Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 3, 2026, 6:08 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2591	7.5	重要 Network	coredns.io	CoreDNS	The CoreDNS AuthorsのCoreDNSにおけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-32936	2026-05-11 11:11	2026-05-5	Show	GitHub Exploit DB Packet Storm

2592	9.9	緊急 Network	マイクロソフト	Azure Managed Instance for Apache Cassandra	Azure Managed Instance for Apache Cassandra Remote Code Execution Vulnerability	CWE-284 不適切なアクセス制御	CVE-2026-33109	2026-05-11 11:11	2026-05-7	Show	GitHub Exploit DB Packet Storm

2593	7.5	重要 Network	coredns.io	CoreDNS	The CoreDNS AuthorsのCoreDNSにおける認証アルゴリズムの不適切な実装に関する脆弱性	CWE-303 認証アルゴリズム上の問題	CVE-2026-33190	2026-05-11 11:11	2026-05-5	Show	GitHub Exploit DB Packet Storm

2594	8.8	重要 Network	FIT2CLOUD	SQLBot	FIT2CLOUDのSQLBotにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2026-33324	2026-05-11 11:11	2026-05-5	Show	GitHub Exploit DB Packet Storm

2595	5.3	警告 Network	Daniel Garcia	Vaultwarden	Daniel GarciaのVaultwardenにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2026-33420	2026-05-11 11:11	2026-05-5	Show	GitHub Exploit DB Packet Storm

2596	7.5	重要 Network	coredns.io	CoreDNS	The CoreDNS AuthorsのCoreDNSにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-33489	2026-05-11 11:10	2026-05-5	Show	GitHub Exploit DB Packet Storm

2597	6.5	警告 Network	マイクロソフト	Microsoft Teams	Microsoft Team Events Portal Information Disclosure Vulnerability	CWE-285 不適切な認可	CVE-2026-33823	2026-05-11 11:10	2026-05-7	Show	GitHub Exploit DB Packet Storm

2598	9	緊急 Network	マイクロソフト	Azure Managed Instance for Apache Cassandra	Azure Managed Instance for Apache Cassandra Remote Code Execution Vulnerability	CWE-20 不適切な入力確認	CVE-2026-33844	2026-05-11 11:10	2026-05-7	Show	GitHub Exploit DB Packet Storm

2599	8.2	重要 Network	マイクロソフト	Microsoft Partner Center	Microsoft Partner Center Spoofing Vulnerability	CWE-610 別領域リソースに対する外部からの制御可能な参照	CVE-2026-34327	2026-05-11 11:10	2026-05-7	Show	GitHub Exploit DB Packet Storm

2600	5.3	警告 Network	sandboxie-plus	Sandboxie	sandboxie-plusのSandboxieにおける弱いハッシュの使用に関する脆弱性	CWE-328 脆弱なハッシュの使用	CVE-2026-34527	2026-05-11 11:10	2026-05-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
345581	-	arthur_konze_webdesign	akocomment	PHP remote file inclusion vulnerability in akocomments.php in AkoComment 1.1 module (com_akocomment) for Mambo 4.5 allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_abs…	NVD-CWE-Other	CVE-2006-4281	2017-07-20 10:32	2006-08-22	Show	GitHub Exploit DB Packet Storm

345582	-	sony	vaio_media_server	Buffer overflow in Sony VAIO Media Server 2.x, 3.x, 4.x, and 5.x before 20060626 allows remote attackers to execute arbitrary code via unspecified vectors.	NVD-CWE-Other	CVE-2006-4289	2017-07-20 10:32	2006-08-23	Show	GitHub Exploit DB Packet Storm

345583	-	sony	vaio_media_server	Directory traversal vulnerability in Sony VAIO Media Server 2.x, 3.x, 4.x, and 5.x before 20060626 allows remote attackers to gain sensitive information via unspecified vectors.	NVD-CWE-Other	CVE-2006-4290	2017-07-20 10:32	2006-08-23	Show	GitHub Exploit DB Packet Storm

345584	-	niels_provos	honeyd	Unspecified vulnerability in Niels Provos Honeyd before 1.5b allows remote attackers to cause a denial of service (application crash) via certain Address Resolution Protocol (ARP) packets.	NVD-CWE-Other	CVE-2006-4292	2017-07-20 10:32	2006-08-23	Show	GitHub Exploit DB Packet Storm

345585	-	oscommerce	oscommerce	Multiple directory traversal vulnerabilities in cache.php in osCommerce before 2.2 Milestone 2 060817 allow remote attackers to determine existence of arbitrary files and disclose the installation pa…	NVD-CWE-Other	CVE-2006-4298	2017-07-20 10:32	2006-08-23	Show	GitHub Exploit DB Packet Storm

345586	-	tiki	tikiwiki_cms\/groupware	Cross-site scripting (XSS) vulnerability in tiki-searchindex.php in TikiWiki 1.9.4 allows remote attackers to inject arbitrary web script or HTML via the highlight parameter. NOTE: the provenance of…	CWE-79 Cross-site Scripting	CVE-2006-4299	2017-07-20 10:32	2006-08-23	Show	GitHub Exploit DB Packet Storm

345587	-	sun	solaris	Race condition in (1) libnsl and (2) TLI/XTI API routines in Sun Solaris 10 allows remote attackers to cause a denial of service ("tight loop" and CPU consumption for listener applications) via unkno…	NVD-CWE-Other	CVE-2006-4303	2017-07-20 10:32	2006-08-23	Show	GitHub Exploit DB Packet Storm

345588	-	freebsd netbsd openbsd	freebsd netbsd openbsd	Buffer overflow in the sppp driver in FreeBSD 4.11 through 6.1, NetBSD 2.0 through 4.0 beta before 20060823, and OpenBSD 3.8 and 3.9 before 20060902 allows remote attackers to cause a denial of servi…	NVD-CWE-Other	CVE-2006-4304	2017-07-20 10:32	2006-08-24	Show	GitHub Exploit DB Packet Storm

345589	-	mywebland	myevent	Multiple SQL injection vulnerabilities in myEvent 1.x allow remote attackers to inject arbitrary SQL commands via the event_id parameter to (1) addevent.php or (2) del.php or (3) event_desc parameter…	NVD-CWE-Other	CVE-2006-1907	2017-07-20 10:31	2006-04-21	Show	GitHub Exploit DB Packet Storm

345590	-	mywebland	myevent	Cross-site scripting vulnerability in addevent.php in myEvent 1.x allows remote attackers to inject arbitrary web script or HTML via the event_desc parameter. NOTE: the provenance of this informatio…	NVD-CWE-Other	CVE-2006-1908	2017-07-20 10:31	2006-04-21	Show	GitHub Exploit DB Packet Storm