Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 3, 2026, 6:08 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
240991 2.6 注意 Mozilla Foundation - Bugzilla の editversions.cgi におけるクロスサイトリクエストフォージェリの脆弱性 - CVE-2006-5455 2012-09-25 15:36 2006-10-15 Show GitHub Exploit DB Packet Storm
240992 5 警告 Mozilla Foundation - Bugzilla における deadline フィールドを取得される脆弱性 - CVE-2006-5454 2012-09-25 15:36 2006-10-15 Show GitHub Exploit DB Packet Storm
240993 3.5 注意 Mozilla Foundation - Bugzilla におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-5453 2012-09-25 15:36 2006-10-15 Show GitHub Exploit DB Packet Storm
240994 7.5 危険 kinesis - KICS の index.asp における SQL インジェクションの脆弱性 - CVE-2006-5450 2012-09-25 15:36 2006-10-23 Show GitHub Exploit DB Packet Storm
240995 6.5 警告 Horde - Horde 用の Ingo モジュールの procmail における任意のコマンドを実行される脆弱性 - CVE-2006-5449 2012-09-25 15:36 2006-10-18 Show GitHub Exploit DB Packet Storm
240996 7.5 危険 マイクロソフト - Microsoft Windows DRM の drmstor.dll ActiveX オブジェクトにおける任意のコードを実行される脆弱性 - CVE-2006-5448 2012-09-25 15:36 2006-10-23 Show GitHub Exploit DB Packet Storm
240997 2.6 注意 marc giombetti - phpPowerCards の db/txt.inc.php における任意のファイルを上書きされる脆弱性 - CVE-2006-5432 2012-09-25 15:36 2006-10-20 Show GitHub Exploit DB Packet Storm
240998 5.1 警告 php amx - Php AMX の plugins/main.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5427 2012-09-25 15:36 2006-10-20 Show GitHub Exploit DB Packet Storm
240999 7.5 危険 local calendar system - LoCal Calendar System の lib/lcUser.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5426 2012-09-25 15:36 2006-10-20 Show GitHub Exploit DB Packet Storm
241000 7.5 危険 lou portail - Lou Portail の admin/admin_module.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5423 2012-09-25 15:36 2006-10-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
91 8.8 HIGH
Network 		oracle e-business_suite Vulnerability in the Oracle Payroll product of Oracle E-Business Suite (component: Internal Operations). Supported versions that are affected are 12.2.3-12.2.15. Easily exploitable vulnerability all… Update CWE-306
Missing Authentication for Critical Function 		CVE-2026-46826 2026-06-4 02:43 2026-05-29 Show GitHub Exploit DB Packet Storm
92 8.8 HIGH
Network 		oracle e-business_suite Vulnerability in the Oracle Payroll product of Oracle E-Business Suite (component: Self Service Manager). Supported versions that are affected are 12.2.3-12.2.15. Easily exploitable vulnerability al… Update CWE-269
CWE-284
CWE-287
CWE-306
 Improper Privilege Management
Improper Access Control
Improper Authentication
Missing Authentication for Critical Function 		CVE-2026-46827 2026-06-4 02:43 2026-05-29 Show GitHub Exploit DB Packet Storm
93 8.1 HIGH
Network 		oracle e-business_suite Vulnerability in the Oracle Payroll product of Oracle E-Business Suite (component: Internal Operations). Supported versions that are affected are 12.2.3-12.2.15. Easily exploitable vulnerability all… Update CWE-284
Improper Access Control 		CVE-2026-46828 2026-06-4 02:42 2026-05-29 Show GitHub Exploit DB Packet Storm
94 7.5 HIGH
Network 		oracle rest_data_services Vulnerability in Oracle REST Data Services (component: Mongoapi). Supported versions that are affected are 24.2.0-26.1.0. Easily exploitable vulnerability allows unauthenticated attacker with networ… Update CWE-400
 Uncontrolled Resource Consumption 		CVE-2026-46829 2026-06-4 02:41 2026-05-29 Show GitHub Exploit DB Packet Storm
95 6.5 MEDIUM
Network 		nextcloud approval Nextcloud is an open source content collaboration platform. Prior to version 2.7.2, a privilege escalation vulnerability exists in the Approval app that allows a user without sharing permissions to f… New CWE-285
Improper Authorization 		CVE-2026-45275 2026-06-4 02:39 2026-06-2 Show GitHub Exploit DB Packet Storm
96 9.1 CRITICAL
Network 		oracle e-business_suite Vulnerability in the Oracle Internet Procurement Connector product of Oracle E-Business Suite (component: Internal Operations). Supported versions that are affected are 12.2.3-12.2.15. Easily exploi… Update CWE-284
Improper Access Control 		CVE-2026-46819 2026-06-4 02:37 2026-05-29 Show GitHub Exploit DB Packet Storm
97 3.3 LOW
Local 		nextcloud approval Nextcloud is an open source content collaboration platform. Prior to version 2.7.2, authenticated users can check if arbitrary files are associated with specific approval workflows where they can req… New CWE-200
NVD-CWE-noinfo
Information Exposure 		CVE-2026-45277 2026-06-4 02:36 2026-06-2 Show GitHub Exploit DB Packet Storm
98 6.1 MEDIUM
Network 		nextcloud user_oidc Nextcloud is an open source content collaboration platform. From version 6.1.0 to before version 8.2.2, an attacker can craft links that would redirect users to another website, when the victim uses … New CWE-601
Open Redirect 		CVE-2026-45278 2026-06-4 02:34 2026-06-2 Show GitHub Exploit DB Packet Storm
99 7.5 HIGH
Network 		mosaic5g flexric FlexRIC v2.0.0 crashes when the iApp receives an E42_RIC_SUBSCRIPTION_REQUEST referencing a non-existent E2 Node. The lookup function returns NULL, which is enforced by assert() in Debug builds (SIGA… New CWE-476
 NULL Pointer Dereference 		CVE-2026-37226 2026-06-4 02:16 2026-06-2 Show GitHub Exploit DB Packet Storm
100 7.5 HIGH
Network 		mosaic5g flexric FlexRIC v2.0.0 contains a reachable assertion in e2ap_recv_sctp_msg() (src/lib/ep/e2ap_ep.c). The function allocates a fixed 32KB receive buffer and enforces assert(rc < len) on the sctp_recvmsg() re… New CWE-617
 Reachable Assertion 		CVE-2026-37228 2026-06-4 02:16 2026-06-2 Show GitHub Exploit DB Packet Storm