Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 15, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2351 9.8 緊急
Network 		pgx project pgx JackcのpgxにおけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2026-41889 2026-05-25 10:25 2026-05-8 Show GitHub Exploit DB Packet Storm
2352 5.4 警告
Network 		reconurge Flowsint Flowsintにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-42159 2026-05-25 10:25 2026-05-14 Show GitHub Exploit DB Packet Storm
2353 8.6 重要
Network 		MagicMirror MagicMirror MagicMirrorにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-42281 2026-05-25 10:25 2026-05-14 Show GitHub Exploit DB Packet Storm
2354 6.1 警告
Network 		Absinthe-graphql Absinthe.Plug (absinthe plug) Absinthe-graphqlのAbsinthe.Plug (absinthe plug)におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-42794 2026-05-25 10:25 2026-05-8 Show GitHub Exploit DB Packet Storm
2355 4.3 警告
Network 		Getinboxzero Inbox Zero GetinboxzeroのInbox Zeroにおける情報漏えいに関する脆弱性 CWE-200
CWE-noinfo
CVE-2026-42865 2026-05-25 10:25 2026-05-11 Show GitHub Exploit DB Packet Storm
2356 4 警告
Network 		Nine Nines Cowlib Nine NinesのCowlibにおけるCRLF インジェクションの脆弱性 CWE-93
CRLF インジェクション 		CVE-2026-43968 2026-05-25 10:25 2026-05-11 Show GitHub Exploit DB Packet Storm
2357 3.2
Local 		Nine Nines Cowlib Nine NinesのCowlibにおけるCRLF インジェクションの脆弱性 CWE-93
CRLF インジェクション 		CVE-2026-43969 2026-05-25 10:24 2026-05-11 Show GitHub Exploit DB Packet Storm
2358 6.1 警告
Network 		Boscop Orejime GayaのOrejimeにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-6095 2026-05-25 10:24 2026-05-19 Show GitHub Exploit DB Packet Storm
2359 6.1 警告
Network 		Drupal Obfuscate Obfuscateにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-6871 2026-05-25 10:24 2026-05-19 Show GitHub Exploit DB Packet Storm
2360 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける無限ループに関する脆弱性 CWE-835
無限ループ 		CVE-2025-71266 2026-05-25 10:24 2026-03-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 15, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
359581 - network_associates net_tools_pki_server Format string vulnerability in strong.exe program in NAI Net Tools PKI server 1.0 before HotFix 3 allows remote attackers to execute arbitrary code via format strings in a URL with a .XUDA extension. NVD-CWE-Other
CVE-2000-0741 2008-09-6 05:21 2000-10-20 Show GitHub Exploit DB Packet Storm
359582 - university_of_minnesota gopherd Buffer overflow in University of Minnesota (UMN) gopherd 2.x allows remote attackers to execute arbitrary commands via a DES key generation request (GDESkey) that contains a long ticket value. NVD-CWE-Other
CVE-2000-0743 2008-09-6 05:21 2000-10-20 Show GitHub Exploit DB Packet Storm
359583 - francisco_burzi php-nuke admin.php3 in PHP-Nuke does not properly verify the PHP-Nuke administrator password, which allows remote attackers to gain privileges by requesting a URL that does not specify the aid or pwd paramete… NVD-CWE-Other
CVE-2000-0745 2008-09-6 05:21 2000-10-20 Show GitHub Exploit DB Packet Storm
359584 - openldap openldap OpenLDAP 1.2.11 and earlier improperly installs the ud binary with group write permissions, which could allow any user in that group to replace the binary with a Trojan horse. NVD-CWE-Other
CVE-2000-0748 2008-09-6 05:21 2000-10-20 Show GitHub Exploit DB Packet Storm
359585 - netbsd
openbsd
redhat 		netbsd
openbsd
linux 		mopd (Maintenance Operations Protocol loader daemon) does not properly cleanse user-injected format strings, which allows remote attackers to execute arbitrary commands. NVD-CWE-Other
CVE-2000-0751 2008-09-6 05:21 2000-10-20 Show GitHub Exploit DB Packet Storm
359586 - freebsd freebsd Buffer overflows in brouted in FreeBSD and possibly other OSes allows local users to gain root privileges via long command line arguments. NVD-CWE-Other
CVE-2000-0752 2008-09-6 05:21 2000-10-20 Show GitHub Exploit DB Packet Storm
359587 - hp openview_network_node_manager Vulnerability in HP OpenView Network Node Manager (NMM) version 6.1 related to passwords. NVD-CWE-Other
CVE-2000-0754 2008-09-6 05:21 2000-10-20 Show GitHub Exploit DB Packet Storm
359588 - hp openview_network_node_manager Vulnerability in the newgrp command in HP-UX 11.00 allows local users to gain privileges. NVD-CWE-Other
CVE-2000-0755 2008-09-6 05:21 2000-10-20 Show GitHub Exploit DB Packet Storm
359589 - aptis_software totalbill The sysgen service in Aptis Totalbill does not perform authentication, which allows remote attackers to gain root privileges by connecting to the service and specifying the commands to be executed. NVD-CWE-Other
CVE-2000-0757 2008-09-6 05:21 2000-10-20 Show GitHub Exploit DB Packet Storm
359590 - lyris list_manager The web interface for Lyris List Manager 3 and 4 allows list subscribers to obtain administrative access by modifying the value of the list_admin hidden form field. NVD-CWE-Other
CVE-2000-0758 2008-09-6 05:21 2000-10-20 Show GitHub Exploit DB Packet Storm