Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 30, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1061	9.9	緊急 Network	オラクル	Oracle WebCenter Portal	オラクルのOracle WebCenter Portalにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-46767	2026-06-22 11:55	2026-06-17	Show	GitHub Exploit DB Packet Storm

1062	6	警告 Local	オラクル	Oracle VM VirtualBox	オラクルのOracle VM VirtualBoxにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-46768	2026-06-22 11:55	2026-06-17	Show	GitHub Exploit DB Packet Storm

1063	7.2	重要 Network	オラクル	Oracle Application Development Framework (Oracle ADF)	オラクルのOracle Application Development Framework (Oracle ADF)におけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-46769	2026-06-22 11:55	2026-06-17	Show	GitHub Exploit DB Packet Storm

1064	6.1	警告 Network	オラクル	Oracle Application Development Framework (Oracle ADF)	オラクルのOracle Application Development Framework (Oracle ADF)におけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-46770	2026-06-22 11:55	2026-06-17	Show	GitHub Exploit DB Packet Storm

1065	4.1	警告 Local	オラクル	Oracle Application Development Framework (Oracle ADF)	オラクルのOracle Application Development Framework (Oracle ADF)におけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-46771	2026-06-22 11:55	2026-06-17	Show	GitHub Exploit DB Packet Storm

1066	4.7	警告 Local	オラクル	Oracle Application Development Framework (Oracle ADF)	オラクルのOracle Application Development Framework (Oracle ADF)におけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-46772	2026-06-22 11:55	2026-06-17	Show	GitHub Exploit DB Packet Storm

1067	9.8	緊急 Network	オラクル	Oracle Unified Directory	オラクルのOracle Unified Directoryにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-46773	2026-06-22 11:55	2026-06-17	Show	GitHub Exploit DB Packet Storm

1068	9.8	緊急 Network	オラクル	Oracle Unified Directory	オラクルのOracle Unified Directoryにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-46774	2026-06-22 11:55	2026-06-17	Show	GitHub Exploit DB Packet Storm

1069	8.6	重要 Network	オラクル	Oracle Unified Directory	オラクルのOracle Unified Directoryにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-46776	2026-06-22 11:55	2026-06-17	Show	GitHub Exploit DB Packet Storm

1070	9.1	緊急 Network	オラクル	Oracle WebCenter Content	オラクルのOracle WebCenter Contentにおけるアクセス制御に関する脆弱性	CWE-284 CWE-noinfo	CVE-2026-46777	2026-06-22 11:55	2026-06-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 30, 2026, 4:22 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
343641	-	kth	heimdal	Unspecified vulnerability in rshd in Heimdal 0.6.x before 0.6.6 and 0.7.x before 0.7.2, when storing forwarded credentials, allows attackers to overwrite arbitrary files and change file ownership via…	NVD-CWE-noinfo	CVE-2006-0582	2018-10-20 00:45	2006-02-8	Show	GitHub Exploit DB Packet Storm

343642	-	peoplesoft	peopletools	The PSCipher function in PeopleSoft People Tools 8.4x uses PKCS #5 with a fixed DES key to store user passwords, which makes it easier for local users to guess passwords using a dictionary attack tha…	NVD-CWE-Other	CVE-2006-0584	2018-10-20 00:45	2006-02-8	Show	GitHub Exploit DB Packet Storm

343643	-	jaia_interactive	mytopix	SQL injection vulnerability in search.php in MyTopix 1.2.3 allows remote attackers to execute arbitrary SQL commands via the (1) mid and (2) keywords parameters.	NVD-CWE-Other	CVE-2006-0588	2018-10-20 00:45	2006-02-8	Show	GitHub Exploit DB Packet Storm

343644	-	jaia_interactive	mytopix	MyTopix 1.2.3 allows remote attackers to obtain the installation path via a direct request to logon.mod.php, which leaks the path in an error message.	NVD-CWE-Other	CVE-2006-0589	2018-10-20 00:45	2006-02-8	Show	GitHub Exploit DB Packet Storm

343645	-	jaia_interactive	mytopix	MyTopix 1.2.3 allows remote attackers to obtain the installation path via an invalid hl parameter to index.php, which leads to path disclosure, possibly related to invalid SQL syntax.	NVD-CWE-Other	CVE-2006-0590	2018-10-20 00:45	2006-02-8	Show	GitHub Exploit DB Packet Storm

343646	-	solar_designer	crypt_blowfish	The crypt_gensalt functions for BSDI-style extended DES-based and FreeBSD-sytle MD5-based password hashes in crypt_blowfish 0.4.7 and earlier do not evenly and randomly distribute salts, which makes …	CWE-310 Cryptographic Issues	CVE-2006-0591	2018-10-20 00:45	2006-02-8	Show	GitHub Exploit DB Packet Storm

343647	-	solar_designer	crypt_blowfish	This vulnerability may only be exploited in conjunction with another vulnerability. The password file (normally shadowed) must first be stolen.	CWE-310 Cryptographic Issues	CVE-2006-0591	2018-10-20 00:45	2006-02-8	Show	GitHub Exploit DB Packet Storm

343648	-	lexmark	printer_sharing	Unspecified vulnerability in the Lexmark Printer Sharing LexBce Server Service (LexPPS), possibly 8.29 and 9.41, allows remote attackers to execute arbitrary code via unspecified vectors. NOTE: This…	NVD-CWE-noinfo	CVE-2006-0592	2018-10-20 00:45	2006-02-8	Show	GitHub Exploit DB Packet Storm

343649	-	hinton_design	phphg_guestbook	Multiple SQL injection vulnerabilities in Hinton Design phphg Guestbook 1.2 allow remote attackers to execute arbitrary SQL commands via the (1) username parameter to check.php or the id parameter to…	CWE-89 SQL Injection	CVE-2006-0602	2018-10-20 00:45	2006-02-9	Show	GitHub Exploit DB Packet Storm

343650	-	hinton_design	phphg_guestbook	Multiple cross-site scripting vulnerabilities in signed.php in Hinton Design phphg Guestbook 1.2 allow remote attackers to inject arbitrary web script or HTML via the (1) location, (2) website, or (3…	CWE-79 Cross-site Scripting	CVE-2006-0603	2018-10-20 00:45	2006-02-9	Show	GitHub Exploit DB Packet Storm