Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 29, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4091	3.3	低 Local	Artifex Software	MuPDF	Artifex SoftwareのMuPDFにおけるエスケープ、メタ、またはコントロールシーケンスの不適切な無効化に関する脆弱性	CWE-150 エスケープ、メタ、またはコントロールシーケンスの不適切な無効化	CVE-2026-40505	2026-05-28 14:42	2026-04-16	Show	GitHub Exploit DB Packet Storm

4092	7.5	重要 Network	NLnet Labs	unbound	NLnet Labsのunboundにおける同一生成元ポリシー違反に関する脆弱性	CWE-346 同一生成元ポリシー違反	CVE-2026-40622	2026-05-28 14:42	2026-05-20	Show	GitHub Exploit DB Packet Storm

4093	4.8	警告 Network	PowerDNS	PowerDNS Authoritative Server	PowerDNSのPowerDNS Authoritative Serverにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-41999	2026-05-28 14:42	2026-05-21	Show	GitHub Exploit DB Packet Storm

4094	8.6	重要 Network	PowerDNS	PowerDNS Authoritative Server	PowerDNSのPowerDNS Authoritative Serverにおけるコマンドインジェクションの脆弱性	CWE-77 コマンドインジェクション	CVE-2026-42000	2026-05-28 14:42	2026-05-21	Show	GitHub Exploit DB Packet Storm

4095	7.5	重要 Network	PowerDNS	PowerDNS Authoritative Server	PowerDNSのPowerDNS Authoritative Serverにおけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-42001	2026-05-28 14:42	2026-05-21	Show	GitHub Exploit DB Packet Storm

4096	7.5	重要 Network	PowerDNS	PowerDNS Authoritative Server	PowerDNSのPowerDNS Authoritative Serverにおけるシグナルハンドラの競合状態に関する脆弱性	CWE-364 シグナルハンドラの競合状態	CVE-2026-42002	2026-05-28 14:42	2026-05-21	Show	GitHub Exploit DB Packet Storm

4097	8.8	重要 Network	Project Jupyter	JupyterLab	Project JupyterのJupyterLabにおける複数の脆弱性	CWE-602 CWE-88	CVE-2026-42266	2026-05-28 14:42	2026-05-13	Show	GitHub Exploit DB Packet Storm

4098	6.5	警告 Network	PowerDNS	PowerDNS Authoritative Server	PowerDNSのPowerDNS Authoritative Serverにおけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2026-42396	2026-05-28 14:42	2026-05-21	Show	GitHub Exploit DB Packet Storm

4099	4.9	警告 Network	Minio Inc.	Minio	Minio Inc.のMinioにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-42600	2026-05-28 14:42	2026-05-11	Show	GitHub Exploit DB Packet Storm

4100	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux KernelにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-43058	2026-05-28 14:41	2026-05-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 30, 2026, 4:22 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
345631	-	david_barrett	qwikiwiki	Cross-site scripting (XSS) vulnerability in index.php in QwikiWiki 1.4 allows remote attackers to inject arbitrary web script or HTML via the page parameter.	NVD-CWE-Other	CVE-2006-0983	2018-10-19 01:30	2006-03-3	Show	GitHub Exploit DB Packet Storm

345632	-	ej3	topo	Cross-site scripting (XSS) vulnerability in inc_header.php in EJ3 TOPo 2.2.178 allows remote attackers to inject arbitrary web script or HTML via the gTopNombre parameter.	NVD-CWE-Other	CVE-2006-0984	2018-10-19 01:30	2006-03-3	Show	GitHub Exploit DB Packet Storm

345633	-	ej3	topo	This vulnerability affects EJ3, TOPo version 2.2.178, and possibly all previous versions.	NVD-CWE-Other	CVE-2006-0984	2018-10-19 01:30	2006-03-3	Show	GitHub Exploit DB Packet Storm

345634	-	wordpress	wordpress	Multiple cross-site scripting (XSS) vulnerabilities in the "post comment" functionality of WordPress 2.0.1 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) name, …	NVD-CWE-Other	CVE-2006-0985	2018-10-19 01:30	2006-03-3	Show	GitHub Exploit DB Packet Storm

345635	-	wordpress	wordpress	WordPress 2.0.1 and earlier allows remote attackers to obtain sensitive information via a direct request to (1) default-filters.php, (2) template-loader.php, (3) rss-functions.php, (4) locale.php, (5…	NVD-CWE-Other	CVE-2006-0986	2018-10-19 01:30	2006-03-3	Show	GitHub Exploit DB Packet Storm

345636	-	isc	bind	The default configuration of ISC BIND before 9.4.1-P1, when configured as a caching name server, allows recursive queries and provides additional delegation information to arbitrary IP addresses, whi…	NVD-CWE-Other	CVE-2006-0987	2018-10-19 01:30	2006-03-3	Show	GitHub Exploit DB Packet Storm

345637	-	isc	bind	This vulnerability affects ISC, BIND versions 9.3.2 and previous.	NVD-CWE-Other	CVE-2006-0987	2018-10-19 01:30	2006-03-3	Show	GitHub Exploit DB Packet Storm

345638	-	microsoft	windows_2000 windows_2003_server windows_nt	The default configuration of the DNS Server service on Windows Server 2003 and Windows 2000, and the Microsoft DNS Server service on Windows NT 4.0, allows recursive queries and provides additional d…	NVD-CWE-Other	CVE-2006-0988	2018-10-19 01:30	2006-03-3	Show	GitHub Exploit DB Packet Storm

345639	-	microsoft	windows_2000 windows_2003_server windows_nt	This vulnerability affects all versions of Windows 2000 -and- Windows Server 2003.	NVD-CWE-Other	CVE-2006-0988	2018-10-19 01:30	2006-03-3	Show	GitHub Exploit DB Packet Storm

345640	-	veritas	netbackup	Stack-based buffer overflow in the volume manager daemon (vmd) in Veritas NetBackup Enterprise Server 5.0 through 6.0 and DataCenter and BusinesServer 4.5FP and 4.5MP allows attackers to execute arbi…	NVD-CWE-Other	CVE-2006-0989	2018-10-19 01:30	2006-03-28	Show	GitHub Exploit DB Packet Storm