Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
247671	6.8	警告	Expinion.net	-	Expinion.net iNews Publisher (iNP) などの articles.asp における SQL インジェクションの脆弱性	-	CVE-2006-6274	2012-06-26 15:38	2006-12-4	Show	GitHub Exploit DB Packet Storm

247672	10	危険	alternc	-	AlternC の class/functions.php および class/m_bro.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2006-6259	2012-06-26 15:38	2006-12-4	Show	GitHub Exploit DB Packet Storm

247673	9.3	危険	alternc	-	AlternC の phpmyadmin サブシステムにおけるパスワードを取得される脆弱性	-	CVE-2006-6258	2012-06-26 15:38	2006-12-4	Show	GitHub Exploit DB Packet Storm

247674	6.8	警告	alternc	-	AlternC のファイルマネージャーにおける重要な情報を取得される脆弱性	-	CVE-2006-6257	2012-06-26 15:38	2006-12-4	Show	GitHub Exploit DB Packet Storm

247675	6.8	警告	alternc	-	AlternC の admin/bro_main.php のファイルマネージャーにおけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-6256	2012-06-26 15:38	2006-12-4	Show	GitHub Exploit DB Packet Storm

247676	4.3	警告	cahier de textes	-	Cahier de texte の administration/telecharger.php におけるファイルの未解析コンテンツを取得される脆弱性	-	CVE-2006-6254	2012-06-26 15:38	2006-12-4	Show	GitHub Exploit DB Packet Storm

247677	5	警告	cahier de textes	-	Cahier de texte における全ユーザのパスワードを取得される脆弱性	-	CVE-2006-6253	2012-06-26 15:38	2006-12-4	Show	GitHub Exploit DB Packet Storm

247678	7.8	危険	gphotos	-	Gphotos の index.php における重要な情報を取得される脆弱性	-	CVE-2006-6248	2012-06-26 15:38	2006-12-4	Show	GitHub Exploit DB Packet Storm

247679	7.5	危険	coalescent systems	-	Coalescent Systems freePBX における任意のコマンドを実行される脆弱性	-	CVE-2006-6244	2012-06-26 15:38	2006-12-4	Show	GitHub Exploit DB Packet Storm

247680	7.5	危険	fipsasp	-	FipsSHOP の index.asp における SQL インジェクションの脆弱性	-	CVE-2006-6243	2012-06-26 15:38	2006-12-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2301	6.5	MEDIUM Network	guimard	apache\	Apache::Session::Generate::SHA256 versions before 1.3.19 for Perl create insecure session ids. Apache::Session::Generate::SHA256 generated session ids insecurely. The default session id generator re…	CWE-338 CWE-340 Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) Generation of Predictable Numbers or Identifiers	CVE-2026-8503	2026-05-19 03:23	2026-05-15	Show	GitHub Exploit DB Packet Storm

2302	5.4	MEDIUM Network	google	chrome	Incorrect security UI in Fullscreen in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)	CWE-451 User Interface (UI) Misrepresentation of Critical Information	CVE-2026-8561	2026-05-19 03:22	2026-05-15	Show	GitHub Exploit DB Packet Storm

2303	4.3	MEDIUM Network	google	chrome	Side-channel information leakage in Navigation in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Mediu…	CWE-1300 Improper Protection of Physical Side Channels	CVE-2026-8562	2026-05-19 03:21	2026-05-15	Show	GitHub Exploit DB Packet Storm

2304	9.1	CRITICAL Network	-	-	DumbAssets through 1.0.11 contains a path traversal vulnerability in the POST /api/delete-file endpoint and filesToDelete array parameters that allows unauthenticated attackers to delete arbitrary fi…	CWE-22 Path Traversal	CVE-2026-45230	2026-05-19 03:17	2026-05-19	Show	GitHub Exploit DB Packet Storm

2305	8.8	HIGH Network	-	-	Thermo Fisher Scientific Torrent Suite Dx through 5.14.2 has a privilege escalation vulnerability that may allow an authenticated user with limited access privileges to gain unauthorized administrato…	CWE-269 Improper Privilege Management	CVE-2026-41085	2026-05-19 03:17	2026-05-19	Show	GitHub Exploit DB Packet Storm

2306	6.2	MEDIUM Local	-	-	OpENer v2.3-558-g1e99582 contains an out-of-bounds read vulnerability in the Common Packet Format (CPF) parser, specifically in CreateCommonPacketFormatStructure() in source/src/enet_encap/cpf.c. A c…	CWE-125 Out-of-bounds Read	CVE-2026-38719	2026-05-19 03:17	2026-05-19	Show	GitHub Exploit DB Packet Storm

2307	5.5	MEDIUM Local	-	-	NetBSD prior to commit ec8451e contains a signed integer overflow vulnerability in the cryptodev_op() function in sys/opencrypto/cryptodev.c where the local variable iov_len is declared as a signed i…	CWE-190 CWE-476 Integer Overflow or Wraparound NULL Pointer Dereference	CVE-2026-32849	2026-05-19 03:17	2026-05-19	Show	GitHub Exploit DB Packet Storm

2308	4.7	MEDIUM Local	-	-	NetBSD prior to commit ec8451e contains a race condition vulnerability in cryptodev_op() within the opencrypto subsystem that allows local attackers to trigger a double-free condition by concurrently…	CWE-362 CWE-415 Race Condition Double Free	CVE-2026-32848	2026-05-19 03:17	2026-05-19	Show	GitHub Exploit DB Packet Storm

2309	5.3	MEDIUM Local	oalders	www\	WWW::Mechanize::Cached versions before 2.00 for Perl deserialize cached HTTP responses from a world-writable on-disk cache, enabling local response forgery and code execution. With no explicit cache…	CWE-502 CWE-732 Deserialization of Untrusted Data Incorrect Permission Assignment for Critical Resource	CVE-2026-8612	2026-05-19 03:17	2026-05-15	Show	GitHub Exploit DB Packet Storm

2310	8.8	HIGH Network	-	-	ngrok v4.3.3 and 5.0.0-beta.2 is vulnerable to Command Injection.	CWE-77 Command Injection	CVE-2025-57282	2026-05-19 03:17	2026-05-19	Show	GitHub Exploit DB Packet Storm