Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 11, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
5291 8.8 重要
Network 		litellm litellm LiteLLMにおける保護されていない代替チャネルに関する脆弱性 CWE-420
保護されていない代替チャネル 		CVE-2026-40217 2026-04-30 12:14 2026-04-10 Show GitHub Exploit DB Packet Storm
5292 7.8 重要
Local 		radare radare2 radareのradare2におけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-40517 2026-04-30 12:14 2026-04-22 Show GitHub Exploit DB Packet Storm
5293 6.7 警告
Local 		The GnuPG Project Libgcrypt The GnuPG ProjectのLibgcryptにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2026-41989 2026-04-30 12:14 2026-04-23 Show GitHub Exploit DB Packet Storm
5294 9.8 緊急
Network 		OFFIS DCMTK OFFISのDCMTKにおける複数の脆弱性 CWE-77
CWE-78
CVE-2026-5663 2026-04-30 12:14 2026-04-6 Show GitHub Exploit DB Packet Storm
5295 5.5 警告
Local 		Angry IP Scanner Angry IP Scanner Angry IP Scannerにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2018-25262 2026-04-30 12:14 2026-04-22 Show GitHub Exploit DB Packet Storm
5296 7.8 重要
Local 		LizardSystems LanSpy LizardSystemsのLanSpyにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2018-25265 2026-04-30 12:14 2026-04-22 Show GitHub Exploit DB Packet Storm
5297 5.5 警告
Local 		Angry IP Scanner Angry IP Scanner Angry IP Scannerにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2018-25266 2026-04-30 12:14 2026-04-22 Show GitHub Exploit DB Packet Storm
5298 7.8 重要
Local 		LizardSystems LanSpy LizardSystemsのLanSpyにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2018-25268 2026-04-30 12:14 2026-04-22 Show GitHub Exploit DB Packet Storm
5299 5.5 警告
Local 		Helios Textpad HeliosのTextpadにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2018-25271 2026-04-30 12:14 2026-04-22 Show GitHub Exploit DB Packet Storm
5300 4.8 警告
Network 		IBM Guardium Key Lifecycle Manager IBMのGuardium Key Lifecycle Managerにおける権限管理に関する脆弱性 CWE-269
CWE-noinfo
CVE-2026-1726 2026-04-30 12:14 2026-04-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 11, 2026, 5:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
347791 - maxxcode maxxschedule SQL injection vulnerability in Logon.asp in MaxxSchedule 1.0 allows remote attackers to execute arbitrary SQL commands via the txtLogon parameter. CWE-89
SQL Injection 		CVE-2006-2259 2017-07-20 10:31 2006-05-9 Show GitHub Exploit DB Packet Storm
347792 - drupal drupal Cross-site scripting (XSS) vulnerability in the project module (project.module) in Drupal 4.5 and 4.6 allows remote attackers to inject arbitrary web script or HTML via unknown attack vectors. NVD-CWE-Other
CVE-2006-2260 2017-07-20 10:31 2006-05-9 Show GitHub Exploit DB Packet Storm
347793 - ocean12_technologies calendar_manager_pro Multiple SQL injection vulnerabilities in Ocean12 Calendar Manager Pro 1.00 allow remote attackers to execute arbitrary SQL commands via the (1) date parameter to admin/main.asp, (2) SearchFor parame… NVD-CWE-Other
CVE-2006-2264 2017-07-20 10:31 2006-05-9 Show GitHub Exploit DB Packet Storm
347794 - ocean12_technologies calendar_manager_pro Cross-site scripting vulnerability in admin/main.asp in Ocean12 Calendar Manager Pro 1.00 allows remote attackers to inject arbitrary web script or HTML via the date parameter. NOTE: the provenance … NVD-CWE-Other
CVE-2006-2265 2017-07-20 10:31 2006-05-9 Show GitHub Exploit DB Packet Storm
347795 - chirpy chirpy SQL injection vulnerability in Chirpy! 0.1 allows remote attackers to execute arbitrary SQL commands via unspecified parameters. NVD-CWE-Other
CVE-2006-2266 2017-07-20 10:31 2006-05-9 Show GitHub Exploit DB Packet Storm
347796 - dokeos dokeos
dokeos_community_release 		Multiple PHP remote file inclusion vulnerabilities in claro_init_global.inc.php in Dokeos 1.6.3 and earlier, and Dokeos community release 2.0.3, allow remote attackers to execute arbitrary PHP code v… CWE-94
Code Injection 		CVE-2006-2286 2017-07-20 10:31 2006-05-10 Show GitHub Exploit DB Packet Storm
347797 - www.goel.ch 2005-comments-script Multiple cross-site scripting (XSS) vulnerabilities in kommentar.php in 2005-Comments-Script allow remote attackers to inject arbitrary web script or HTML via the (1) id, (2) email, and (3) url param… NVD-CWE-Other
CVE-2006-2290 2017-07-20 10:31 2006-05-10 Show GitHub Exploit DB Packet Storm
347798 - inhouse_associates ia-calendar Cross-site scripting (XSS) vulnerability in calendar_new.asp in IA-Calendar allows remote attackers to inject arbitrary web script or HTML via the TypeName1 parameter. NOTE: the provenance of this i… NVD-CWE-Other
CVE-2006-2291 2017-07-20 10:31 2006-05-10 Show GitHub Exploit DB Packet Storm
347799 - inhouse_associates ia-calendar Multiple SQL injection vulnerabilities in IA-Calendar allow remote attackers to execute arbitrary SQL commands via the (1) type parameter in (a) calendar_new.asp and (b) default.asp, and (2) ID param… NVD-CWE-Other
CVE-2006-2292 2017-07-20 10:31 2006-05-10 Show GitHub Exploit DB Packet Storm
347800 - expinion.net multicalendars SQL injection vulnerability in all_calendars.asp in MultiCalendars 3.0 allows remote attackers to execute arbitrary SQL commands via the calsids parameter. NOTE: the provenance of this information i… NVD-CWE-Other
CVE-2006-2293 2017-07-20 10:31 2006-05-10 Show GitHub Exploit DB Packet Storm