Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 7, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3521 6.3 警告
Network 		Shenzhen Tenda Technology Co.,Ltd. 4g300 ファームウェア Shenzhen Tenda Technology Co.,Ltd.の4g300 ファームウェアにおける複数の脆弱性 CWE-74
CWE-77
CVE-2026-7469 2026-05-7 12:27 2026-04-30 Show GitHub Exploit DB Packet Storm
3522 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. 4g300 ファームウェア Shenzhen Tenda Technology Co.,Ltd.の4g300 ファームウェアにおける複数の脆弱性 CWE-119
CWE-121
CVE-2026-7470 2026-05-7 12:27 2026-04-30 Show GitHub Exploit DB Packet Storm
3523 7 重要
Local 		NASA Core Flight System (cFS) NASAのCore Flight System (cFS)における複数の脆弱性 CWE-20
CWE-502
CWE-502
CVE-2026-5473 2026-05-7 12:27 2026-04-3 Show GitHub Exploit DB Packet Storm
3524 8.8 重要
Adjacent 		NASA Core Flight System (cFS) NASAのCore Flight System (cFS)における複数の脆弱性 CWE-119
CWE-122
CVE-2026-5474 2026-05-7 12:27 2026-04-3 Show GitHub Exploit DB Packet Storm
3525 5.4 警告
Network 		TensorOpera FEDML TensorOperaのFEDMLにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-5535 2026-05-7 12:27 2026-04-5 Show GitHub Exploit DB Packet Storm
3526 7.3 重要
Network 		TensorOpera FEDML TensorOperaのFEDMLにおける複数の脆弱性 CWE-20
CWE-502
CVE-2026-5536 2026-05-7 12:27 2026-04-5 Show GitHub Exploit DB Packet Storm
3527 9.8 緊急
Network 		Technostrobe HI-LED-WR120-G2 Firmware TechnostrobeのHI-LED-WR120-G2 Firmwareにおける複数の脆弱性 CWE-266
CWE-284
CVE-2026-5569 2026-05-7 12:27 2026-04-5 Show GitHub Exploit DB Packet Storm
3528 9.8 緊急
Network 		Technostrobe HI-LED-WR120-G2 Firmware TechnostrobeのHI-LED-WR120-G2 Firmwareにおける認証に関する脆弱性 CWE-287
不適切な認証 		CVE-2026-5570 2026-05-7 12:27 2026-04-5 Show GitHub Exploit DB Packet Storm
3529 7.5 重要
Network 		Technostrobe HI-LED-WR120-G2 Firmware TechnostrobeのHI-LED-WR120-G2 Firmwareにおける複数の脆弱性 CWE-200
CWE-284
CVE-2026-5571 2026-05-7 12:27 2026-04-5 Show GitHub Exploit DB Packet Storm
3530 4.3 警告
Network 		Technostrobe HI-LED-WR120-G2 Firmware TechnostrobeのHI-LED-WR120-G2 Firmwareにおける複数の脆弱性 CWE-352
CWE-862
CVE-2026-5572 2026-05-7 12:27 2026-04-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
346551 - wilsonncareabusinesses php_newsfeed Multiple SQL injection vulnerabilities in PHP Newsfeed 20040723 allow remote attackers to execute arbitrary SQL commands via the (1) name parameter to (a) deltables.php, (2) select, (3) header, (4) u… NVD-CWE-Other
CVE-2006-2139 2017-07-20 10:31 2006-05-2 Show GitHub Exploit DB Packet Storm
346552 - orbitscripts orbithyip Multiple cross-site scripting (XSS) vulnerabilities in OrbitHYIP 2.0 and earlier allow remote attackers to inject arbitrary web script via the (1) referral parameter to signup.php or (2) id parameter… NVD-CWE-Other
CVE-2006-2140 2017-07-20 10:31 2006-05-2 Show GitHub Exploit DB Packet Storm
346553 - collaborative_portal_server_project collaborative_portal_server Cross-site scripting (XSS) vulnerability in popup_image in Collaborative Portal Server (CPS) 3.4.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the pos argument. NVD-CWE-Other
CVE-2006-2141 2017-07-20 10:31 2006-05-2 Show GitHub Exploit DB Packet Storm
346554 - harold_bakker hb-ns Multiple SQL injection vulnerabilities in index.php in HB-NS 1.1.6 allow remote attackers to execute arbitrary SQL commands via the (1) topic or (2) id parameter. NVD-CWE-Other
CVE-2006-2145 2017-07-20 10:31 2006-05-2 Show GitHub Exploit DB Packet Storm
346555 - harold_bakker hb-ns Multiple cross-site scripting (XSS) vulnerabilities in index.php in HB-NS 1.1.6 allow remote attackers to inject arbitrary web script or HTML via the (1) poster_name, (2) poster_email, (3) poster_hom… NVD-CWE-Other
CVE-2006-2146 2017-07-20 10:31 2006-05-2 Show GitHub Exploit DB Packet Storm
346556 - resmgr resmgrd resmgrd in resmgr for SUSE Linux and other distributions does not properly handle when access to a USB device is granted by using "usb:<bus>,<dev>" notation, which grants access to all USB devices an… NVD-CWE-Other
CVE-2006-2147 2017-07-20 10:31 2006-05-3 Show GitHub Exploit DB Packet Storm
346557 - cgiirc cgiirc Multiple buffer overflows in client.c in CGI:IRC (CGIIRC) before 0.5.8 might allow remote attackers to execute arbitrary code via (1) cookies or (2) the query string. NVD-CWE-Other
CVE-2006-2148 2017-07-20 10:31 2006-05-3 Show GitHub Exploit DB Packet Storm
346558 - emc retrospect EMC Retrospect for Windows 6.5 before 6.5.382, 7.0 before 7.0.344, and 7.5 before 7.5.1.105 does not drop privileges before opening files, which allows local users to execute arbitrary code via the F… NVD-CWE-Other
CVE-2006-2154 2017-07-20 10:31 2006-05-3 Show GitHub Exploit DB Packet Storm
346559 - emc retrospect Apply Retrospect Driver Update 7.5.1.105. Apply Application Security Update 7.0.344 (requires Retrospect 7.0.326 or Retrospect Express 7.0.301). Apply Application Security Update 6.5.382 (requires … NVD-CWE-Other
CVE-2006-2154 2017-07-20 10:31 2006-05-3 Show GitHub Exploit DB Packet Storm
346560 - emc retrospect EMC Retrospect for Windows 6.5 before 6.5.382, 7.0 before 7.0.344, and 7.5 before 7.5.1.105 allows local users to execute arbitrary code by replacing the Retrospect.exe file, possibly due to improper… NVD-CWE-Other
CVE-2006-2155 2017-07-20 10:31 2006-05-3 Show GitHub Exploit DB Packet Storm