Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 2, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1321	4.3	警告 Network	GitLab.org	GitLab	GitLab.orgのGitLabにおけるユーザ制御の鍵による認証回避に関する脆弱性	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-1338	2026-05-18 12:08	2026-05-14	Show	GitHub Exploit DB Packet Storm

1322	7.5	重要 Network	GitLab.org	GitLab	GitLab.orgのGitLabにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-1659	2026-05-18 12:08	2026-05-14	Show	GitHub Exploit DB Packet Storm

1323	10	緊急 Network	シスコシステムズ	Cisco SD-WAN vSmart Controller	シスコシステムズのCisco Catalyst SD-WAN Manager等の複数製品における認証に関する脆弱性	CWE-287 不適切な認証	CVE-2026-20182	2026-05-18 12:08	2026-05-14	Show	GitHub Exploit DB Packet Storm

1324	7.8	重要 Local	インテル	Intel QuickAssist Technology	インテルのIntel QuickAssist Technologyにおける境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2026-20714	2026-05-18 12:08	2026-05-12	Show	GitHub Exploit DB Packet Storm

1325	6.6	警告 Local	インテル	Intel QuickAssist Technology	インテルのIntel QuickAssist Technologyにおける入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2026-20717	2026-05-18 12:08	2026-05-12	Show	GitHub Exploit DB Packet Storm

1326	7.8	重要 Local	インテル	Intel QuickAssist Technology	インテルのIntel QuickAssist Technologyにおける入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2026-20767	2026-05-18 12:08	2026-05-12	Show	GitHub Exploit DB Packet Storm

1327	6.1	警告 Local	インテル	Intel QuickAssist Technology	インテルのIntel QuickAssist TechnologyにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-20771	2026-05-18 12:08	2026-05-12	Show	GitHub Exploit DB Packet Storm

1328	6.6	警告 Local	インテル	Intel QuickAssist Technology	インテルのIntel QuickAssist Technologyにおける古典的バッファオーバーフローの脆弱性	CWE-120 古典的バッファオーバーフロー	CVE-2026-20782	2026-05-18 12:07	2026-05-12	Show	GitHub Exploit DB Packet Storm

1329	3.3	低 Local	インテル	Intel QuickAssist Technology	インテルのIntel QuickAssist Technologyにおける未チェックの戻り値に関する脆弱性	CWE-252 未チェックの戻り値	CVE-2026-20793	2026-05-18 12:07	2026-05-12	Show	GitHub Exploit DB Packet Storm

1330	5.5	警告 Local	インテル	Intel QuickAssist Technology	インテルのIntel QuickAssist Technologyにおけるゼロ除算に関する脆弱性	CWE-369 ゼロ除算	CVE-2026-20881	2026-05-18 12:07	2026-05-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
345571	-	andreas_gohr	dokuwiki	Cross-site scripting (XSS) vulnerability in the mediamanager module in DokuWiki before 2006-03-05 allows remote attackers to inject arbitrary web script or HTML via unknown attack vectors relating to…	NVD-CWE-Other	CVE-2006-1165	2017-07-20 10:30	2006-03-13	Show	GitHub Exploit DB Packet Storm

345572	-	monotone	monotone	Monotone 0.25 and earlier, when a user creates a file in a directory called "mt", and when checking out that file on a case-insensitive file system such as Windows or Mac OS X, places the file into t…	NVD-CWE-Other	CVE-2006-1166	2017-07-20 10:30	2006-03-13	Show	GitHub Exploit DB Packet Storm

345573	-	weonlydo	weonlydo_sftp	The WeOnlyDo! SFTP (wodSFTP) ActiveX control is marked as safe for scripting, which allows remote attackers to read and write files in arbitrary locations by accessing the control from a web page.	NVD-CWE-Other	CVE-2006-1175	2017-07-20 10:30	2006-05-31	Show	GitHub Exploit DB Packet Storm

345574	-	ebay	enhanced_picture_services	Buffer overflow in eBay Enhanced Picture Services (aka EPUImageControl Class) in EUPWALcontrol.dll before 1.0.3.48, as used in Sell Your Item (SYI), Setup & Test eBay Enhanced Picture Services, Pictu…	NVD-CWE-Other	CVE-2006-1176	2017-07-20 10:30	2006-07-8	Show	GitHub Exploit DB Packet Storm

345575	-	tamarack_consulting	tamarack_mmsd	Tamarack MMSd before 7.992 allows remote attackers to cause a denial of service (crash) via malformed RFC1006 (OSI over TCP/IP) packets.	NVD-CWE-Other	CVE-2006-1178	2017-07-20 10:30	2006-07-29	Show	GitHub Exploit DB Packet Storm

345576	-	david_barrett	qwikiwiki	Multiple cross-site scripting (XSS) vulnerabilities in QwikiWiki 1.5 allow remote attackers to inject arbitrary web script or HTML via the (1) from and (2) help parameters to (a) index.php; (3) actio…	NVD-CWE-Other	CVE-2006-1196	2017-07-20 10:30	2006-03-14	Show	GitHub Exploit DB Packet Storm

345577	-	woltlab	burning_board	Cross-site scripting (XSS) vulnerability in misc.php in Woltlab Burning Board (wBB) 2.3.4 allows remote attackers to inject arbitrary web script or HTML via the percent parameter. NOTE: this issue h…	NVD-CWE-Other	CVE-2006-1215	2017-07-20 10:30	2006-03-14	Show	GitHub Exploit DB Packet Storm

345578	-	hosting_controller	hosting_controller	SQL injection vulnerability in search.asp in Hosting Controller 6.1 (Hotfix 2.9) allows remote attackers to execute arbitrary SQL commands via the search parameter. NOTE: the provenance of this info…	NVD-CWE-Other	CVE-2006-1229	2017-07-20 10:30	2006-03-15	Show	GitHub Exploit DB Packet Storm

345579	-	hosting_controller	hosting_controller	This vulnerability may affect all versions of Hosting Controller previous to 6.1 Hotfix 2.9 as well.	NVD-CWE-Other	CVE-2006-1229	2017-07-20 10:30	2006-03-15	Show	GitHub Exploit DB Packet Storm

345580	-	countersoft	gemini	Cross-site scripting (XSS) vulnerability in issue/createissue.aspx in Gemini 2.0 allows remote attackers to inject arbitrary web script or HTML via the rtcDescription$RadEditor1 field. NOTE: the pro…	NVD-CWE-Other	CVE-2006-1239	2017-07-20 10:30	2006-03-16	Show	GitHub Exploit DB Packet Storm