Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
234591 7.5 危険 Tiki Software Community Association - TikiWiki の tiki-register.php における "スパム通知" を誘発される脆弱性 CWE-20
不適切な入力確認 		CVE-2006-6168 2012-12-20 18:02 2006-11-6 Show GitHub Exploit DB Packet Storm
234592 6.8 警告 Widget Factory Limited - Joomla! 用の Ryan Demmer JCE におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-6166 2012-12-20 18:02 2006-11-28 Show GitHub Exploit DB Packet Storm
234593 4.3 警告 Tiki Software Community Association - TikiWiki の tiki-setup_base.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2006-6163 2012-12-20 18:02 2006-11-6 Show GitHub Exploit DB Packet Storm
234594 4.3 警告 Tiki Software Community Association - Tikiwiki の featured_link.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2006-6162 2012-12-20 18:02 2006-11-28 Show GitHub Exploit DB Packet Storm
234595 4.3 警告 vspin.net - vSpin.net Classified System におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-6153 2012-12-20 18:02 2006-11-28 Show GitHub Exploit DB Packet Storm
234596 7.5 危険 vspin.net - vSpin.net Classified System における SQL インジェクションの脆弱性 - CVE-2006-6152 2012-12-20 18:02 2006-11-28 Show GitHub Exploit DB Packet Storm
234597 2.6 注意 takeshi kanno - Takeshi Kanno libharu2 の hpdf_page_operator.c におけるバッファオーバーフローの脆弱性 - CVE-2006-6146 2012-12-20 18:02 2006-11-16 Show GitHub Exploit DB Packet Storm
234598 7.5 危険 sisfo kampus - Semarang 3 における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-6140 2012-12-20 18:02 2006-11-27 Show GitHub Exploit DB Packet Storm
234599 5 警告 sisfo kampus - Semarang 3 の downloadexcel.php におけるディレクトリトラバーサルの脆弱性 - CVE-2006-6139 2012-12-20 18:02 2006-11-27 Show GitHub Exploit DB Packet Storm
234600 5 警告 sisfo kampus - Sisfo Kampus の download.php におけるディレクトリトラバーサルの脆弱性 - CVE-2006-6138 2012-12-20 18:02 2006-11-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
171 - - - Nuxt is an open-source web development framework for Vue.js. From versions 3.4.3 to before 3.21.6 and 4.0.0-alpha.1 to before 4.4.6, navigateTo() with external: true generates a server-side HTML redi… New CWE-83
 Improper Neutralization of Script in Attributes in a Web Page 		CVE-2026-45669 2026-06-13 01:01 2026-06-12 Show GitHub Exploit DB Packet Storm
172 - - - Nuxt is an open-source web development framework for Vue.js. In @nuxt/rspack-builder and @nuxt/webpack-builder versions 3.15.4 to before 3.21.6, and 4.0.0-alpha.1 to before 4.4.6, there is an incompl… New CWE-749
 Exposed Dangerous Method or Function 		CVE-2026-45670 2026-06-13 01:01 2026-06-12 Show GitHub Exploit DB Packet Storm
173 - - - Nuxt is an open-source web development framework for Vue.js. In Nuxt versions 3.1.0 to before 3.21.6 and 4.0.0-alpha.1 to before 4.4.6 and @nuxt/nitro-server versions 3.20.0 to before 3.21.6 and 4.0.… New CWE-79
CWE-349
CWE-444
Cross-site Scripting
 Acceptance of Extraneous Untrusted Data With Trusted Data
HTTP Request Smuggling 		CVE-2026-46342 2026-06-13 01:01 2026-06-12 Show GitHub Exploit DB Packet Storm
174 - - - Nuxt is an open-source web development framework for Vue.js. In Nuxt versions 3.11.0 to before 3.21.6 and 4.0.0-alpha.1 to before 4.4.6 and @nuxt/nitro-server versions 3.20.0 to before 3.21.6 and 4.0… New CWE-284
CWE-288
Improper Access Control
Authentication Bypass Using an Alternate Path or Channel 		CVE-2026-47200 2026-06-13 01:01 2026-06-12 Show GitHub Exploit DB Packet Storm
175 - - - Nuxt is an open-source web development framework for Vue.js. In @nuxt/rspack-builder and @nuxt/webpack-builder from versions 3.15.4 to before 3.21.7 and 4.0.0 to before 4.4.7, there is an incomplete … New CWE-749
 Exposed Dangerous Method or Function 		CVE-2026-49993 2026-06-13 01:01 2026-06-12 Show GitHub Exploit DB Packet Storm
176 - - - Nuxt is an open-source web development framework for Vue.js. From versions 3.11.0 to before 3.21.7 and 4.0.0 to before 4.4.7, there is a route-rule middleware bypass via case-sensitivity mismatch bet… New CWE-178
CWE-863
 Improper Handling of Case Sensitivity
 Incorrect Authorization 		CVE-2026-53721 2026-06-13 01:01 2026-06-13 Show GitHub Exploit DB Packet Storm
177 - - - Nuxt is an open-source web development framework for Vue.js. Prior to versions 3.21.7 and 4.4.7, <NuxtLink> did not validate the URL scheme of values bound to its to or href props before rendering th… New CWE-79
CWE-83
Cross-site Scripting
 Improper Neutralization of Script in Attributes in a Web Page 		CVE-2026-53722 2026-06-13 01:01 2026-06-13 Show GitHub Exploit DB Packet Storm
178 8.0 HIGH
Network 		microsoft sharepoint_server Improper authorization in Microsoft Office SharePoint allows an authorized attacker to execute code over a network. New CWE-285
Improper Authorization 		CVE-2026-47298 2026-06-13 01:00 2026-06-10 Show GitHub Exploit DB Packet Storm
179 8.8 HIGH
Network 		- - The SSH service of CelloOS developed by Cellopoint has an Improper Access Control vulnerability, allowing authenticated remote attackers to bypass the enforced command restrictions and execute operat… New CWE-1284
 Improper Validation of Specified Quantity in Input 		CVE-2026-12059 2026-06-13 01:00 2026-06-12 Show GitHub Exploit DB Packet Storm
180 6.5 MEDIUM
Network 		- - Heptabase developed by Hepta Platforms has a Exposed Dangerous Method or Function vulnerability, allowing unauthenticated remote attackers to leverage social engineering techniques to trick a victim … New CWE-749
 Exposed Dangerous Method or Function 		CVE-2026-12060 2026-06-13 01:00 2026-06-12 Show GitHub Exploit DB Packet Storm