Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2341 9.1 緊急
Network 		OpenEXR OpenEXR OpenEXRにおける境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2026-42216 2026-05-11 11:09 2026-05-7 Show GitHub Exploit DB Packet Storm
2342 9.8 緊急
Network 		OpenEXR OpenEXR OpenEXRにおける整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2026-42217 2026-05-11 11:09 2026-05-7 Show GitHub Exploit DB Packet Storm
2343 8.8 重要
Network 		litellm litellm LiteLLMにおける複数の脆弱性 CWE-77
CWE-78
CVE-2026-42271 2026-05-11 11:09 2026-05-8 Show GitHub Exploit DB Packet Storm
2344 8.7 重要
Network 		NetFoundry zrok NetFoundryのzrokにおける複数の脆弱性 CWE-22
CWE-61
CVE-2026-42275 2026-05-11 11:09 2026-05-8 Show GitHub Exploit DB Packet Storm
2345 5.8 警告
Network 		solidtime solidtime solidtimeにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-42279 2026-05-11 11:09 2026-05-8 Show GitHub Exploit DB Packet Storm
2346 7.5 重要
Network 		マイクロソフト Azure DevOps Azure DevOps Information Disclosure Vulnerability CWE-200
情報漏えい 		CVE-2026-42826 2026-05-11 11:09 2026-05-7 Show GitHub Exploit DB Packet Storm
2347 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける不特定の脆弱性 CWE-noinfo
情報不足 		CVE-2026-43017 2026-05-11 11:08 2026-05-1 Show GitHub Exploit DB Packet Storm
2348 8.8 重要
Adjacent 		Linux Linux Kernel LinuxのLinux Kernelにおける解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-43018 2026-05-11 11:08 2026-05-1 Show GitHub Exploit DB Packet Storm
2349 7.8 重要
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-43019 2026-05-11 11:08 2026-05-1 Show GitHub Exploit DB Packet Storm
2350 7.8 重要
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2026-43020 2026-05-11 11:08 2026-05-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
345421 - uapplication uphotogallery Multiple cross-site scripting (XSS) vulnerabilities in thumbnails.asp in Uapplication Uphotogallery 1.1 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) s and (2)… NVD-CWE-Other
CVE-2006-3023 2017-07-20 10:31 2006-06-15 Show GitHub Exploit DB Packet Storm
345422 - evgenius evgenius_counter Multiple cross-site scripting (XSS) vulnerabilities in EvGenius Counter 3.4 and earlier allow remote attackers to inject arbitrary web script or HTML via the page parameter in (1) monthly.php and (2)… NVD-CWE-Other
CVE-2006-3024 2017-07-20 10:31 2006-06-15 Show GitHub Exploit DB Packet Storm
345423 - clicktech clickgallery Multiple cross-site scripting (XSS) vulnerabilities in ClickGallery 5.0 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) gallery_id parameter in gallery.asp and (… NVD-CWE-Other
CVE-2006-3026 2017-07-20 10:31 2006-06-15 Show GitHub Exploit DB Packet Storm
345424 - clicktech clickcart Cross-site scripting (XSS) vulnerability in default.asp in ClickTech Clickcart 6.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the cat parameter. NVD-CWE-Other
CVE-2006-3029 2017-07-20 10:31 2006-06-15 Show GitHub Exploit DB Packet Storm
345425 - dwzone dwzone_shopping_cart Multiple cross-site scripting (XSS) vulnerabilities in DwZone Shopping Cart 1.1.9 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) ToCategory and (2) FromCategory… NVD-CWE-Other
CVE-2006-3030 2017-07-20 10:31 2006-06-15 Show GitHub Exploit DB Packet Storm
345426 - fipsasp fipscms Multiple cross-site scripting (XSS) vulnerabilities in index.asp in fipsCMS 4.5 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) w, (2) phcat, (3) dayid, and (4) … NVD-CWE-Other
CVE-2006-3031 2017-07-20 10:31 2006-06-15 Show GitHub Exploit DB Packet Storm
345427 - pensacola_web_designs xtreme_asp_photo_gallery Multiple cross-site scripting (XSS) vulnerabilities in Xtreme ASP Photo Gallery 1.05 and earlier, and possibly 2.0 (trial), allow remote attackers to inject arbitrary web script or HTML via the (1) c… NVD-CWE-Other
CVE-2006-3032 2017-07-20 10:31 2006-06-15 Show GitHub Exploit DB Packet Storm
345428 - site_trade st_admanager_lite Multiple cross-site scripting (XSS) vulnerabilities in publish.php in ST AdManager Lite allow remote attackers to inject arbitrary web script or HTML via the (1) title, (2) description, (3) article, … NVD-CWE-Other
CVE-2006-3037 2017-07-20 10:31 2006-06-15 Show GitHub Exploit DB Packet Storm
345429 - cfxe-cms cfxe-cms Cross-site scripting (XSS) vulnerability in search.cfm in CreaFrameXe (CFXe) CMS 2.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the voltext_suche parameter. NVD-CWE-Other
CVE-2006-3043 2017-07-20 10:31 2006-06-16 Show GitHub Exploit DB Packet Storm
345430 - logisphere logisphere Cross-site scripting (XSS) vulnerability in LogiSphere 1.6.0 allows remote attackers to inject arbitrary web script or HTML via the URL, which is reflected in an error page. NVD-CWE-Other
CVE-2006-3044 2017-07-20 10:31 2006-06-16 Show GitHub Exploit DB Packet Storm