Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 9, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3951 9.8 緊急
Network 		Technostrobe HI-LED-WR120-G2 Firmware TechnostrobeのHI-LED-WR120-G2 Firmwareにおける複数の脆弱性 CWE-284
CWE-434
CVE-2026-5573 2026-05-7 12:27 2026-04-5 Show GitHub Exploit DB Packet Storm
3952 8.6 重要
Network 		Song Li (Song-Li) Cross browser fingerprinting Song Li (Song-Li)のCross browser fingerprintingにおける複数の脆弱性 CWE-74
CWE-89
CWE-89
CVE-2026-5577 2026-05-7 12:27 2026-04-5 Show GitHub Exploit DB Packet Storm
3953 9.8 緊急
Network 		Martin (Fosowl) AgenticSeek Martin (Fosowl)のAgenticSeekにおける複数の脆弱性 CWE-74
CWE-94
CVE-2026-5584 2026-05-7 12:27 2026-04-5 Show GitHub Exploit DB Packet Storm
3954 7.5 重要
Network 		Tencent AI-Infra-Guard TencentのAI-Infra-Guardにおける複数の脆弱性 CWE-200
CWE-284
CWE-noinfo
CVE-2026-5585 2026-05-7 12:27 2026-04-5 Show GitHub Exploit DB Packet Storm
3955 3.7
Network 		Simon Tatham PuTTY PuTTYにおける複数の脆弱性 CWE-345
CWE-347
CVE-2026-4115 2026-05-7 12:27 2026-03-22 Show GitHub Exploit DB Packet Storm
3956 9.8 緊急
Network 		cPanel cPanel
WP Squared
cPanel WHM 		cPanelのcPanel等の複数製品における重要な機能に対する認証の欠如に関する脆弱性 CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2026-41940 2026-05-7 12:27 2026-04-29 Show GitHub Exploit DB Packet Storm
3957 9.8 緊急
Network 		Provectus UI for Apache Kafka ProvectusのUI for Apache Kafkaにおける複数の脆弱性 CWE-74
CWE-94
CVE-2026-5562 2026-05-7 12:27 2026-04-5 Show GitHub Exploit DB Packet Storm
3958 6.1 警告
Network 		WSO2 WSO2 Identity Server WSO2のWSO2 Identity Serverにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2025-10503 2026-05-7 12:07 2026-04-29 Show GitHub Exploit DB Packet Storm
3959 5.3 警告
Network 		MCPHub MCPHub MCPHubにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2025-13822 2026-05-7 12:07 2026-04-14 Show GitHub Exploit DB Packet Storm
3960 5.3 警告
Network 		IBM IBM DB2 IBMのIBM DB2における入力で指定された数量の不適切な検証に関する脆弱性 CWE-1284
入力で指定された数量の不適切な検証 		CVE-2025-14688 2026-05-7 12:07 2026-04-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
347001 - osads_alliance_database osads_alliance_database Unspecified vulnerability in OSADS Alliance Database before 1.4 has unknown impact and attack vectors related to a "Security Leak to lock in HTML-Code," possibly due to a cross-site scripting (XSS) v… NVD-CWE-Other
CVE-2006-2874 2017-07-20 10:31 2006-06-7 Show GitHub Exploit DB Packet Storm
347002 - alex news-engine SQL injection vulnerability in newscomments.php in Alex News-Engine 1.5.0 and earlier allows remote attackers to execute arbitrary SQL commands via the newsid parameter. NVD-CWE-Other
CVE-2006-2879 2017-07-20 10:31 2006-06-7 Show GitHub Exploit DB Packet Storm
347003 - pyblosxom pyblosxom Cross-site scripting (XSS) vulnerability in the Contributed Packages for PyBlosxom 1.2.2 and earlier allows remote attackers to inject arbitrary web script or HTML via the Comments plugin in the (1) … NVD-CWE-Other
CVE-2006-2880 2017-07-20 10:31 2006-06-7 Show GitHub Exploit DB Packet Storm
347004 - pyblosxom pyblosxom This vulnerability is present only in the Contributed Packages of this product. NVD-CWE-Other
CVE-2006-2880 2017-07-20 10:31 2006-06-7 Show GitHub Exploit DB Packet Storm
347005 - knowledgetree knowledgetree Multiple cross-site scripting (XSS) vulnerabilities in KnowledgeTree Open Source 3.0.3 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) fDocumentId parameter in v… NVD-CWE-Other
CVE-2006-2885 2017-07-20 10:31 2006-06-7 Show GitHub Exploit DB Packet Storm
347006 - jam_warehouse knowledgetree_open_source view.php in KnowledgeTree Open Source 3.0.3 and earlier allows remote attackers to obtain the full installation path via a crafted fDocumentId parameter, which displays the path in the resulting erro… NVD-CWE-Other
CVE-2006-2886 2017-07-20 10:31 2006-06-7 Show GitHub Exploit DB Packet Storm
347007 - mediawiki mediawiki Cross-site scripting (XSS) vulnerability in MediaWiki 1.6.0 up to versions before 1.6.7 allows remote attackers to inject arbitrary HTML and web script via the edit form. NVD-CWE-Other
CVE-2006-2895 2017-07-20 10:31 2006-06-7 Show GitHub Exploit DB Packet Storm
347008 - funkboard funkboard Cross-site scripting (XSS) vulnerability in FunkBoard 0.71 allows remote attackers to inject arbitrary HTML or web script via unspecified vectors. NVD-CWE-Other
CVE-2006-2897 2017-07-20 10:31 2006-06-7 Show GitHub Exploit DB Packet Storm
347009 - cowon_america jetaudio Buffer overflow in jetAudio 6.2.6.8330 (Basic), and possibly other versions, allows user-assisted attackers to execute arbitrary code via an audio file (such as WMA) with long ID Tag values including… NVD-CWE-Other
CVE-2006-2910 2017-07-20 10:31 2006-07-6 Show GitHub Exploit DB Packet Storm
347010 - out_of_the_trees_web_design selectapix Cross-site scripting (XSS) vulnerability in SelectaPix 1.31 allows remote attackers to inject arbitrary web script or HTML via the albumID parameter to (1) popup.php and (2) view_album.php. NVD-CWE-Other
CVE-2006-2913 2017-07-20 10:31 2006-06-9 Show GitHub Exploit DB Packet Storm