Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 7, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
4091 8.8 重要
Network 		Nexxt Solutions Nebula300Plus Firmware Nexxt SolutionsのNebula300Plus Firmwareにおける非公開の機能に関する脆弱性 CWE-912
非公開の機能 		CVE-2026-31847 2026-05-1 10:38 2026-03-23 Show GitHub Exploit DB Packet Storm
4092 9.8 緊急
Network 		Nexxt Solutions Nebula300Plus Firmware Nexxt SolutionsのNebula300Plus Firmwareにおける重要な情報の平文保存に関する脆弱性 CWE-312
重要な情報の平文保存 		CVE-2026-31848 2026-05-1 10:38 2026-03-23 Show GitHub Exploit DB Packet Storm
4093 6.5 警告
Network 		Nexxt Solutions Nebula300Plus Firmware Nexxt SolutionsのNebula300Plus Firmwareにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2026-31849 2026-05-1 10:38 2026-03-23 Show GitHub Exploit DB Packet Storm
4094 4.9 警告
Network 		Nexxt Solutions Nebula300Plus Firmware Nexxt SolutionsのNebula300Plus Firmwareにおける認証情報の平文保存に関する脆弱性 CWE-256
平文でパスワードを保存 		CVE-2026-31850 2026-05-1 10:38 2026-03-23 Show GitHub Exploit DB Packet Storm
4095 9.8 緊急
Network 		Nexxt Solutions Nebula300Plus Firmware Nexxt SolutionsのNebula300Plus Firmwareにおける過度な認証試行の不適切な制限に関する脆弱性 CWE-307
過度な認証試行の不適切な制限 		CVE-2026-31851 2026-05-1 10:38 2026-03-23 Show GitHub Exploit DB Packet Storm
4096 6.1 警告
Network 		angular Angular CLI angularのAngular CLIにおけるオープンリダイレクトの脆弱性 CWE-601
オープンリダイレクト 		CVE-2026-33397 2026-05-1 10:38 2026-03-26 Show GitHub Exploit DB Packet Storm
4097 9.1 緊急
Network 		Fatedier FRP FatedierのFRPにおける認証に関する脆弱性 CWE-287
CWE-noinfo
CVE-2026-40910 2026-05-1 10:38 2026-04-21 Show GitHub Exploit DB Packet Storm
4098 8.8 重要
Network 		VMware Spring gRPC VMwareのSpring gRPCにおける隔離または分類に関する脆弱性 CWE-653
不適切な隔離または分類 		CVE-2026-40968 2026-05-1 10:38 2026-04-28 Show GitHub Exploit DB Packet Storm
4099 5.3 警告
Network 		VMware Spring gRPC VMwareのSpring gRPCにおけるエラーメッセージによる情報漏えいに関する脆弱性 CWE-209
エラーメッセージによる情報漏えい 		CVE-2026-40969 2026-05-1 10:38 2026-04-28 Show GitHub Exploit DB Packet Storm
4100 7.5 重要
Network 		Frappe Press FrappeのPressにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2026-41317 2026-05-1 10:38 2026-04-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 8, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
347341 - hitachi jpi_netsight_ii_port_discovery_advance
jpi_netsight_ii_port_discovery_standard 		Unspecified vulnerability in the Port Discovery Standard and Advanced features in Hitachi JP1/NetInsight II allows attackers to stop the Port Discovery service via unknown vectors involving "invalid … NVD-CWE-Other
CVE-2006-0343 2017-07-20 10:29 2006-01-21 Show GitHub Exploit DB Packet Storm
347342 - intervations filecopa Directory traversal vulnerability in Intervations FileCOPA FTP Server 1.01 allows remote attackers to read and write arbitrary files via a .. (dot dot) in the (1) STOR and (2) RETR commands. NVD-CWE-Other
CVE-2006-0344 2017-07-20 10:29 2006-01-21 Show GitHub Exploit DB Packet Storm
347343 - saral_kaushik saralblog Multiple SQL injection vulnerabilities in SaralBlog 1.0 allow remote attackers to execute arbitrary SQL commands via the search parameter to search.php. NOTE: the id/viewprofile.php issue is already… NVD-CWE-Other
CVE-2006-0345 2017-07-20 10:29 2006-01-21 Show GitHub Exploit DB Packet Storm
347344 - saral_kaushik saralblog Cross-site scripting (XSS) vulnerability in SaralBlog 1.0 allows remote attackers to inject arbitrary web script or HTML via a website field in a new comment to view.php, which is not properly handle… NVD-CWE-Other
CVE-2006-0346 2017-07-20 10:29 2006-01-21 Show GitHub Exploit DB Packet Storm
347345 - stefan_ritt elog_web_logbook Directory traversal vulnerability in ELOG before 2.6.1 allows remote attackers to access arbitrary files outside of the elog directory via "../" (dot dot) sequences in the URL. NVD-CWE-Other
CVE-2006-0347 2017-07-20 10:29 2006-01-21 Show GitHub Exploit DB Packet Storm
347346 - stefan_ritt elog_web_logbook Format string vulnerability in the write_logfile function in ELOG before 2.6.1 allows remote attackers to cause a denial of service (server crash) via unknown attack vectors. NOTE: the provenance of… NVD-CWE-Other
CVE-2006-0348 2017-07-20 10:29 2006-01-21 Show GitHub Exploit DB Packet Storm
347347 - epic_designs eggblog SQL injection vulnerability in eggblog 2.0 allows remote attackers to execute arbitrary SQL commands via the id parameter to blog.php. NVD-CWE-Other
CVE-2006-0349 2017-07-20 10:29 2006-01-21 Show GitHub Exploit DB Packet Storm
347348 - epic_designs eggblog Cross-site scripting (XSS) vulnerability in eggblog 2.0 allow remote attackers to inject arbitrary web script or HTML via the message field to topic.php. NVD-CWE-Other
CVE-2006-0350 2017-07-20 10:29 2006-01-21 Show GitHub Exploit DB Packet Storm
347349 - don_moore mydns Unspecified "critical denial-of-service vulnerability" in MyDNS before 1.1.0 has unknown impact and attack vectors. NVD-CWE-Other
CVE-2006-0351 2017-07-20 10:29 2006-01-21 Show GitHub Exploit DB Packet Storm
347350 - gnu lsh unix_random.c in lshd for lsh 2.0.1 leaks file descriptors related to the randomness generator, which allows local users to cause a denial of service by truncating the seed file, which prevents the s… CWE-200
Information Exposure 		CVE-2006-0353 2017-07-20 10:29 2006-01-23 Show GitHub Exploit DB Packet Storm