Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 8, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4961	8.1	重要 Network	SenseLive	X3500 Firmware	SenseLiveのX3500 Firmwareにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2026-27841	2026-04-30 12:08	2026-04-24	Show	GitHub Exploit DB Packet Storm

4962	9.1	緊急 Network	SenseLive	X3500 Firmware	SenseLiveのX3500 Firmwareにおける重要な機能に対する認証の欠如に関する脆弱性	CWE-306 重要な機能に対する認証の欠如解説	CVE-2026-27843	2026-04-30 12:08	2026-04-24	Show	GitHub Exploit DB Packet Storm

4963	7.5	重要 Network	Navigation Data Standard (NDS)	Zserio	Navigation Data Standard (NDS)のZserioにおける過剰なサイズ値のメモリ割り当てに関する脆弱性	CWE-789 過剰なサイズ値のメモリ割り当て	CVE-2026-33524	2026-04-30 12:08	2026-04-24	Show	GitHub Exploit DB Packet Storm

4964	7.5	重要 Network	Navigation Data Standard (NDS)	Zserio	Navigation Data Standard (NDS)のZserioにおける整数オーバーフローの脆弱性	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2026-33666	2026-04-30 12:08	2026-04-24	Show	GitHub Exploit DB Packet Storm

4965	7.5	重要 Network	SenseLive	X3500 Firmware	SenseLiveのX3500 Firmwareにおける重要な機能に対する認証の欠如に関する脆弱性	CWE-306 重要な機能に対する認証の欠如解説	CVE-2026-35064	2026-04-30 12:08	2026-04-24	Show	GitHub Exploit DB Packet Storm

4966	7.1	重要 Local	Gwenhael Goavec-Merou (trabucayre)	openFPGALoader	Gwenhael Goavec-Merou (trabucayre)のopenFPGALoaderにおける境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2026-35170	2026-04-30 12:08	2026-04-6	Show	GitHub Exploit DB Packet Storm

4967	7.1	重要 Local	Gwenhael Goavec-Merou (trabucayre)	openFPGALoader	Gwenhael Goavec-Merou (trabucayre)のopenFPGALoaderにおける境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2026-35176	2026-04-30 12:08	2026-04-6	Show	GitHub Exploit DB Packet Storm

4968	6.5	警告 Network	Coder	Code Extension Marketplace	CoderのCode Extension Marketplaceにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-35454	2026-04-30 12:07	2026-04-6	Show	GitHub Exploit DB Packet Storm

4969	9.8	緊急 Network	SenseLive	X3500 Firmware	SenseLiveのX3500 Firmwareにおけるハードコードされた認証情報の使用に関する脆弱性	CWE-798 ハードコードされた認証情報の使用	CVE-2026-35503	2026-04-30 12:07	2026-04-24	Show	GitHub Exploit DB Packet Storm

4970	8.1	重要 Network	SenseLive	X3500 Firmware	SenseLiveのX3500 Firmwareにおける認証情報の不十分な保護に関する脆弱性	CWE-522 認証情報の不十分な保護	CVE-2026-39462	2026-04-30 12:07	2026-04-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 8, 2026, 4:09 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
347221	-	papoo	papoo	Multiple SQL injection vulnerabilities in Papoo 2.1.5, and 3 beta1 and earlier, allow remote attackers to execute arbitrary SQL commands via the (1) getlang and (2) reporeid parameter in (a) index.ph…	NVD-CWE-Other	CVE-2006-1766	2017-07-20 10:30	2006-04-13	Show	GitHub Exploit DB Packet Storm

347222	-	phpkit	phpkit	SQL injection vulnerability in include.php in PHPKIT 1.6.1 Release 2 and earlier allows remote attackers to execute arbitrary SQL commands via the contentid parameter, possibly involving content/news…	NVD-CWE-Other	CVE-2006-1773	2017-07-20 10:30	2006-04-13	Show	GitHub Exploit DB Packet Storm

347223	-	mambo	mambo	SQL injection vulnerability in Mambo 4.5.3, 4.5.3h, and possibly earlier versions allows remote attackers to execute arbitrary SQL commands via (1) the $username variable in the mosGetParam function …	NVD-CWE-Other	CVE-2006-1794	2017-07-20 10:30	2006-04-17	Show	GitHub Exploit DB Packet Storm

347224	-	mambo	mambo	Successful exploitation requires that "magic_quotes_gpc" is disabled.	NVD-CWE-Other	CVE-2006-1794	2017-07-20 10:30	2006-04-17	Show	GitHub Exploit DB Packet Storm

347225	-	netbsd	netbsd	The kernel in NetBSD-current before September 28, 2005 allows local users to cause a denial of service (system crash) by using the SIOCGIFALIAS ioctl to gather information on a non-existent alias of …	NVD-CWE-Other	CVE-2006-1797	2017-07-20 10:30	2006-04-18	Show	GitHub Exploit DB Packet Storm

347226	-	simplemedia	simplebbs	Directory traversal vulnerability in posts.php in SimpleBBS 1.0.6 through 1.1 allows remote attackers to include and execute arbitrary files via ".." sequences in the language cookie, as demonstrated…	NVD-CWE-Other	CVE-2006-1800	2017-07-20 10:30	2006-04-18	Show	GitHub Exploit DB Packet Storm

347227	-	netbsd	netbsd	NetBSD 1.6, 2.0, 2.1 and 3.0 allows local users to cause a denial of service (memory exhaustion) by using the sysctl system call to lock a large buffer into physical memory.	NVD-CWE-Other	CVE-2006-1814	2017-07-20 10:30	2006-04-18	Show	GitHub Exploit DB Packet Storm

347228	-	tritanium_scripts	tritanium_bulletin_board	Multiple cross-site scripting (XSS) vulnerabilities in register.php in Tritanium Bulletin Board (TBB) 1.2.3 allow remote attackers to inject arbitrary web script or HTML via the (1) newuser_realname …	NVD-CWE-Other	CVE-2006-1815	2017-07-20 10:30	2006-04-18	Show	GitHub Exploit DB Packet Storm

347229	-	phplinks	phplinks	Cross-site scripting (XSS) vulnerability in index.php in phpLinks 2.1.3.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the term parameter.	NVD-CWE-Other	CVE-2006-1825	2017-07-20 10:30	2006-04-18	Show	GitHub Exploit DB Packet Storm

347230	-	sybase	easerver	EAServer Manager in Sybase EAServer 5.2 and 5.3 allows remote authenticated users, possibly guests, to obtain password credentials of arbitrary users via unspecified vectors involving (1) connection …	NVD-CWE-Other	CVE-2006-1829	2017-07-20 10:30	2006-04-20	Show	GitHub Exploit DB Packet Storm