Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 11, 2026, 6:13 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1901 6.5 警告
Network 		Splunk Splunk AI Toolkit SplunkのSplunk AI Toolkitにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-20238 2026-05-28 14:33 2026-05-20 Show GitHub Exploit DB Packet Storm
1902 7.5 重要
Network 		NVIDIA NVIDIA TensorRT NVIDIAのNVIDIA TensorRTにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2026-24188 2026-05-28 14:33 2026-05-20 Show GitHub Exploit DB Packet Storm
1903 5.3 警告
Network 		Dropbox Erlang SAML library Lexi Wilson (arekinath)等の複数ベンダの製品におけるXML 外部エンティティの脆弱性 CWE-611
XML 外部エンティティ参照の不適切な制限 		CVE-2026-28809 2026-05-28 14:33 2026-03-23 Show GitHub Exploit DB Packet Storm
1904 9.1 緊急
Network 		Nexent Nexent Nexentにおける外部からアクセス可能なファイルまたはディレクトリに関する脆弱性 CWE-552
外部からアクセス可能なファイルまたはディレクトリ 		CVE-2026-31215 2026-05-28 14:33 2026-05-12 Show GitHub Exploit DB Packet Storm
1905 9.1 緊急
Network 		Nexent Nexent Nexentにおける外部からアクセス可能なファイルまたはディレクトリに関する脆弱性 CWE-552
外部からアクセス可能なファイルまたはディレクトリ 		CVE-2026-31216 2026-05-28 14:33 2026-05-12 Show GitHub Exploit DB Packet Storm
1906 9.8 緊急
Network 		Nebuly OptiMate NebulyのOptiMateにおけるコードインジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2026-31217 2026-05-28 14:33 2026-05-12 Show GitHub Exploit DB Packet Storm
1907 7.5 重要
Network 		Gleam-wisp Wisp Gleam-wispのWispにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-32145 2026-05-28 14:33 2026-04-2 Show GitHub Exploit DB Packet Storm
1908 7.5 重要
Network 		Elixir Plug Plug.cowboy Elixir PlugのPlug.cowboyにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-32688 2026-05-28 14:33 2026-04-27 Show GitHub Exploit DB Packet Storm
1909 8.8 重要
Network 		9bis KiTTY KovidgoyalのKittyにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-33633 2026-05-28 14:33 2026-05-19 Show GitHub Exploit DB Packet Storm
1910 9.8 緊急
Network 		9bis KiTTY KovidgoyalのKittyにおける複数の脆弱性 CWE-125
CWE-190
CWE-787
CVE-2026-33642 2026-05-28 14:33 2026-05-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
344811 - cmsdevelopment business_card_web_builder Successful exploitation requires that "register_globals" is enabled. NVD-CWE-Other
CVE-2006-4946 2017-10-19 10:29 2006-09-23 Show GitHub Exploit DB Packet Storm
344812 - the_myreview_system myreview SQL injection vulnerability in the GetMember function in functions.php in MyReview 1.9.4 allows remote attackers to execute arbitrary SQL commands via the email parameter to Admin.php. NVD-CWE-Other
CVE-2006-4957 2017-10-19 10:29 2006-09-23 Show GitHub Exploit DB Packet Storm
344813 - blue_dragon php_blue_dragon Cross-site scripting (XSS) vulnerability in index.php Php Blue Dragon 2.9.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the m parameter, which is reflected in an er… NVD-CWE-Other
CVE-2006-4960 2017-10-19 10:29 2006-09-23 Show GitHub Exploit DB Packet Storm
344814 - blue_dragon php_blue_dragon SQL injection vulnerability in the GetModuleConfig function in public_includes/pub_kernel/pbd_modules.php in Php Blue Dragon 2.9.1 and earlier allows remote attackers to execute arbitrary SQL command… NVD-CWE-Other
CVE-2006-4961 2017-10-19 10:29 2006-09-23 Show GitHub Exploit DB Packet Storm
344815 - blue_dragon php_blue_dragon Directory traversal vulnerability in pbd_engine.php in Php Blue Dragon 2.9.1 and earlier allows remote attackers to read and execute arbitrary local files via a .. (dot dot) sequence via the phpExt p… NVD-CWE-Other
CVE-2006-4962 2017-10-19 10:29 2006-09-23 Show GitHub Exploit DB Packet Storm
344816 - exponent exponent_cms Directory traversal vulnerability in index.php in Exponent CMS 0.96.3 allows remote attackers to read and execute arbitrary local files via a .. (dot dot) sequence in the view parameter in the show_v… NVD-CWE-Other
CVE-2006-4963 2017-10-19 10:29 2006-09-23 Show GitHub Exploit DB Packet Storm
344817 - wahm_e-commerce pie_cart_pro Multiple PHP remote file inclusion vulnerabilities in WAHM E-Commerce Pie Cart Pro allow remote attackers to execute arbitrary PHP code via a URL in the Inc_Dir parameter in (1) affiliates.php, (2) o… NVD-CWE-Other
CVE-2006-4969 2017-10-19 10:29 2006-09-25 Show GitHub Exploit DB Packet Storm
344818 - ipswitch ws_ftp_server Buffer overflow in Ipswitch WS_FTP Limited Edition (LE) 5.08 allows remote FTP servers to execute arbitrary code via a long response to a PASV command. NVD-CWE-Other
CVE-2006-4974 2017-10-19 10:29 2006-09-25 Show GitHub Exploit DB Packet Storm
344819 - bfriendly.com einstein Einstein 1.0.1 stores sensitive information such as usernames and passwords in plaintext in the registry, which allows local users to gain privileges. NVD-CWE-Other
CVE-2005-0619 2017-10-19 10:29 2005-02-28 Show GitHub Exploit DB Packet Storm
344820 - code_ocean ocean_ftp_server Code Ocean FTP server 1.0 allows remote attackers to cause a denial of service via a large number of connections. NVD-CWE-Other
CVE-2005-0847 2017-10-19 10:29 2005-05-2 Show GitHub Exploit DB Packet Storm