Other	CVE-2006-1625	2018-10-19 01:33	2006-04-5	Show	GitHub Exploit DB Packet Storm

345085	-	adobe	acrobat_reader	Adobe Document Server for Reader Extensions 6.0 does not provide proper access control, which allows remote authenticated users to perform privileged actions by modifying the (1) actionID and (2) pag…	NVD-CWE-Other	CVE-2006-1627	2018-10-19 01:33	2006-04-14	Show	GitHub Exploit DB Packet Storm

345086	-	vwar	virtual_war	PHP remote file inclusion vulnerability in get_header.php in VWar 1.5.0 R12 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the vwar_root parameter. NOTE: this is a di…	CWE-94 Code Injection	CVE-2006-1636	2018-10-19 01:33	2006-04-6	Show	GitHub Exploit DB Packet Storm

345087	-	aweb_labs	awebbb	Multiple cross-site scripting (XSS) vulnerabilities in aWebBB 1.2 allow remote attackers to inject arbitrary web script or HTML via the (1) tname or (2) fpost parameters to (a) post.php; (3) fullname…	NVD-CWE-Other	CVE-2006-1637	2018-10-19 01:33	2006-04-6	Show	GitHub Exploit DB Packet Storm

345088	-	aweb_labs	awebbb	Multiple SQL injection vulnerabilities in aWebBB 1.2 allow remote attackers to execute arbitrary SQL commands via the (1) Username parameter to (a) accounts.php, (b) changep.php, (c) editac.php, (d) …	NVD-CWE-Other	CVE-2006-1638	2018-10-19 01:33	2006-04-6	Show	GitHub Exploit DB Packet Storm

345089	-	aweb_labs	awebbb	Successful exploitation requires "magic_quotes_gpc" to be disabled.	NVD-CWE-Other	CVE-2006-1638	2018-10-19 01:33	2006-04-6	Show	GitHub Exploit DB Packet Storm

345090	-	wire_plastik_design	wpblog	SQL injection vulnerability in index.php in wpBlog 0.4 allows remote attackers to execute arbitrary SQL commands via the postid parameter.	NVD-CWE-Other	CVE-2006-1639	2018-10-19 01:33	2006-04-6	Show	GitHub Exploit DB Packet Storm