Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 20, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
411 7.8 重要
Local 		- アップルのmacOSにおける権限管理に関する脆弱性 CWE-269
不適切な権限管理 		CVE-2025-31272 2026-06-15 11:21 2026-06-11 Show GitHub Exploit DB Packet Storm
412 5.5 警告
Local 		- アップルのmacOSにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2025-43339 2026-06-15 11:21 2026-06-11 Show GitHub Exploit DB Packet Storm
413 5.5 警告
Local 		- アップルのmacOSにおけるリンク解釈に関する脆弱性 CWE-59
リンク解釈の問題 		CVE-2025-46293 2026-06-15 11:21 2026-06-11 Show GitHub Exploit DB Packet Storm
414 5.3 警告
Network 		アップル iOS
iPadOS 		アップルのiPadOS等の複数製品におけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2025-46308 2026-06-15 11:21 2026-06-11 Show GitHub Exploit DB Packet Storm
415 7.5 重要
Network 		- アップルのmacOSにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2025-46315 2026-06-15 11:21 2026-06-11 Show GitHub Exploit DB Packet Storm
416 7.5 重要
Network 		GPAC GPAC GPACにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-121
スタックオーバーフロー 		CVE-2025-52292 2026-06-15 11:21 2026-06-9 Show GitHub Exploit DB Packet Storm
417 7.5 重要
Network 		GPAC GPAC GPACにおけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2025-52293 2026-06-15 11:21 2026-06-9 Show GitHub Exploit DB Packet Storm
418 5.5 警告
Local 		GPAC GPAC GPACにおけるNULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2025-55651 2026-06-15 11:21 2026-06-9 Show GitHub Exploit DB Packet Storm
419 7.5 重要
Network 		GPAC GPAC GPACにおけるNULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2025-55657 2026-06-15 11:21 2026-06-9 Show GitHub Exploit DB Packet Storm
420 6.5 警告
Network 		GPAC GPAC GPACにおける誤った演算子による浮動小数点の比較に関する脆弱性 CWE-1077
誤った演算子による浮動小数点の比較 		CVE-2025-55658 2026-06-15 11:21 2026-06-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 20, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
343971 - phpfaber topsites Multiple SQL injection vulnerabilities in index.php in phpFaber TopSites 2.0.9 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) i_cat or (2) method parameters. NVD-CWE-Other
CVE-2006-3770 2018-10-18 06:30 2006-07-24 Show GitHub Exploit DB Packet Storm
343972 - imaginex-resource imanage_cms Multiple PHP remote file inclusion vulnerabilities in component.php in iManage CMS 4.0.12 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the absolute_path parameter to … NVD-CWE-Other
CVE-2006-3771 2018-10-18 06:30 2006-07-24 Show GitHub Exploit DB Packet Storm
343973 - php-post php-post PHP-Post 0.21 and 1.0, and possibly earlier versions, when auto-login is enabled, allows remote attackers to bypass security restrictions and obtain administrative privileges by modifying the loginco… NVD-CWE-Other
CVE-2006-3772 2018-10-18 06:30 2006-07-24 Show GitHub Exploit DB Packet Storm
343974 - joomla performs_component PHP remote file inclusion vulnerability in performs.php in the perForms component (com_performs) 1.0 and earlier for Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the mos… CWE-94
Code Injection 		CVE-2006-3774 2018-10-18 06:30 2006-07-24 Show GitHub Exploit DB Packet Storm
343975 - mybulletinboard mybulletinboard SQL injection vulnerability in the init function in class_session.php in MyBB (aka MyBulletinBoard) 1.1.5 allows remote attackers to execute arbitrary SQL commands via the CLIENT-IP HTTP header ($_SE… CWE-89
SQL Injection 		CVE-2006-3775 2018-10-18 06:30 2006-07-24 Show GitHub Exploit DB Packet Storm
343976 - keyifweb keyif_portal Keyifweb Keyif Portal 2.0 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for (1) ANKET/ank… NVD-CWE-Other
CVE-2006-3780 2018-10-18 06:30 2006-07-24 Show GitHub Exploit DB Packet Storm
343977 - symantec pcanywhere Symantec pcAnywhere 12.5 uses weak default permissions for the "Symantec\pcAnywhere\Hosts" folder, which allows local users to gain privileges by inserting a superuser .cif (aka caller or CallerID) f… NVD-CWE-Other
CVE-2006-3784 2018-10-18 06:30 2006-07-24 Show GitHub Exploit DB Packet Storm
343978 - symantec pcanywhere Symantec pcAnywhere 12.5 obfuscates the passwords in a GUI textbox with asterisks but does not encrypt them in the associated .cif (aka caller or CallerID) file, which allows local users to obtain th… NVD-CWE-Other
CVE-2006-3785 2018-10-18 06:30 2006-07-24 Show GitHub Exploit DB Packet Storm
343979 - symantec pcanywhere Symantec pcAnywhere 12.5 uses weak integrity protection for .cif (aka caller or CallerID) files, which allows local users to generate a custom .cif file and modify the superuser flag. NVD-CWE-Other
CVE-2006-3786 2018-10-18 06:30 2006-07-24 Show GitHub Exploit DB Packet Storm
343980 - kerio personal_firewall kpf4ss.exe in Sunbelt Kerio Personal Firewall 4.3.x before 4.3.268 does not properly hook the CreateRemoteThread API function, which allows local users to cause a denial of service (crash) and bypass… NVD-CWE-Other
CVE-2006-3787 2018-10-18 06:30 2006-07-24 Show GitHub Exploit DB Packet Storm