Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 23, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
551	5.9	警告 Network	ネットギア	RAX35 ファームウェア RAX38 ファームウェア	ネットギアのRAX120 ファームウェア等の複数製品における暗号化処理の不備に関する脆弱性 New	CWE-325 暗号化処理の不備	CVE-2026-0420	2026-06-22 11:44	2026-06-9	Show	GitHub Exploit DB Packet Storm

552	7.5	重要 Network	Stichting NLnet Labs	ldns	NLnet LabsのLDNSにおける同一生成元ポリシー違反に関する脆弱性 New	CWE-346 同一生成元ポリシー違反	CVE-2026-10846	2026-06-22 11:44	2026-06-10	Show	GitHub Exploit DB Packet Storm

553	7.2	重要 Network	TP-LINK Technologies	TL-WR940N ファームウェア	TP-LINK TechnologiesのTL-WR940N ファームウェアにおけるOS コマンドインジェクションの脆弱性 New	CWE-78 OSコマンド・インジェクション	CVE-2026-11409	2026-06-22 11:44	2026-06-17	Show	GitHub Exploit DB Packet Storm

554	7.2	重要 Network	TP-LINK Technologies	TL-WR940N ファームウェア	TP-LINK TechnologiesのTL-WR940N ファームウェアにおけるOS コマンドインジェクションの脆弱性 New	CWE-78 OSコマンド・インジェクション	CVE-2026-11410	2026-06-22 11:44	2026-06-17	Show	GitHub Exploit DB Packet Storm

555	6.5	警告 Network	Devolutions	Devolutions Server	DevolutionsのDevolutions Serverにおける認証の欠如に関する脆弱性 New	CWE-862 認証の欠如	CVE-2026-12105	2026-06-22 11:44	2026-06-16	Show	GitHub Exploit DB Packet Storm

556	4.3	警告 Network	Devolutions	Devolutions Server	DevolutionsのDevolutions Serverにおける情報漏えいに関する脆弱性 New	CWE-200 情報漏えい	CVE-2026-12117	2026-06-22 11:44	2026-06-16	Show	GitHub Exploit DB Packet Storm

557	8.1	重要 Network	Mozilla Foundation	Mozilla Firefox Mozilla Thunderbird	Mozilla FoundationのMozilla Firefox等の複数製品におけるバッファエラーの脆弱性 New	CWE-119 バッファエラー	CVE-2026-12290	2026-06-22 11:44	2026-06-16	Show	GitHub Exploit DB Packet Storm

558	8.8	重要 Network	Mozilla Foundation	Mozilla Firefox Mozilla Thunderbird	Mozilla FoundationのMozilla Firefox等の複数製品における解放済みメモリの使用に関する脆弱性 New	CWE-416 解放済みメモリの使用	CVE-2026-12291	2026-06-22 11:44	2026-06-16	Show	GitHub Exploit DB Packet Storm

559	8.1	重要 Network	Mozilla Foundation	Mozilla Firefox Mozilla Thunderbird	Mozilla FoundationのMozilla Firefox等の複数製品におけるバッファエラーの脆弱性 New	CWE-119 バッファエラー	CVE-2026-12292	2026-06-22 11:44	2026-06-16	Show	GitHub Exploit DB Packet Storm

560	9.8	緊急 Network	Mozilla Foundation	Mozilla Firefox Mozilla Thunderbird	Mozilla FoundationのMozilla Firefox等の複数製品における解放済みメモリの使用に関する脆弱性 New	CWE-416 CWE-416	CVE-2026-12293	2026-06-22 11:44	2026-06-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 23, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
343701	-	joomla mambo	moslistmessenger_component	PHP remote file inclusion vulnerability in archive.php in the mosListMessenger Component (com_lm) before 20060719 for Mambo and Joomla! allows remote attackers to execute arbitrary PHP code via a URL…	NVD-CWE-Other	CVE-2006-4229	2018-10-18 06:34	2006-08-19	Show	GitHub Exploit DB Packet Storm

343702	-	lizge	lizge_web_portal	Multiple PHP remote file inclusion vulnerabilities in index.php in Lizge V.20 Web Portal allow remote attackers to execute arbitrary PHP code via a URL in the (1) lizge or (2) bade parameters.	NVD-CWE-Other	CVE-2006-4230	2018-10-18 06:34	2006-08-19	Show	GitHub Exploit DB Packet Storm

343703	-	irfanview	irfanview	IrfanView 3.98 (with plugins) allows remote attackers to cause a denial of service (application crash) via a crafted CUR image file.	NVD-CWE-Other	CVE-2006-4231	2018-10-18 06:34	2006-08-19	Show	GitHub Exploit DB Packet Storm

343704	-	powergap	powergap_business powergap_lite	Multiple PHP remote file inclusion vulnerabilities in POWERGAP allow remote attackers to execute arbitrary PHP code via a URL in the (1) shopid parameter to (a) s01.php, (b) s02.php, (c) s03.php, and…	NVD-CWE-Other	CVE-2006-4236	2018-10-18 06:34	2006-08-22	Show	GitHub Exploit DB Packet Storm

343705	-	mamboxchange	reporter	PHP remote file inclusion vulnerability in processor/reporter.sql.php in the Reporter Mambo component (com_reporter) allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_a…	NVD-CWE-Other	CVE-2006-4241	2018-10-18 06:34	2006-08-22	Show	GitHub Exploit DB Packet Storm

343706	-	joomla	jim_instant_messaging_component	PHP remote file inclusion vulnerability in install.jim.php in the JIM 1.0.1 component for Joomla or Mambo allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_pat…	NVD-CWE-Other	CVE-2006-4242	2018-10-18 06:34	2006-08-22	Show	GitHub Exploit DB Packet Storm

343707	-	joomla	jim_instant_messaging_component	Successful exploitation requires that "register_globals" is enabled.	NVD-CWE-Other	CVE-2006-4242	2018-10-18 06:34	2006-08-22	Show	GitHub Exploit DB Packet Storm

343708	-	horde	horde imp	Cross-site scripting (XSS) vulnerability in horde/imp/search.php in Horde IMP H3 before 4.1.3 allows remote attackers to include arbitrary web script or HTML via multiple unspecified vectors related …	NVD-CWE-Other	CVE-2006-4255	2018-10-18 06:34	2006-08-22	Show	GitHub Exploit DB Packet Storm

343709	-	horde	application_framework	index.php in Horde Application Framework before 3.1.2 allows remote attackers to include web pages from other sites, which could be useful for phishing attacks, via a URL in the url parameter, aka "c…	NVD-CWE-Other	CVE-2006-4256	2018-10-18 06:34	2006-08-22	Show	GitHub Exploit DB Packet Storm

343710	-	ibm	db2	IBM DB2 Universal Database (UDB) before 8.1 FixPak 13 allows remote authenticated users to cause a denial of service (crash) by (1) sending the first ACCSEC command without an RDBNAM parameter during…	CWE-399 Resource Management Errors	CVE-2006-4257	2018-10-18 06:34	2006-08-22	Show	GitHub Exploit DB Packet Storm