Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 22, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4931	6.5	警告 Network	Raindrop	Raindrop	Raindropにおける複数の脆弱性	CWE-20 CWE-284	CVE-2026-31192	2026-05-14 10:13	2026-04-22	Show	GitHub Exploit DB Packet Storm

4932	7.3	重要 Network	D-Link Systems, Inc.	DCS-932L Firmware	D-Link CorporationのDCS-932L Firmwareにおけるコマンドインジェクションの脆弱性	CWE-77 コマンドインジェクション	CVE-2026-36983	2026-05-14 10:13	2026-05-11	Show	GitHub Exploit DB Packet Storm

4933	7.5	重要 Network	Niko Fohr (fohrloop)	dash-uploader	Niko Fohr (fohrloop)のdash-uploaderにおける複数の脆弱性	CWE-400 CWE-670 CWE-noinfo	CVE-2026-38361	2026-05-14 10:12	2026-05-8	Show	GitHub Exploit DB Packet Storm

4934	9.8	緊急 Network	Mauricio Poppe (mauriciopoppe)	math-codegen	Mauricio Poppe (mauriciopoppe)のmath-codegenにおけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2026-41507	2026-05-14 10:12	2026-05-8	Show	GitHub Exploit DB Packet Storm

4935	9.8	緊急 Network	CROSS-CRYPT.COM	CROSS	CROSS-CRYPT.COMのCROSSにおける複数の脆弱性	CWE-121 CWE-122	CVE-2026-41509	2026-05-14 10:12	2026-05-8	Show	GitHub Exploit DB Packet Storm

4936	7.5	重要 Network	DCIT	CryptX	DCITのCryptXにおける複数の脆弱性	CWE-335 CWE-338	CVE-2026-41564	2026-05-14 10:12	2026-04-23	Show	GitHub Exploit DB Packet Storm

4937	6.1	警告 Network	th30d4y	w4nn4d13/ip	th30d4yのw4nn4d13/ipにおける複数の脆弱性	CWE-79 CWE-79 CWE-80	CVE-2026-41575	2026-05-14 10:12	2026-05-8	Show	GitHub Exploit DB Packet Storm

4938	7.8	重要 Local	dail8859	Notepad Next	dail8859のNotepad Nextにおけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2026-42214	2026-05-14 10:12	2026-05-7	Show	GitHub Exploit DB Packet Storm

4939	7.1	重要 Network	Legeling	PromptHUB	LegelingのPromptHUBにおける複数の脆弱性	CWE-20 CWE-693 CWE-918	CVE-2026-42261	2026-05-14 10:12	2026-05-8	Show	GitHub Exploit DB Packet Storm

4940	9.9	緊急 Network	Apache Software Foundation	Polaris	Apache Software FoundationのPolarisにおける複数の脆弱性	CWE-20 CWE-862	CVE-2026-42809	2026-05-14 10:12	2026-05-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 22, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
349301	-	datenbank_module	datenbank_module	This vulnerability may only affect Datenbank MOD 2.7 and earlier versions in a Woltlab Burning Board environment.	NVD-CWE-Other	CVE-2006-1097	2017-07-20 10:30	2006-03-9	Show	GitHub Exploit DB Packet Storm

349302	-	bmail	bmail	SQL injection vulnerability in bmail before Aardvark PR9.1 allows remote attackers to execute arbitrary SQL commands via unspecified vectors involving GBK character sets.	NVD-CWE-Other	CVE-2006-1118	2017-07-20 10:30	2006-03-9	Show	GitHub Exploit DB Packet Storm

349303	-	gallery_project	gallery	Gallery 2 up to 2.0.2 allows remote attackers to spoof their IP address via a modified X-Forwarded-For (X_FORWARDED_FOR) HTTP header, which is checked by Gallery before other more reliable sources of…	NVD-CWE-Other	CVE-2006-1126	2017-07-20 10:30	2006-03-10	Show	GitHub Exploit DB Packet Storm

349304	-	gallery_project	gallery	Cross-site scripting (XSS) vulnerability in Gallery 2 up to 2.0.2 allows remote attackers to inject arbitrary web script or HTML via the X-Forwarded-For (X_FORWARDED_FOR) HTTP header, which is not pr…	NVD-CWE-Other	CVE-2006-1127	2017-07-20 10:30	2006-03-10	Show	GitHub Exploit DB Packet Storm

349305	-	gallery_project	gallery	Directory traversal vulnerability in the session handling class (GallerySession.class) in Gallery 2 up to 2.0.2 allows remote attackers to access and delete files by specifying the session in a cooki…	NVD-CWE-Other	CVE-2006-1128	2017-07-20 10:30	2006-03-10	Show	GitHub Exploit DB Packet Storm

349306	-	bitweaver	bitweaver	Cross-site scripting (XSS) vulnerability in read.php in bitweaver CMS 1.2.1 allows remote attackers to inject arbitrary web script or HTML via the comment_title parameter.	NVD-CWE-Other	CVE-2006-1131	2017-07-20 10:30	2006-03-10	Show	GitHub Exploit DB Packet Storm

349307	-	sblog	sblog	Multiple cross-site scripting (XSS) vulnerabilities in sBlog 0.7.2 allow remote attackers to inject arbitrary web script or HTML via the (1) keyword parameter to search.php or (2) username parameter …	NVD-CWE-Other	CVE-2006-1135	2017-07-20 10:30	2006-03-10	Show	GitHub Exploit DB Packet Storm

349308	-	redblog	redblog	SQL injection vulnerability in rss.php in RedBLoG 0.5 allows remote attackers to execute arbitrary SQL commands via the cat_id parameter.	NVD-CWE-Other	CVE-2006-1140	2017-07-20 10:30	2006-03-10	Show	GitHub Exploit DB Packet Storm

349309	-	inter7	qmailadmin	Buffer overflow in qmailadmin.c in QmailAdmin before 1.2.10 allows remote attackers to execute arbitrary code via a long PATH_INFO environment variable.	NVD-CWE-Other	CVE-2006-1141	2017-07-20 10:30	2006-03-10	Show	GitHub Exploit DB Packet Storm

349310	-	solido_systems	ravenous_web_server	Unspecified vulnerability in Ravenous Web Server before 0.7.1 allows remote attackers to access arbitrary rvplg files, with unknown impact.	NVD-CWE-Other	CVE-2006-1142	2017-07-20 10:30	2006-03-10	Show	GitHub Exploit DB Packet Storm