Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 26, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4111	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける初期化されていないリソースの使用に関する脆弱性	CWE-908 初期化されていないリソースの使用	CVE-2026-31428	2026-05-22 10:55	2026-04-13	Show	GitHub Exploit DB Packet Storm

4112	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける有効期限後のメモリの解放の欠如に関する脆弱性	CWE-401 有効期限後のメモリの解放の欠如	CVE-2026-31429	2026-05-22 10:55	2026-04-20	Show	GitHub Exploit DB Packet Storm

4113	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける有効期限後のメモリの解放の欠如に関する脆弱性	CWE-401 有効期限後のメモリの解放の欠如	CVE-2026-31434	2026-05-22 10:55	2026-04-22	Show	GitHub Exploit DB Packet Storm

4114	6.5	警告 Network	struktur AG	libheif	struktur AGのlibheifにおける複数の脆弱性	CWE-125 CWE-476	CVE-2026-32738	2026-05-22 10:55	2026-05-19	Show	GitHub Exploit DB Packet Storm

4115	6.5	警告 Network	struktur AG	libheif	struktur AGのlibheifにおける無限ループに関する脆弱性	CWE-835 無限ループ	CVE-2026-32739	2026-05-22 10:55	2026-05-19	Show	GitHub Exploit DB Packet Storm

4116	8.8	重要 Network	struktur AG	libheif	struktur AGのlibheifにおける境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2026-32740	2026-05-22 10:55	2026-05-19	Show	GitHub Exploit DB Packet Storm

4117	7.5	重要 Network	アドビシステムズ	Adobe Commerce Adobe Commerce B2B magento	アドビのAdobe Commerce等の複数製品における不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-34645	2026-05-22 10:55	2026-05-12	Show	GitHub Exploit DB Packet Storm

4118	7.5	重要 Network	アドビシステムズ	Adobe Commerce Adobe Commerce B2B magento	アドビのAdobe Commerce等の複数製品における不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-34646	2026-05-22 10:55	2026-05-12	Show	GitHub Exploit DB Packet Storm

4119	7.4	重要 Network	アドビシステムズ	Adobe Commerce Adobe Commerce B2B magento	アドビのAdobe Commerce等の複数製品におけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-34647	2026-05-22 10:55	2026-05-12	Show	GitHub Exploit DB Packet Storm

4120	7.5	重要 Network	アドビシステムズ	Adobe Commerce Adobe Commerce B2B magento	アドビのAdobe Commerce等の複数製品におけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-34648	2026-05-22 10:55	2026-05-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 27, 2026, 4:35 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
344591	-	nucleus_group	nucleus_cms	PHP remote file inclusion vulnerability in nucleus/libs/PLUGINADMIN.php in Nucleus 3.22 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the GLOBALS[DIR_LIBS] parameter.	NVD-CWE-Other	CVE-2006-2583	2018-10-19 01:40	2006-05-25	Show	GitHub Exploit DB Packet Storm

344592	-	skyebox	skyebox	Multiple cross-site scripting (XSS) vulnerabilities in post.php in SkyeBox 1.2.0 allow remote attackers to inject arbitrary web script or HTML via the (1) name or (2) message parameters. NOTE: the p…	NVD-CWE-Other	CVE-2006-2584	2018-10-19 01:40	2006-05-25	Show	GitHub Exploit DB Packet Storm

344593	-	even_balance	punkbuster	Buffer overflow in the WebTool HTTP server component in (1) PunkBuster before 1.229, as used by multiple products including (2) America's Army 1.228 and earlier, (3) Battlefield 1942 1.158 and earlie…	NVD-CWE-Other	CVE-2006-2587	2018-10-19 01:40	2006-05-25	Show	GitHub Exploit DB Packet Storm

344594	-	russcom_network	phpimages	Russcom PHPImages allows remote attackers to upload files of arbitrary types by uploading a file with a .gif extension. NOTE: due to lack of specific information about attack vectors do not depend o…	NVD-CWE-Other	CVE-2006-2588	2018-10-19 01:40	2006-05-25	Show	GitHub Exploit DB Packet Storm

344595	-	mybulletinboard	mybulletinboard	SQL injection vulnerability in rss.php in MyBB (aka MyBulletinBoard) 1.1.1 allows remote attackers to execute arbitrary SQL commands via the comma parameter. NOTE: it is not clear from the original …	NVD-CWE-Other	CVE-2006-2589	2018-10-19 01:40	2006-05-25	Show	GitHub Exploit DB Packet Storm

344596	-	dschat	dschat	Cross-site scripting (XSS) vulnerability in DSChat 1.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the chatbox, probably involving the ctext parameter to send.php.	NVD-CWE-Other	CVE-2006-2605	2018-10-19 01:40	2006-05-25	Show	GitHub Exploit DB Packet Storm

344597	-	chatty	chatty	Cross-site scripting (XSS) vulnerability in Chatty, possibly 1.0.2 and other versions, allows remote attackers to inject arbitrary web script or HTML via the username.	NVD-CWE-Other	CVE-2006-2606	2018-10-19 01:40	2006-05-25	Show	GitHub Exploit DB Packet Storm

344598	-	paul_vixie	vixie_cron	do_command.c in Vixie cron (vixie-cron) 4.1 does not check the return code of a setuid call, which might allow local users to gain root privileges if setuid fails in cases such as PAM failures or res…	NVD-CWE-Other	CVE-2006-2607	2018-10-19 01:40	2006-05-26	Show	GitHub Exploit DB Packet Storm

344599	-	artmedic_webdesign	artmedic_newsletter	artmedic newsletter 4.1 and possibly other versions, when register_globals is enabled, allows remote attackers to modify arbitrary files and execute arbitrary PHP code via the logfile parameter in a …	NVD-CWE-Other	CVE-2006-2608	2018-10-19 01:40	2006-05-26	Show	GitHub Exploit DB Packet Storm

344600	-	spiffyjr	phpraid	Cross-site scripting (XSS) vulnerability in view.php in phpRaid 2.9.5 allows remote attackers to inject arbitrary web script or HTML via the (1) URL query string and the (2) Sort parameter.	NVD-CWE-Other	CVE-2006-2610	2018-10-19 01:40	2006-05-26	Show	GitHub Exploit DB Packet Storm