Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 22, 2026, 6:01 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 5211 | 9.8 |
緊急
Network |
Electerm project | Electerm | Electerm projectのElectermにおけるコマンドインジェクションの脆弱性 |
CWE-77
コマンドインジェクション |
CVE-2026-41501 | 2026-05-11 11:09 | 2026-05-8 | Show | GitHub Exploit DB Packet Storm |
| 5212 | 7.8 |
重要
Local |
Sebastian Bergmann | PHPUnit | Sebastian BergmannのPHPUnitにおける複数の脆弱性 |
CWE-88 CWE-93 |
CVE-2026-41570 | 2026-05-11 11:09 | 2026-05-8 | Show | GitHub Exploit DB Packet Storm |
| 5213 | 7.5 |
重要
Network |
Zcash Foundation |
Zebra-chain Zebrad |
Zcash FoundationのZebra-chain等の複数製品における到達可能なアサーションに関する脆弱性 |
CWE-617
到達可能なアサーション |
CVE-2026-41584 | 2026-05-11 11:09 | 2026-05-8 | Show | GitHub Exploit DB Packet Storm |
| 5214 | 5.3 |
警告
Network |
projectdiscovery | Nuclei | ProjectDiscovery, Inc.のNucleiにおけるコードインジェクションの脆弱性 |
CWE-94
コード・インジェクション |
CVE-2026-41645 | 2026-05-11 11:09 | 2026-05-8 | Show | GitHub Exploit DB Packet Storm |
| 5215 | 5.5 |
警告
Local |
projectdiscovery | Nuclei | ProjectDiscovery, Inc.のNucleiにおけるアクセス制御に関する脆弱性 |
CWE-284
不適切なアクセス制御 |
CVE-2026-41646 | 2026-05-11 11:09 | 2026-05-8 | Show | GitHub Exploit DB Packet Storm |
| 5216 | 8.1 |
重要
Network |
- | OpenC3のOpenC3 COSMOSにおける未検証のパスワード変更に関する脆弱性 |
CWE-620
未検証のパスワード変更 |
CVE-2026-42084 | 2026-05-11 11:09 | 2026-05-4 | Show | GitHub Exploit DB Packet Storm | |
| 5217 | 4.3 |
警告
Network |
- | OpenC3のOpenC3 COSMOSにおける相対パストラバーサルの脆弱性 |
CWE-23
相対的パストラバーサル |
CVE-2026-42085 | 2026-05-11 11:09 | 2026-05-4 | Show | GitHub Exploit DB Packet Storm | |
| 5218 | 4.6 |
警告
Network |
- | OpenC3のOpenC3 COSMOSにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2026-42086 | 2026-05-11 11:09 | 2026-05-4 | Show | GitHub Exploit DB Packet Storm | |
| 5219 | 9.6 |
緊急
Network |
- | OpenC3のOpenC3 COSMOSにおけるSQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2026-42087 | 2026-05-11 11:09 | 2026-05-4 | Show | GitHub Exploit DB Packet Storm | |
| 5220 | 9.8 |
緊急
Network |
litellm | litellm | LiteLLMにおけるSQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2026-42208 | 2026-05-11 11:09 | 2026-05-8 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 22, 2026, 4 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 349061 | - | secure_elements | class_5_enterprise_vulnerability_management | Secure Elements Class 5 AVR client (aka C5 EVM) before 2.8.1 allows remote attackers to read portions of process memory via a modified size for (1) EM_GET_CE_PARAMETER and (2) EM_SET_CE_PARAMETER mes… |
NVD-CWE-Other
|
CVE-2006-2708 | 2017-07-20 10:31 | 2006-06-1 | Show | GitHub Exploit DB Packet Storm | |
| 349062 | - | secure_elements | class_5_enterprise_vulnerability_management | Upgrade to version 2.8.1 |
NVD-CWE-Other
|
CVE-2006-2708 | 2017-07-20 10:31 | 2006-06-1 | Show | GitHub Exploit DB Packet Storm | |
| 349063 | - | secure_elements | class_5_enterprise_vulnerability_management | Secure Elements Class 5 AVR (aka C5 EVM) before 2.8.1 do not validate the source address of a message, which allows remote attackers to (1) execute arbitrary code on a client or (2) forge messages to… |
NVD-CWE-Other
|
CVE-2006-2709 | 2017-07-20 10:31 | 2006-06-1 | Show | GitHub Exploit DB Packet Storm | |
| 349064 | - | secure_elements | class_5_enterprise_vulnerability_management | Upgrade to version 2.8.1 |
NVD-CWE-Other
|
CVE-2006-2709 | 2017-07-20 10:31 | 2006-06-1 | Show | GitHub Exploit DB Packet Storm | |
| 349065 | - | secure_elements | class_5_enterprise_vulnerability_management | Secure Elements Class 5 AVR (aka C5 EVM) before 2.8.1 uses the same invariant RSA key for all installations, which allows remote attackers with the key to decrypt communications. |
NVD-CWE-Other
|
CVE-2006-2710 | 2017-07-20 10:31 | 2006-06-1 | Show | GitHub Exploit DB Packet Storm | |
| 349066 | - | secure_elements | class_5_enterprise_vulnerability_management | Upgrade to 2.8.1 |
NVD-CWE-Other
|
CVE-2006-2710 | 2017-07-20 10:31 | 2006-06-1 | Show | GitHub Exploit DB Packet Storm | |
| 349067 | - | secure_elements | class_5_enterprise_vulnerability_management | Secure Elements Class 5 AVR (aka C5 EVM) 2.8.1 and earlier, and possibly later 2.8.x releases, uses the same initialization vector and key for each message session, which allows remote attackers to o… |
NVD-CWE-Other
|
CVE-2006-2711 | 2017-07-20 10:31 | 2006-06-1 | Show | GitHub Exploit DB Packet Storm | |
| 349068 | - | secure_elements | class_5_enterprise_vulnerability_management | Upgrade to 2.8.1 |
NVD-CWE-Other
|
CVE-2006-2711 | 2017-07-20 10:31 | 2006-06-1 | Show | GitHub Exploit DB Packet Storm | |
| 349069 | - | secure_elements | class_5_enterprise_vulnerability_management | Secure Elements Class 5 AVR (aka C5 EVM) client and server before 2.8.1 do not verify the integrity of a message digest, which allows remote attackers to modify and replay messages. |
NVD-CWE-Other
|
CVE-2006-2712 | 2017-07-20 10:31 | 2006-06-1 | Show | GitHub Exploit DB Packet Storm | |
| 349070 | - | secure_elements | class_5_enterprise_vulnerability_management | Upgrade to version 2.8.1 |
NVD-CWE-Other
|
CVE-2006-2712 | 2017-07-20 10:31 | 2006-06-1 | Show | GitHub Exploit DB Packet Storm |