Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 16, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
521 8.7 重要
Network 		GitLab.org GitLab GitLab.orgのGitLabにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-8589 2026-06-12 14:44 2026-06-11 Show GitHub Exploit DB Packet Storm
522 6.5 警告
Network 		GitLab.org GitLab GitLab.orgのGitLabにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-9204 2026-06-12 14:44 2026-06-11 Show GitHub Exploit DB Packet Storm
523 4.3 警告
Network 		GitLab.org GitLab GitLab.orgのGitLabにおける置換文字列の無害化に関する脆弱性 CWE-153
置換文字列の不適切な無害化 		CVE-2026-9694 2026-06-12 14:44 2026-06-11 Show GitHub Exploit DB Packet Storm
524 7.8 重要
Local 		The Open Group Unix opengroupのUnixにおける古典的バッファオーバーフローの脆弱性 CWE-120
古典的バッファオーバーフロー 		CVE-2025-71263 2026-06-12 14:35 2026-03-13 Show GitHub Exploit DB Packet Storm
525 7.5 重要
Network 		Dana Powers (dpkp) kafka-python Dana Powers (dpkp)のkafka-pythonにおける過剰なサイズ値のメモリ割り当てに関する脆弱性 CWE-789
過剰なサイズ値のメモリ割り当て 		CVE-2026-10142 2026-06-12 14:35 2026-06-10 Show GitHub Exploit DB Packet Storm
526 7.5 重要
Network 		Dana Powers (dpkp) kafka-python Dana Powers (dpkp)のkafka-pythonにおけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2026-10143 2026-06-12 14:35 2026-06-10 Show GitHub Exploit DB Packet Storm
527 7.8 重要
Local 		マイクロソフト Microsoft Office 2024 Long-Term Servicing Channel Edition
Microsoft Office 2021 Long Term Servicing Channel Edition
Microsoft&nb… 		Microsoft Excel のリモートでコードが実行される脆弱性 CWE-843
型の取り違え 		CVE-2026-44817 2026-06-12 14:35 2026-06-9 Show GitHub Exploit DB Packet Storm
528 7 重要
Local 		マイクロソフト Microsoft Office 2024 Long-Term Servicing Channel Edition
Microsoft Office 2021 Long Term Servicing Channel Edition
Microsoft&nb… 		Microsoft Excel のリモートでコードが実行される脆弱性 CWE-362
競合状態 		CVE-2026-44818 2026-06-12 14:35 2026-06-9 Show GitHub Exploit DB Packet Storm
529 7.8 重要
Local 		マイクロソフト Microsoft Office 2024 Long-Term Servicing Channel Edition
Microsoft Office 2021 Long Term Servicing Channel Edition
Microsoft&nb… 		Microsoft Office のリモート コードが実行される脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-44819 2026-06-12 14:35 2026-06-9 Show GitHub Exploit DB Packet Storm
530 7.8 重要
Local 		マイクロソフト Microsoft Office 2024 Long-Term Servicing Channel Edition
Microsoft Office 2021 Long Term Servicing Channel Edition
Microsoft&nb… 		Microsoft Excel のリモートでコードが実行される脆弱性 CWE-125
境界外読み取り 		CVE-2026-44820 2026-06-12 14:35 2026-06-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
344281 - wvware wv2 This vulnerability is addressed in the following product release: Debian, wv2, 0.2.2-1 CWE-189
Numeric Errors 		CVE-2006-2197 2018-10-4 06:40 2006-06-15 Show GitHub Exploit DB Packet Storm
344282 - awstats awstats The web interface for AWStats 6.4 and 6.5, when statistics updates are enabled, allows remote attackers to execute arbitrary code via shell metacharacters in the migrate parameter. NVD-CWE-Other
CVE-2006-2237 2018-10-4 06:40 2006-05-9 Show GitHub Exploit DB Packet Storm
344283 - quagga quagga bgpd in Quagga 0.98 and 0.99 before 20060504 allows local users to cause a denial of service (CPU consumption) via a certain sh ip bgp command entered in the telnet interface. CWE-399
 Resource Management Errors 		CVE-2006-2276 2018-10-4 06:40 2006-05-10 Show GitHub Exploit DB Packet Storm
344284 - gnome gdm GNOME GDM 2.8, 2.12, 2.14, and 2.15, when the "face browser" feature is enabled, allows local users to access the "Configure Login Manager" functionality using their own password instead of the root … NVD-CWE-Other
CVE-2006-2452 2018-10-4 06:40 2006-06-9 Show GitHub Exploit DB Packet Storm
344285 - dia dia Multiple unspecified format string vulnerabilities in Dia have unspecified impact and attack vectors, a different set of issues than CVE-2006-2480. CWE-134
Use of Externally-Controlled Format String 		CVE-2006-2453 2018-10-4 06:40 2006-05-28 Show GitHub Exploit DB Packet Storm
344286 - linux linux_kernel ip_route_input in Linux kernel 2.6 before 2.6.16.8 allows local users to cause a denial of service (panic) via a request for a route for a multicast IP address, which triggers a null dereference. CWE-399
 Resource Management Errors 		CVE-2006-1525 2018-10-4 06:37 2006-04-20 Show GitHub Exploit DB Packet Storm
344287 - gnome gdm Race condition in daemon/slave.c in gdm before 2.14.1 allows local users to gain privileges via a symlink attack when gdm performs chown and chgrp operations on the .ICEauthority file. CWE-362
Race Condition 		CVE-2006-1057 2018-10-4 06:36 2006-04-25 Show GitHub Exploit DB Packet Storm
344288 - linux linux_kernel Linux kernel 2.6.16-rc2 and earlier, when running on x86_64 systems with preemption enabled, allows local users to cause a denial of service (oops) via multiple ptrace tasks that perform single steps… NVD-CWE-Other
CVE-2006-1066 2018-10-4 06:36 2006-03-27 Show GitHub Exploit DB Packet Storm
344289 - ubuntu ubuntu_linux The Ubuntu 5.10 installer does not properly clear passwords from the installer log file (questions.dat), and leaves the log file with world-readable permissions, which allows local users to gain priv… NVD-CWE-Other
CVE-2006-1183 2018-10-4 06:36 2006-03-13 Show GitHub Exploit DB Packet Storm
344290 - gnome
libextractor
xpdf
debian 		gpdf
libextractor
xpdf
debian_linux 		Unspecified vulnerability in certain versions of xpdf after 3.00, as used in various products including (a) pdfkit.framework, (b) gpdf, (c) pdftohtml, and (d) libextractor, has unknown impact and use… NVD-CWE-Other
CVE-2006-1244 2018-10-4 06:36 2006-03-16 Show GitHub Exploit DB Packet Storm