Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 3, 2026, 6:08 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4131	8.5	重要 Network	socialengine	socialengine	socialengineにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-41461	2026-04-30 12:26	2026-04-23	Show	GitHub Exploit DB Packet Storm

4132	7.7	重要 Network	The Kyverno Authors	Kyverno	The Kyverno AuthorsのKyvernoにおける到達可能なアサーションに関する脆弱性	CWE-617 到達可能なアサーション	CVE-2026-41485	2026-04-30 12:25	2026-04-24	Show	GitHub Exploit DB Packet Storm

4133	4	警告 Local	The GnuPG Project	Libgcrypt	The GnuPG ProjectのLibgcryptにおける境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2026-41990	2026-04-30 12:25	2026-04-23	Show	GitHub Exploit DB Packet Storm

4134	7.4	重要 Network	axios project	axios	axios projectのaxiosにおけるオブジェクトプロトタイプ属性の不適切に制御された変更に関する脆弱性	CWE-1321 オブジェクトプロトタイプ属性の不適切に制御された変更 (プロトタイプの汚染)	CVE-2026-42033	2026-04-30 12:25	2026-04-24	Show	GitHub Exploit DB Packet Storm

4135	5.3	警告 Network	axios project	axios	axios projectのaxiosにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-42034	2026-04-30 12:25	2026-04-24	Show	GitHub Exploit DB Packet Storm

4136	7.4	重要 Network	axios project	axios	axios projectのaxiosにおける複数の脆弱性	CWE-113 CWE-1321	CVE-2026-42035	2026-04-30 12:25	2026-04-24	Show	GitHub Exploit DB Packet Storm

4137	5.3	警告 Network	axios project	axios	axios projectのaxiosにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-42036	2026-04-30 12:25	2026-04-24	Show	GitHub Exploit DB Packet Storm

4138	5.3	警告 Network	axios project	axios	axios projectのaxiosにおけるCRLF インジェクションの脆弱性	CWE-93 CRLF インジェクション	CVE-2026-42037	2026-04-30 12:25	2026-04-24	Show	GitHub Exploit DB Packet Storm

4139	7.5	重要 Network	axios project	axios	axios projectのaxiosにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-42038	2026-04-30 12:25	2026-04-24	Show	GitHub Exploit DB Packet Storm

4140	7.5	重要 Network	axios project	axios	axios projectのaxiosにおける再帰制御に関する脆弱性	CWE-674 不適切な再帰制御	CVE-2026-42039	2026-04-30 12:25	2026-04-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
346451	-	cisco	ios	Unspecified vulnerability in Stack Group Bidding Protocol (SGBP) support in Cisco IOS 12.0 through 12.4 running on various Cisco products, when SGBP is enabled, allows remote attackers on the local n…	CWE-20 Improper Input Validation	CVE-2006-0340	2017-07-20 10:29	2006-01-21	Show	GitHub Exploit DB Packet Storm

346452	-	rockliffe	mailsite	Cross-site scripting (XSS) vulnerability in WCONSOLE.DLL in Rockliffe MailSite 5.x and 6.1.22 and earlier allows remote attackers to inject arbitrary web script or HTML via the query string.	NVD-CWE-Other	CVE-2006-0341	2017-07-20 10:29	2006-01-6	Show	GitHub Exploit DB Packet Storm

346453	-	rockliffe	mailsite	RockLiffe MailSite HTTP Mail management agent (httpma) 7.0.3.1 allows remote attackers to cause a denial of service (CPU consumption and crash) via a malformed query string containing special charact…	CWE-399 Resource Management Errors	CVE-2006-0342	2017-07-20 10:29	2006-01-21	Show	GitHub Exploit DB Packet Storm

346454	-	hitachi	jpi_netsight_ii_port_discovery_advance jpi_netsight_ii_port_discovery_standard	Unspecified vulnerability in the Port Discovery Standard and Advanced features in Hitachi JP1/NetInsight II allows attackers to stop the Port Discovery service via unknown vectors involving "invalid …	NVD-CWE-Other	CVE-2006-0343	2017-07-20 10:29	2006-01-21	Show	GitHub Exploit DB Packet Storm

346455	-	intervations	filecopa	Directory traversal vulnerability in Intervations FileCOPA FTP Server 1.01 allows remote attackers to read and write arbitrary files via a .. (dot dot) in the (1) STOR and (2) RETR commands.	NVD-CWE-Other	CVE-2006-0344	2017-07-20 10:29	2006-01-21	Show	GitHub Exploit DB Packet Storm

346456	-	saral_kaushik	saralblog	Multiple SQL injection vulnerabilities in SaralBlog 1.0 allow remote attackers to execute arbitrary SQL commands via the search parameter to search.php. NOTE: the id/viewprofile.php issue is already…	NVD-CWE-Other	CVE-2006-0345	2017-07-20 10:29	2006-01-21	Show	GitHub Exploit DB Packet Storm

346457	-	saral_kaushik	saralblog	Cross-site scripting (XSS) vulnerability in SaralBlog 1.0 allows remote attackers to inject arbitrary web script or HTML via a website field in a new comment to view.php, which is not properly handle…	NVD-CWE-Other	CVE-2006-0346	2017-07-20 10:29	2006-01-21	Show	GitHub Exploit DB Packet Storm

346458	-	stefan_ritt	elog_web_logbook	Directory traversal vulnerability in ELOG before 2.6.1 allows remote attackers to access arbitrary files outside of the elog directory via "../" (dot dot) sequences in the URL.	NVD-CWE-Other	CVE-2006-0347	2017-07-20 10:29	2006-01-21	Show	GitHub Exploit DB Packet Storm

346459	-	stefan_ritt	elog_web_logbook	Format string vulnerability in the write_logfile function in ELOG before 2.6.1 allows remote attackers to cause a denial of service (server crash) via unknown attack vectors. NOTE: the provenance of…	NVD-CWE-Other	CVE-2006-0348	2017-07-20 10:29	2006-01-21	Show	GitHub Exploit DB Packet Storm

346460	-	epic_designs	eggblog	SQL injection vulnerability in eggblog 2.0 allows remote attackers to execute arbitrary SQL commands via the id parameter to blog.php.	NVD-CWE-Other	CVE-2006-0349	2017-07-20 10:29	2006-01-21	Show	GitHub Exploit DB Packet Storm