Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 13, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
5551	8.1	重要 Network	xibosignage	xibo	xibosignageのxiboにおける複数の脆弱性	CWE-184 CWE-89	CVE-2026-31952	2026-04-30 12:31	2026-04-24	Show	GitHub Exploit DB Packet Storm

5552	5.4	警告 Network	xibosignage	xibo	xibosignageのxiboにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-31953	2026-04-30 12:31	2026-04-24	Show	GitHub Exploit DB Packet Storm

5553	4.9	警告 Network	xibosignage	xibo	xibosignageのxiboにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-31955	2026-04-30 12:31	2026-04-24	Show	GitHub Exploit DB Packet Storm

5554	4.3	警告 Network	xibosignage	xibo	xibosignageのxiboにおけるユーザ制御の鍵による認証回避に関する脆弱性	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-31956	2026-04-30 12:31	2026-04-24	Show	GitHub Exploit DB Packet Storm

5555	8.8	重要 Network	マイクロソフト	Azure Logic Apps	Azure Logic Apps の特権昇格の脆弱性	CWE-522 認証情報の不十分な保護	CVE-2026-32171	2026-04-30 12:31	2026-04-14	Show	GitHub Exploit DB Packet Storm

5556	7.5	重要 Network	getkirby	kirby	getkirbyのkirbyにおけるブラインド XPath インジェクションの脆弱性	CWE-91 ブラインド XPath インジェクション	CVE-2026-32870	2026-04-30 12:31	2026-04-24	Show	GitHub Exploit DB Packet Storm

5557	9.8	緊急 Network	Roxy-WI	Roxy-WI	Roxy-WIにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-33076	2026-04-30 12:31	2026-04-24	Show	GitHub Exploit DB Packet Storm

5558	7.5	重要 Network	Roxy-WI	Roxy-WI	Roxy-WIにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-33077	2026-04-30 12:30	2026-04-24	Show	GitHub Exploit DB Packet Storm

5559	9.8	緊急 Network	Roxy-WI	Roxy-WI	Roxy-WIにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2026-33078	2026-04-30 12:30	2026-04-24	Show	GitHub Exploit DB Packet Storm

5560	8.8	重要 Network	Roxy-WI	Roxy-WI	Roxy-WIにおけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-33208	2026-04-30 12:30	2026-04-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
348311	-	invision_power_services	invision_power_board	Invision Power Board (IPB) before 2.1.6 allows remote attackers to execute arbitrary PHP script via attack vectors involving (1) the post_icon variable in classes/post/class_post.php and (2) the df v…	NVD-CWE-Other	CVE-2006-2498	2017-07-20 10:31	2006-05-20	Show	GitHub Exploit DB Packet Storm

348312	-	sun	java_system_application_server java_system_web_server one_application_server one_web_server	Cross-site scripting (XSS) vulnerability in Sun ONE Web Server 6.0 SP9 and earlier, Java System Web Server 6.1 SP4 and earlier, Sun ONE Application Server 7 Platform and Standard Edition Update 6 and…	NVD-CWE-Other	CVE-2006-2501	2017-07-20 10:31	2006-05-20	Show	GitHub Exploit DB Packet Storm

348313	-	sun	java_system_application_server java_system_web_server one_application_server one_web_server	This vulnerability is addressed in the following product releases: Sun, ONE Web Server, 6.0 SP10 or later Sun, Java System Web Server, 6.1 SP5 or later Sun, ONE Application Server, 7.0 Platform Up…	NVD-CWE-Other	CVE-2006-2501	2017-07-20 10:31	2006-05-20	Show	GitHub Exploit DB Packet Storm

348314	-	cyrus	imapd	Stack-based buffer overflow in pop3d in Cyrus IMAPD (cyrus-imapd) 2.3.2, when the popsubfolders option is enabled, allows remote attackers to execute arbitrary code via a long USER command.	NVD-CWE-Other	CVE-2006-2502	2017-07-20 10:31	2006-05-23	Show	GitHub Exploit DB Packet Storm

348315	-	hitachi	eur_print_service eur_print_service_for_ilf eur_professional eur_viewer	SQL injection vulnerability in Hitachi EUR Professional Edition, EUR Viewer, EUR Print Service, and EUR Print Service for ILF allows remote authenticated users to execute arbitrary SQL commands via u…	NVD-CWE-Other	CVE-2006-2512	2017-07-20 10:31	2006-05-23	Show	GitHub Exploit DB Packet Storm

348316	-	hitachi	eur_print_service eur_print_service_for_ilf eur_professional eur_viewer	This vulnerability is addressed in the following product releases: Hitachi, EUR Viewer, 05-06-/A Hitachi, EUR Professional, 05-06-/A Hitachi, EUR Print Service, 05-06-/A	NVD-CWE-Other	CVE-2006-2512	2017-07-20 10:31	2006-05-23	Show	GitHub Exploit DB Packet Storm

348317	-	sun	java_system_directory_server	Unspecified vulnerability in the installation process in Sun Java System Directory Server 5.2 causes wrong user data to be written to a file created by the installation, which allows remote attackers…	NVD-CWE-Other	CVE-2006-2513	2017-07-20 10:31	2006-05-23	Show	GitHub Exploit DB Packet Storm

348318	-	coppermine	coppermine_photo_gallery	Coppermine galleries before 1.4.6, when running on Apache with mod_mime installed, allows remote attackers to upload arbitrary files via a filename with multiple file extensions.	NVD-CWE-Other	CVE-2006-2514	2017-07-20 10:31	2006-05-23	Show	GitHub Exploit DB Packet Storm

348319	-	coppermine	coppermine_photo_gallery	Product is vulnerable when running on Apache with mod_mime installed. This vulnerability is addressed in the following product release: Coppermine, Photo Gallery, 1.4.6	NVD-CWE-Other	CVE-2006-2514	2017-07-20 10:31	2006-05-23	Show	GitHub Exploit DB Packet Storm

348320	-	fujitsu	myweb_portal_office	SQL injection vulnerability in MyWeb Portal Office, Standard Edition, Public Edition, Medical Edition, Citizen Edition, School Edition, and Light Edition allows remote attackers to execute arbitrary …	NVD-CWE-Other	CVE-2006-2517	2017-07-20 10:31	2006-05-23	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed