Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 6, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3501 6.5 警告
Network 		nothings stb vorbis.c nothingsのstb vorbis.cにおける複数の脆弱性 CWE-400
CWE-770
CVE-2026-5316 2026-05-7 12:28 2026-04-2 Show GitHub Exploit DB Packet Storm
3502 8.8 重要
Network 		nothings stb vorbis.c nothingsのstb vorbis.cにおける複数の脆弱性 CWE-119
CWE-787
CVE-2026-5317 2026-05-7 12:28 2026-04-2 Show GitHub Exploit DB Packet Storm
3503 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. ch22 ファームウェア Shenzhen Tenda Technology Co.,Ltd.のch22 ファームウェアにおける複数の脆弱性 CWE-119
CWE-121
CVE-2026-5604 2026-05-7 12:28 2026-04-5 Show GitHub Exploit DB Packet Storm
3504 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. ch22 ファームウェア Shenzhen Tenda Technology Co.,Ltd.のch22 ファームウェアにおける複数の脆弱性 CWE-119
CWE-121
CVE-2026-5605 2026-05-7 12:28 2026-04-6 Show GitHub Exploit DB Packet Storm
3505 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. HG3 Firmware Shenzhen Tenda Technology Co.,Ltd.のHG3 Firmwareにおける複数の脆弱性 CWE-77
CWE-78
CVE-2026-7119 2026-05-7 12:28 2026-04-27 Show GitHub Exploit DB Packet Storm
3506 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. HG3 Firmware Shenzhen Tenda Technology Co.,Ltd.のHG3 Firmwareにおける複数の脆弱性 CWE-119
CWE-121
CVE-2026-7151 2026-05-7 12:28 2026-04-27 Show GitHub Exploit DB Packet Storm
3507 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. HG3 Firmware Shenzhen Tenda Technology Co.,Ltd.のHG3 Firmwareにおける複数の脆弱性 CWE-74
CWE-77
CVE-2026-7160 2026-05-7 12:28 2026-04-27 Show GitHub Exploit DB Packet Storm
3508 7.3 重要
Network 		NextChat NextChat NextChatにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-7177 2026-05-7 12:28 2026-04-27 Show GitHub Exploit DB Packet Storm
3509 7.3 重要
Network 		NextChat NextChat NextChatにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-7178 2026-05-7 12:28 2026-04-27 Show GitHub Exploit DB Packet Storm
3510 7.3 重要
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品における複数の脆弱性 CWE-119
CWE-787
CVE-2026-7323 2026-05-7 12:28 2026-04-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
346711 - aclogic cesarftp Stack-based buffer overflow in CesarFTP 0.99g and earlier allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a long MKD command. NOTE: t… NVD-CWE-Other
CVE-2006-2961 2017-07-20 10:31 2006-06-13 Show GitHub Exploit DB Packet Storm
346712 - emailarchitect email_server Multiple cross-site scripting (XSS) vulnerabilities in EmailArchitect Email Server 6.1.0.5 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) errCode and (2) uid pa… NVD-CWE-Other
CVE-2006-2974 2017-07-20 10:31 2006-06-13 Show GitHub Exploit DB Packet Storm
346713 - coppermine coppermine_photo_gallery Unspecified vulnerability in usermgr.php in Coppermine Photo Gallery before 1.4.7 has unknown impact and remote attack vectors, possibly related to authorization/authentication errors. NVD-CWE-Other
CVE-2006-2976 2017-07-20 10:31 2006-06-13 Show GitHub Exploit DB Packet Storm
346714 - dominios_europa picrate Multiple SQL injection vulnerabilities in Dominios Europa PICRATE (aka TAL RateMyPic) 1.0 allow remote attackers to execute arbitrary SQL commands via the (1) id, (2) voteid, and (3) vfiel parameters… NVD-CWE-Other
CVE-2006-2987 2017-07-20 10:31 2006-06-13 Show GitHub Exploit DB Packet Storm
346715 - iisworks listpics Cross-site scripting (XSS) vulnerability in listpics.asp in ASP ListPics 4.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the info parameter. NVD-CWE-Other
CVE-2006-2989 2017-07-20 10:31 2006-06-13 Show GitHub Exploit DB Packet Storm
346716 - vanillasoft vanillasoft_helpdesk Cross-site scripting (XSS) vulnerability in default.asp in VanillaSoft Helpdesk 2005 and earlier allows remote attackers to inject arbitrary web script or HTML via the username parameter. NVD-CWE-Other
CVE-2006-2990 2017-07-20 10:31 2006-06-13 Show GitHub Exploit DB Packet Storm
346717 - my_photo_scrapbook my_photo_scrapbook Cross-site scripting (XSS) vulnerability in display.asp in My Photo Scrapbook 1.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the key_m parameter. NVD-CWE-Other
CVE-2006-2992 2017-07-20 10:31 2006-06-13 Show GitHub Exploit DB Packet Storm
346718 - my_photo_scrapbook my_photo_scrapbook Multiple SQL injection vulnerabilities in My Photo Scrapbook 1.0 and earlier allow remote attackers to execute arbitrary SQL commands via the key parameter in (1) Displayview.asp and (2) Details_Phot… NVD-CWE-Other
CVE-2006-2993 2017-07-20 10:31 2006-06-13 Show GitHub Exploit DB Packet Storm
346719 - okscripts quicklinks Cross-site scripting (XSS) vulnerability in search.php in OkScripts QuickLinks 1.1 allows remote attackers to inject arbitrary web script or HTML via the q parameter. NVD-CWE-Other
CVE-2006-2999 2017-07-20 10:31 2006-06-13 Show GitHub Exploit DB Packet Storm
346720 - okscripts okarticles Cross-site scripting (XSS) vulnerability in search.php in OkScripts OkArticles 1.0 allows remote attackers to inject arbitrary web script or HTML via the q parameter. NVD-CWE-Other
CVE-2006-3000 2017-07-20 10:31 2006-06-13 Show GitHub Exploit DB Packet Storm