Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 11, 2026, 6:13 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
5351 6.5 警告
Network 		getkirby kirby getkirbyのkirbyにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-40099 2026-04-30 12:29 2026-04-24 Show GitHub Exploit DB Packet Storm
5352 5.4 警告
Network 		Auth0 Inc. nextjs-auth0 Auth0 Inc.のnextjs-auth0における複数の脆弱性 CWE-362
CWE-863
CVE-2026-40155 2026-04-30 12:29 2026-04-17 Show GitHub Exploit DB Packet Storm
5353 5.5 警告
Local 		systemd project systemd systemd projectのsystemdにおける不適切な動作順序に関する脆弱性 CWE-696
不適切な動作順序 		CVE-2026-40223 2026-04-30 12:29 2026-04-10 Show GitHub Exploit DB Packet Storm
5354 7.3 重要
Local 		systemd project systemd systemd projectのsystemdにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-40224 2026-04-30 12:29 2026-04-10 Show GitHub Exploit DB Packet Storm
5355 6.4 警告
Physics 		systemd project systemd systemd projectのsystemdにおける領域間での誤ったリソース移動に関する脆弱性 CWE-669
領域間での誤ったリソース移動 		CVE-2026-40225 2026-04-30 12:28 2026-04-10 Show GitHub Exploit DB Packet Storm
5356 6.1 警告
Network 		FreeRDP FreeRDP FreeRDPにおける境界条件の判定に関する脆弱性 CWE-193
境界条件の判定 		CVE-2026-40254 2026-04-30 12:28 2026-04-24 Show GitHub Exploit DB Packet Storm
5357 3.7
Network 		BACnet Stack BACnet Stack BACnet Stackにおける未定義、未指定、または実装定義の動作への依存に関する脆弱性 CWE-758
未定義、未指定、または実装定義の動作への依存 		CVE-2026-40279 2026-04-30 12:28 2026-04-21 Show GitHub Exploit DB Packet Storm
5358 7.6 重要
Network 		WeGIA WeGIA WeGIAにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-40283 2026-04-30 12:28 2026-04-17 Show GitHub Exploit DB Packet Storm
5359 6.5 警告
Network 		OpenFGA OpenFGA OpenFGAにおける情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2026-40293 2026-04-30 12:28 2026-04-17 Show GitHub Exploit DB Packet Storm
5360 9.9 緊急
Network 		FirebirdSQL Firebird FirebirdSQLのFirebirdにおける複数の脆弱性 CWE-22
CWE-427
CWE-73
CWE-94
CVE-2026-40342 2026-04-30 12:28 2026-04-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 11, 2026, 5:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
347691 - sybase pylon_anywhere Unspecified vulnerability in Sybase Pylon Anywhere groupware synchronization server before 7.0 allows local users to obtain sensitive information such as email and PIM data of another user via unknow… NVD-CWE-noinfo
CVE-2006-1997 2017-07-20 10:31 2006-04-25 Show GitHub Exploit DB Packet Storm
347692 - logmethods logmethods Cross-site scripting (XSS) vulnerability in /lms/a2z.jsp in logMethods 0.9 allows remote attackers to inject arbitrary web script or HTML via the kwd parameter. NVD-CWE-Other
CVE-2006-2000 2017-07-20 10:31 2006-04-25 Show GitHub Exploit DB Packet Storm
347693 - ivan_zahariev izarc Multiple directory traversal vulnerabilities in IZArc Archiver 3.5 beta 3 allow remote attackers to write arbitrary files via a ..\ (dot dot backslash) in a (1) .rar, (2) .tar, (3) .zip, (4) .jar, or… NVD-CWE-Other
CVE-2006-2006 2017-07-20 10:31 2006-04-25 Show GitHub Exploit DB Packet Storm
347694 - winny winny Heap-based buffer overflow in Winny 2.0 b7.1 and earlier allows remote attackers to execute arbitrary code via long strings to certain commands sent to the file transfer port. NVD-CWE-Other
CVE-2006-2007 2017-07-20 10:31 2006-04-25 Show GitHub Exploit DB Packet Storm
347695 - web-provence sl_site SQL injection vulnerability in page.php in SL_site 1.0 allows remote attackers to execute arbitrary SQL commands via the id_page parameter. NOTE: this issue could be used to produce resultant XSS fro… NVD-CWE-Other
CVE-2006-2013 2017-07-20 10:31 2006-04-25 Show GitHub Exploit DB Packet Storm
347696 - web-provence sl_site Directory traversal vulnerability in gallerie.php in SL_site 1.0 allows remote attackers to list images in arbitrary directories via ".." sequences in the rep parameter, which is used to construct a … NVD-CWE-Other
CVE-2006-2014 2017-07-20 10:31 2006-04-25 Show GitHub Exploit DB Packet Storm
347697 - web-provence sl_site Cross-site scripting (XSS) vulnerability in SL_site 1.0 allows remote attackers to inject arbitrary web script or HTML via the recherche parameter in recherche.php. NOTE: other XSS vectors, as repor… NVD-CWE-Other
CVE-2006-2015 2017-07-20 10:31 2006-04-25 Show GitHub Exploit DB Packet Storm
347698 - dnsmasq dnsmasq Dnsmasq 2.29 allows remote attackers to cause a denial of service (application crash) via a DHCP client broadcast reply request. NVD-CWE-Other
CVE-2006-2017 2017-07-20 10:31 2006-04-25 Show GitHub Exploit DB Packet Storm
347699 - dnsmasq dnsmasq This vulnerability is addressed in the following product release: version 2.30 NVD-CWE-Other
CVE-2006-2017 2017-07-20 10:31 2006-04-25 Show GitHub Exploit DB Packet Storm
347700 - phpmyadmin phpmyadmin Cross-site scripting (XSS) vulnerability in index.php in phpMyAdmin 2.8.0.3, 2.8.0.2, 2.8.1-dev, and 2.9.0-dev allows remote attackers to inject arbitrary web script or HTML via the lang parameter. NVD-CWE-Other
CVE-2006-2031 2017-07-20 10:31 2006-04-26 Show GitHub Exploit DB Packet Storm