Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 22, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
521	3.7	低 Network	OpenSSL Project	OpenSSL	OpenSSL ProjectのOpenSSLにおける暗号化処理の不備に関する脆弱性	CWE-325 暗号化処理の不備	CVE-2026-42770	2026-06-17 15:46	2026-06-9	Show	GitHub Exploit DB Packet Storm

522	6.2	警告 Local	OpenSSL Project	OpenSSL	OpenSSL ProjectのOpenSSLにおける境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2026-42771	2026-06-17 15:46	2026-06-9	Show	GitHub Exploit DB Packet Storm

523	8.8	重要 Network	Kovidgoyal	Kitty	KovidgoyalのKittyにおけるコマンドインジェクションの脆弱性	CWE-77 コマンドインジェクション	CVE-2026-42850	2026-06-17 15:46	2026-06-12	Show	GitHub Exploit DB Packet Storm

524	7.8	重要 Local	Kovidgoyal	Kitty	KovidgoyalのKittyにおける複数の脆弱性	CWE-862 CWE-94	CVE-2026-42851	2026-06-17 15:46	2026-06-12	Show	GitHub Exploit DB Packet Storm

525	9.8	緊急 Network	MariaDB Corporation Ab.	MariaDB	MariaDB Corporation Ab.のMariaDBにおけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-44170	2026-06-17 15:46	2026-06-12	Show	GitHub Exploit DB Packet Storm

526	7.8	重要 Local	MariaDB Corporation Ab.	MariaDB	MariaDB Corporation Ab.のMariaDBにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-44171	2026-06-17 15:45	2026-06-12	Show	GitHub Exploit DB Packet Storm

527	9.8	緊急 Network	MariaDB Corporation Ab.	MariaDB	MariaDB Corporation Ab.のMariaDBにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2026-44172	2026-06-17 15:45	2026-06-12	Show	GitHub Exploit DB Packet Storm

528	5.3	警告 Network	MariaDB Corporation Ab.	MariaDB	MariaDB Corporation Ab.のMariaDBにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-44173	2026-06-17 15:45	2026-06-12	Show	GitHub Exploit DB Packet Storm

529	5.3	警告 Adjacent	opentelemetry	opentelemetry	opentelemetryにおける過剰なサイズ値のメモリ割り当てに関する脆弱性	CWE-789 過剰なサイズ値のメモリ割り当て	CVE-2026-44967	2026-06-17 15:45	2026-06-12	Show	GitHub Exploit DB Packet Storm

530	7.5	重要 Network	OpenSSL Project	OpenSSL	OpenSSL ProjectのOpenSSLにおける暗号化処理の不備に関する脆弱性	CWE-325 暗号化処理の不備	CVE-2026-45445	2026-06-17 15:45	2026-06-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 23, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
343701	-	joomla mambo	moslistmessenger_component	PHP remote file inclusion vulnerability in archive.php in the mosListMessenger Component (com_lm) before 20060719 for Mambo and Joomla! allows remote attackers to execute arbitrary PHP code via a URL…	NVD-CWE-Other	CVE-2006-4229	2018-10-18 06:34	2006-08-19	Show	GitHub Exploit DB Packet Storm

343702	-	lizge	lizge_web_portal	Multiple PHP remote file inclusion vulnerabilities in index.php in Lizge V.20 Web Portal allow remote attackers to execute arbitrary PHP code via a URL in the (1) lizge or (2) bade parameters.	NVD-CWE-Other	CVE-2006-4230	2018-10-18 06:34	2006-08-19	Show	GitHub Exploit DB Packet Storm

343703	-	irfanview	irfanview	IrfanView 3.98 (with plugins) allows remote attackers to cause a denial of service (application crash) via a crafted CUR image file.	NVD-CWE-Other	CVE-2006-4231	2018-10-18 06:34	2006-08-19	Show	GitHub Exploit DB Packet Storm

343704	-	powergap	powergap_business powergap_lite	Multiple PHP remote file inclusion vulnerabilities in POWERGAP allow remote attackers to execute arbitrary PHP code via a URL in the (1) shopid parameter to (a) s01.php, (b) s02.php, (c) s03.php, and…	NVD-CWE-Other	CVE-2006-4236	2018-10-18 06:34	2006-08-22	Show	GitHub Exploit DB Packet Storm

343705	-	mamboxchange	reporter	PHP remote file inclusion vulnerability in processor/reporter.sql.php in the Reporter Mambo component (com_reporter) allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_a…	NVD-CWE-Other	CVE-2006-4241	2018-10-18 06:34	2006-08-22	Show	GitHub Exploit DB Packet Storm

343706	-	joomla	jim_instant_messaging_component	PHP remote file inclusion vulnerability in install.jim.php in the JIM 1.0.1 component for Joomla or Mambo allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_pat…	NVD-CWE-Other	CVE-2006-4242	2018-10-18 06:34	2006-08-22	Show	GitHub Exploit DB Packet Storm

343707	-	joomla	jim_instant_messaging_component	Successful exploitation requires that "register_globals" is enabled.	NVD-CWE-Other	CVE-2006-4242	2018-10-18 06:34	2006-08-22	Show	GitHub Exploit DB Packet Storm

343708	-	horde	horde imp	Cross-site scripting (XSS) vulnerability in horde/imp/search.php in Horde IMP H3 before 4.1.3 allows remote attackers to include arbitrary web script or HTML via multiple unspecified vectors related …	NVD-CWE-Other	CVE-2006-4255	2018-10-18 06:34	2006-08-22	Show	GitHub Exploit DB Packet Storm

343709	-	horde	application_framework	index.php in Horde Application Framework before 3.1.2 allows remote attackers to include web pages from other sites, which could be useful for phishing attacks, via a URL in the url parameter, aka "c…	NVD-CWE-Other	CVE-2006-4256	2018-10-18 06:34	2006-08-22	Show	GitHub Exploit DB Packet Storm

343710	-	ibm	db2	IBM DB2 Universal Database (UDB) before 8.1 FixPak 13 allows remote authenticated users to cause a denial of service (crash) by (1) sending the first ACCSEC command without an RDBNAM parameter during…	CWE-399 Resource Management Errors	CVE-2006-4257	2018-10-18 06:34	2006-08-22	Show	GitHub Exploit DB Packet Storm