Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 18, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
250661	7.5	危険	barry nauta	-	Barry Nauta BRIM における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5429	2012-06-26 15:37	2006-10-20	Show	GitHub Exploit DB Packet Storm

250662	5	警告	Cerberus, LLC	-	Cerberus Helpdesk の rpc.php における GUI ログインを回避される脆弱性	-	CVE-2006-5428	2012-06-26 15:37	2006-10-20	Show	GitHub Exploit DB Packet Storm

250663	5.1	警告	F5 Networks	-	F5 Networks FirePass 1000 SSL VPN の my.acctab.php3 におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-5416	2012-06-26 15:37	2006-10-20	Show	GitHub Exploit DB Packet Storm

250664	5	警告	barry nauta	-	Barry Nauta BRIM における他のユーザから情報を取得される脆弱性	-	CVE-2006-5414	2012-06-26 15:37	2006-10-20	Show	GitHub Exploit DB Packet Storm

250665	5.1	警告	BoonEx	-	BoonEx Dolphin の templates/tmpl_dfl/scripts/index.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5410	2012-06-26 15:37	2006-10-20	Show	GitHub Exploit DB Packet Storm

250666	7.5	危険	aroundme	-	AROUNDMe の template/barnraiser_01/p_new_password.tpl.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5401	2012-06-26 15:37	2006-10-18	Show	GitHub Exploit DB Packet Storm

250667	5.1	警告	cyberbrau	-	CyberBrau の forum/track.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5400	2012-06-26 15:37	2006-10-18	Show	GitHub Exploit DB Packet Storm

250668	2.1	注意	シスコシステムズ	-	CSD のデフォルト設定におけるプリンタへ送信されたデータを読まれる脆弱性	-	CVE-2006-5394	2012-06-26 15:37	2006-10-9	Show	GitHub Exploit DB Packet Storm

250669	2.1	注意	シスコシステムズ	-	CSD における特定のメモリページを読まれる脆弱性	-	CVE-2006-5393	2012-06-26 15:37	2006-10-9	Show	GitHub Exploit DB Packet Storm

250670	7.5	危険	cds software consortium	-	CDS Software Consortium CDS Agenda の modification/SendAlertEmail.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5384	2012-06-26 15:37	2006-10-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 18, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
5281	5.4	MEDIUM Network	-	-	A weakness has been identified in TeamSpeak 3 Server up to 3.13.7. This affects the function process_resend_queue of the component Connection State Management. This manipulation causes use after free…	CWE-119 CWE-416 Incorrect Access of Indexable Resource ('Range Error') Use After Free	CVE-2026-4390	2026-05-28 03:16	2026-05-28	Show	GitHub Exploit DB Packet Storm

5282	8.1	HIGH Network	pavel-odintsov	fastnetmon	FastNetMon Community Edition through 1.2.9 contains an OS command injection vulnerability in the Juniper router integration plugin. The _log() function in src/juniper_plugin/fastnetmon_juniper.php (l…	CWE-78 OS Command	CVE-2026-48687	2026-05-28 03:16	2026-05-27	Show	GitHub Exploit DB Packet Storm

5283	8.5	HIGH Network	-	-	Budibase is an open-source low-code platform. Prior to 3.39.0, fetchToken in the OAuth2 SDK makes a POST to a builder-supplied URL with plain node-fetch, skipping the blacklist.isBlacklisted check th…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-48153	2026-05-28 03:16	2026-05-28	Show	GitHub Exploit DB Packet Storm

5284	8.1	HIGH Network	-	-	Budibase is an open-source low-code platform. Prior to 3.39.0, the single-datasource GET and PUT routes are guarded by generic TABLE READ, not by Builder/Admin permission or datasource-specific owner…	CWE-863 Incorrect Authorization	CVE-2026-48152	2026-05-28 03:16	2026-05-28	Show	GitHub Exploit DB Packet Storm

5285	9.0	CRITICAL Network	-	-	Budibase is an open-source low-code platform. Prior to 3.39.0, /api/public/v1/roles/assign is guarded by the builderOrAdmin middleware, which passes any user who is a builder for the app id in the x-…	CWE-915 Improperly Controlled Modification of Dynamically-Determined Object Attributes	CVE-2026-48150	2026-05-28 03:16	2026-05-28	Show	GitHub Exploit DB Packet Storm

5286	-		-	-	Budibase is an open-source low-code platform. Prior to 3.35.3, the VectorDB configuration endpoint in Budibase accepts a host parameter that undergoes no validation against internal IP ranges, reser…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-48148	2026-05-28 03:16	2026-05-28	Show	GitHub Exploit DB Packet Storm

5287	6.5	MEDIUM Network	-	-	Budibase is an open-source low-code platform. Prior to 3.35.4, the buildMatcherRegex() / matches() functions in packages/backend-core/src/middleware/matchers.ts route patterns are compiled into unanc…	CWE-185 CWE-352 Incorrect Regular Expression Origin Validation Error	CVE-2026-48147	2026-05-28 03:16	2026-05-28	Show	GitHub Exploit DB Packet Storm

5288	-		-	-	Budibase is an open-source low-code platform. Prior to 3.39.0, the executeQuery automation step in Budibase accepts a queryId from automation step inputs and passes it directly to the query execution…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-48128	2026-05-28 03:16	2026-05-28	Show	GitHub Exploit DB Packet Storm

5289	7.6	HIGH Network	-	-	Budibase is an open-source low-code platform. Prior to 3.38.2, the file upload endpoint POST /api/attachments/process does not enforce active-content restrictions for authenticated users. The checks …	CWE-79 CWE-434 Cross-site Scripting Unrestricted Upload of File with Dangerous Type	CVE-2026-46426	2026-05-28 03:16	2026-05-28	Show	GitHub Exploit DB Packet Storm

5290	6.5	MEDIUM Network	-	-	Budibase is an open-source low-code platform. Prior to 3.38.1, the V1 Views API (POST /api/views) accepts a calculation parameter from the request body that is interpolated directly into a CouchDB re…	CWE-94 Code Injection	CVE-2026-45719	2026-05-28 03:16	2026-05-28	Show	GitHub Exploit DB Packet Storm