Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 29, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1881	7.4	重要 Network	アドビシステムズ	Adobe ColdFusion	アドビのAdobe ColdFusionにおけるXML 外部エンティティの脆弱性	CWE-611 XML 外部エンティティ参照の不適切な制限	CVE-2026-47960	2026-06-16 13:36	2026-06-9	Show	GitHub Exploit DB Packet Storm

1882	6.5	警告 Network	ERLANG	Erlang/ssh Erlang/OTP	ERLANGのErlang/OTP等の複数製品における情報漏えいに関する脆弱性	CWE-200 情報漏えい	CVE-2026-48855	2026-06-16 13:36	2026-06-10	Show	GitHub Exploit DB Packet Storm

1883	6.5	警告 Network	ERLANG	Erlang/OTP Erlang/Inets (Inets)	ERLANGのErlang/Inets (Inets)等の複数製品におけるオープンリダイレクトの脆弱性	CWE-601 オープンリダイレクト	CVE-2026-48856	2026-06-16 13:36	2026-06-10	Show	GitHub Exploit DB Packet Storm

1884	5.3	警告 Network	ERLANG	Erlang/ssh Erlang/OTP	ERLANGのErlang/OTP等の複数製品におけるタイミングの違いに起因する情報漏えいに関する脆弱性	CWE-208 タイミングの違いに起因する情報漏えい	CVE-2026-48859	2026-06-16 13:36	2026-06-10	Show	GitHub Exploit DB Packet Storm

1885	6.5	警告 Network	ERLANG	Erlang/SSL (Erlang SSL) Erlang/OTP	ERLANGのErlang/OTP等の複数製品における複数の脆弱性	CWE-1025 CWE-863	CVE-2026-48860	2026-06-16 13:36	2026-06-10	Show	GitHub Exploit DB Packet Storm

1886	5.3	警告 Network	guzzlephp	psr-7	guzzlephpのpsr-7における複数の脆弱性	CWE-20 CWE-918 CWE-918	CVE-2026-48998	2026-06-16 13:36	2026-06-11	Show	GitHub Exploit DB Packet Storm

1887	5.3	警告 Network	guzzlephp	psr-7	guzzlephpのpsr-7における複数の脆弱性	CWE-113 CWE-20 CWE-93	CVE-2026-49214	2026-06-16 13:36	2026-06-11	Show	GitHub Exploit DB Packet Storm

1888	9.8	緊急 Network	Apache Software Foundation	Apache CXF	Apache Software FoundationのApache CXFにおけるXML 外部エンティティの脆弱性	CWE-611 XML 外部エンティティ参照の不適切な制限	CVE-2026-49875	2026-06-16 13:36	2026-06-12	Show	GitHub Exploit DB Packet Storm

1889	8.2	重要 Network	KARASZI Istvan	Tmp	KARASZI IstvanのTmpにおける複数の脆弱性	CWE-20 CWE-22	CVE-2026-49982	2026-06-16 13:36	2026-06-11	Show	GitHub Exploit DB Packet Storm

1890	7.8	重要 Local	X.Org Foundation レッドハット	X.Org X Server xwayland Red Hat Enterprise Linux	レッドハット等の複数ベンダの製品における解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-50261	2026-06-16 13:35	2026-06-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 29, 2026, 4:19 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
343481	-	hinton_design	phphd	Multiple SQL injection vulnerabilities in Hinton Design phphd 1.0 allow remote attackers to execute arbitrary SQL commands via (1) the username parameter to check.php or (2) unknown attack vectors to…	NVD-CWE-Other	CVE-2006-0608	2018-10-20 00:45	2006-02-9	Show	GitHub Exploit DB Packet Storm

343482	-	hinton_design	phphd	Cross-site scripting (XSS) vulnerability in add.php in Hinton Design phphd 1.0 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.	NVD-CWE-Other	CVE-2006-0609	2018-10-20 00:45	2006-02-9	Show	GitHub Exploit DB Packet Storm

343483	-	2200net	2200net_calendar	Multiple SQL injection vulnerabilities in 2200net Calendar system 1.2, with gpc_magic_quotes disabled, allow remote attackers to execute arbitrary SQL commands and bypass authentication via (1) the f…	NVD-CWE-Other	CVE-2006-0610	2018-10-20 00:45	2006-02-9	Show	GitHub Exploit DB Packet Storm

343484	-	webeveyn	whomp_real_estate_manager_xp_2005	SQL injection vulnerability in check.asp in Whomp Real Estate Manager XP 2005 allows remote attackers to execute arbitrary SQL commands via the (1) username and (2) password parameters.	NVD-CWE-Other	CVE-2006-0624	2018-10-20 00:45	2006-02-9	Show	GitHub Exploit DB Packet Storm

343485	-	clever_copy	clever_copy	Cross-site scripting (XSS) vulnerability in Clever Copy 2.0, 2.0a, and 3.0 allows remote attackers to inject arbitrary web script or HTML via the (1) Referer or (2) X-Forwarded-For headers in an HTTP…	NVD-CWE-Other	CVE-2006-0627	2018-10-20 00:45	2006-02-10	Show	GitHub Exploit DB Packet Storm

343486	-	dale_ray	myquiz	myquiz.pl in Dale Ray MyQuiz 1.01 allows remote attackers to execute arbitrary commands via shell metacharacters in the URL, which are not properly handled as part of the PATH_INFO environment variab…	NVD-CWE-Other	CVE-2006-0628	2018-10-20 00:45	2006-02-10	Show	GitHub Exploit DB Packet Storm

343487	-	aol	instant_messenger	Unspecified vulnerability in AOL Instant Messenger (AIM) 5.9.3861 allows user-assisted remote attackers to cause a denial of service (client crash) and possibly execute arbitrary code by tricking the…	NVD-CWE-Other	CVE-2006-0629	2018-10-20 00:45	2006-02-10	Show	GitHub Exploit DB Packet Storm

343488	-	ritlabs	the_bat	RITLabs The Bat! before 3.0.0.15 displays certain important headers from encapsulated data in message/partial MIME messages, instead of the real headers, which is in violation of RFC2046 header mergi…	NVD-CWE-Other	CVE-2006-0630	2018-10-20 00:45	2006-02-10	Show	GitHub Exploit DB Packet Storm

343489	-	phpbb_group	phpbb	The gen_rand_string function in phpBB 2.0.19 uses insufficiently random data (small value space) to create the activation key ("validation ID") that is sent by e-mail when establishing a password, wh…	NVD-CWE-Other	CVE-2006-0632	2018-10-20 00:45	2006-02-10	Show	GitHub Exploit DB Packet Storm

343490	-	borland_software	c\+\+_builder	Borland C++Builder 6 (BCB6) with Update Pack 4 Enterprise edition (ent_upd4) evaluates the "i>sizeof(int)" expression to false when i equals -1, which might introduce integer overflow vulnerabilities…	NVD-CWE-Other	CVE-2006-0634	2018-10-20 00:45	2006-02-10	Show	GitHub Exploit DB Packet Storm