Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 13, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4031	5.3	警告 Local	Prusa3D	PrusaSlicer	Prusa3DのPrusaSlicerにおけるコマンドインジェクションの脆弱性	CWE-77 コマンドインジェクション	CVE-2023-47268	2026-05-12 10:21	2026-05-8	Show	GitHub Exploit DB Packet Storm

4032	7.2	重要 Network	HCL Technologies Limited	HCL BigFix Service Management (SM)	HCL Technologies LimitedのHCL BigFix Service Management (SM)におけるリソースの安全ではないデフォルト値への初期化に関する脆弱性	CWE-1188 リソースの安全ではないデフォルト値への初期化	CVE-2025-31974	2026-05-12 10:21	2026-05-6	Show	GitHub Exploit DB Packet Storm

4033	6.1	警告 Network	Project Jupyter	Jupyter Server	Project JupyterのJupyter Serverにおけるオープンリダイレクトの脆弱性	CWE-601 オープンリダイレクト	CVE-2025-61669	2026-05-12 10:21	2026-05-5	Show	GitHub Exploit DB Packet Storm

4034	8.1	重要 Network	Apache Software Foundation	CloudStack	Apache Software FoundationのCloudStackにおける不完全なクリーンアップに関する脆弱性	CWE-459 不完全なクリーンアップ	CVE-2025-66467	2026-05-12 10:21	2026-05-8	Show	GitHub Exploit DB Packet Storm

4035	7.5	重要 Network	Google	Android	GoogleのAndroidにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2025-71253	2026-05-12 10:21	2026-05-6	Show	GitHub Exploit DB Packet Storm

4036	7.5	重要 Network	Google	Android	GoogleのAndroidにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2025-71254	2026-05-12 10:21	2026-05-6	Show	GitHub Exploit DB Packet Storm

4037	7.5	重要 Network	Google	Android	GoogleのAndroidにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2025-71255	2026-05-12 10:21	2026-05-6	Show	GitHub Exploit DB Packet Storm

4038	7.5	重要 Network	Google	Android	GoogleのAndroidにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2025-71256	2026-05-12 10:20	2026-05-6	Show	GitHub Exploit DB Packet Storm

4039	8.8	重要 Network	CERN	Rucio	CERNのRucioにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2026-29080	2026-05-12 10:20	2026-05-6	Show	GitHub Exploit DB Packet Storm

4040	8.8	重要 Network	CERN	Rucio	CERNのRucioにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2026-29090	2026-05-12 10:20	2026-05-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
348641	-	inprotect	inprotect	A remote attacker must have "Manage Zones and Server" permissions on Inprotect to exploit this vulnerability.	NVD-CWE-Other	CVE-2006-1270	2017-07-20 10:30	2006-03-19	Show	GitHub Exploit DB Packet Storm

348642	-	ggz_gaming_zone	ggz_gaming_zone	GGZ Gaming Zone 0.0.12 allows remote attackers to cause a denial of service (client disconnect) via inputs that produce malformed XML, including (1) trailing ' (apostrophe) character on the ID attrib…	CWE-399 Resource Management Errors	CVE-2006-1275	2017-07-20 10:30	2006-03-19	Show	GitHub Exploit DB Packet Storm

348643	-	himpfen_consulting	php_simplenews	admin.php in Himpfen Consulting Company PHP SimpleNEWS 1.0.0 allows remote attackers to bypass authentication by setting the admin parameter in a cookie.	NVD-CWE-Other	CVE-2006-1276	2017-07-20 10:30	2006-03-19	Show	GitHub Exploit DB Packet Storm

348644	-	sherzod_ruzmetov	cgi_session	CGI::Session 4.03-1 allows local users to overwrite arbitrary files via a symlink attack on temporary files used by (1) Driver::File, (2) Driver::db_file, and possibly (3) Driver::sqlite.	NVD-CWE-Other	CVE-2006-1279	2017-07-20 10:30	2006-03-19	Show	GitHub Exploit DB Packet Storm

348645	-	sherzod_ruzmetov	cgi_session	CGI::Session 4.03-1 does not set proper permissions on temporary files created in (1) Driver::File and (2) Driver::db_file, which allows local users to obtain privileged information, such as session …	NVD-CWE-Other	CVE-2006-1280	2017-07-20 10:30	2006-03-19	Show	GitHub Exploit DB Packet Storm

348646	-	freebsd	freebsd	opiepasswd in One-Time Passwords in Everything (OPIE) in FreeBSD 4.10-RELEASE-p22 through 6.1-STABLE before 20060322 uses the getlogin function to determine the invoking user account, which might all…	NVD-CWE-Other	CVE-2006-1283	2017-07-20 10:30	2006-03-24	Show	GitHub Exploit DB Packet Storm

348647	-	symantec	ghost_solutions_suite norton_ghost	Buffer overflow in the login dialog in dbisqlc.exe in SQLAnywhere for Symantec Ghost 8.0 and 8.2, as used in Symantec Ghost Solutions Suite (SGSS) 1.0, might allow local users to read certain sensiti…	NVD-CWE-Other	CVE-2006-1286	2017-07-20 10:30	2006-03-20	Show	GitHub Exploit DB Packet Storm

348648	-	symantec	ghost_solutions_suite norton_ghost	Update to Symantec Ghost 8.3 that is shipped as a part of Symantec Ghost Solutions Suite 1.1.	NVD-CWE-Other	CVE-2006-1286	2017-07-20 10:30	2006-03-20	Show	GitHub Exploit DB Packet Storm

348649	-	invision_power_services	invision_power_board	Multiple SQL injection vulnerabilities in Invision Power Board (IPB) 2.0.4 and 2.1.4 before 20060105 allow remote attackers to execute arbitrary SQL commands via cookies, related to (1) arrays of id/…	NVD-CWE-Other	CVE-2006-1288	2017-07-20 10:30	2006-03-20	Show	GitHub Exploit DB Packet Storm

348650	-	spip	spip	Cross-site scripting (XSS) vulnerability in recherche.php3 in SPIP 1.8.2-g allows remote attackers to inject arbitrary web script or HTML via the recherche parameter.	NVD-CWE-Other	CVE-2006-1295	2017-07-20 10:30	2006-03-20	Show	GitHub Exploit DB Packet Storm