Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 24, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4671	7.5	重要 Network	Espressif Systems	ESP32 Arduino	Espressif SystemsのESP32 Arduinoにおける認証に関する脆弱性	CWE-287 CWE-noinfo	CVE-2026-42855	2026-05-18 11:30	2026-05-12	Show	GitHub Exploit DB Packet Storm

4672	6.1	警告 Network	マイクロソフト	Microsoft Exchange Server	マイクロソフトのMicrosoft Exchange Serverにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-42897	2026-05-18 11:30	2026-05-14	Show	GitHub Exploit DB Packet Storm

4673	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける有効期限後のメモリの解放の欠如に関する脆弱性	CWE-401 有効期限後のメモリの解放の欠如	CVE-2026-43286	2026-05-18 11:29	2026-05-8	Show	GitHub Exploit DB Packet Storm

4674	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける有効期限後のメモリの解放の欠如に関する脆弱性	CWE-401 有効期限後のメモリの解放の欠如	CVE-2026-43287	2026-05-18 11:29	2026-05-8	Show	GitHub Exploit DB Packet Storm

4675	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける初期化されていないリソースの使用に関する脆弱性	CWE-908 初期化されていないリソースの使用	CVE-2026-43288	2026-05-18 11:29	2026-05-8	Show	GitHub Exploit DB Packet Storm

4676	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-43289	2026-05-18 11:29	2026-05-8	Show	GitHub Exploit DB Packet Storm

4677	7.5	重要 Network	Linux	Linux Kernel	LinuxのLinux Kernelにおけるリソースのロックに関する脆弱性	CWE-667 不適切なロック	CVE-2026-43296	2026-05-18 11:29	2026-05-8	Show	GitHub Exploit DB Packet Storm

4678	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux KernelにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-43297	2026-05-18 11:29	2026-05-8	Show	GitHub Exploit DB Packet Storm

4679	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-43298	2026-05-18 11:29	2026-05-8	Show	GitHub Exploit DB Packet Storm

4680	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-43299	2026-05-18 11:29	2026-05-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 24, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
349211	-	postnuke_software_foundation	postnuke	Interpretation conflict in PostNuke 0.761 and earlier allows remote attackers to conduct cross-site scripting (XSS) attacks via HTML tags with a trailing "<" character, which is interpreted as a ">" …	CWE-79 Cross-site Scripting	CVE-2006-0800	2017-07-20 10:30	2006-02-21	Show	GitHub Exploit DB Packet Storm

349212	-	postnuke_software_foundation	postnuke	SQL injection vulnerability in the NS-Languages module for PostNuke 0.761 and earlier, when magic_quotes_gpc is off, allows remote attackers to execute arbitrary SQL commands via the language paramet…	NVD-CWE-Other	CVE-2006-0801	2017-07-20 10:30	2006-02-21	Show	GitHub Exploit DB Packet Storm

349213	-	postnuke_software_foundation	postnuke	Successful exploitation requires that the "magic_quotes_gpc" parameter is disabled.	NVD-CWE-Other	CVE-2006-0801	2017-07-20 10:30	2006-02-21	Show	GitHub Exploit DB Packet Storm

349214	-	postnuke_software_foundation	postnuke	Cross-site scripting (XSS) vulnerability in the NS-Languages module for PostNuke 0.761 and earlier, when magic_quotes_gpc is enabled, allows remote attackers to inject arbitrary web script or HTML vi…	NVD-CWE-Other	CVE-2006-0802	2017-07-20 10:30	2006-02-21	Show	GitHub Exploit DB Packet Storm

349215	-	postnuke_software_foundation	postnuke	Successful exploitation requires that the "magic_quotes_gpc" parameter is disabled.	NVD-CWE-Other	CVE-2006-0802	2017-07-20 10:30	2006-02-21	Show	GitHub Exploit DB Packet Storm

349216	-	tin	tin	Off-by-one error in TIN 1.8.0 and earlier might allow attackers to execute arbitrary code via unknown vectors that trigger a buffer overflow.	NVD-CWE-Other	CVE-2006-0804	2017-07-20 10:30	2006-02-21	Show	GitHub Exploit DB Packet Storm

349217	-	mute	mute	MUTE 0.4 allows remote attackers to cause a denial of service (messages not forwarded) and obtain sensitive information about a target by filling a client's mWebCache cache with malicious "zombie" no…	NVD-CWE-Other	CVE-2006-0808	2017-07-20 10:30	2006-02-21	Show	GitHub Exploit DB Packet Storm

349218	-	skate_board	skate_board	Multiple SQL injection vulnerabilities in Skate Board 0.9 allow remote attackers to execute arbitrary SQL commands via the (1) usern parameter in (a) sendpass.php, and the (2) usern and (3) passwd pa…	NVD-CWE-Other	CVE-2006-0809	2017-07-20 10:30	2006-02-21	Show	GitHub Exploit DB Packet Storm

349219	-	skate_board	skate_board	Unspecified vulnerability in config.php in Skate Board 0.9 allows remote authenticated administrators to execute arbitrary PHP code by causing certain variables in config.php to be modified, possibly…	NVD-CWE-Other	CVE-2006-0810	2017-07-20 10:30	2006-02-21	Show	GitHub Exploit DB Packet Storm

349220	-	skate_board	skate_board	Cross-site scripting (XSS) vulnerability in reguser.php in Skate Board 0.9 allows remote attackers to inject arbitrary web script or HTML via unspecified parameters involved with the registration for…	NVD-CWE-Other	CVE-2006-0811	2017-07-20 10:30	2006-02-21	Show	GitHub Exploit DB Packet Storm