Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 13, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
5611	6.8	警告 Network	oauth2_proxy project	oauth2_proxy	oauth2_proxy projectのoauth2_proxyにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-40574	2026-04-30 12:28	2026-04-21	Show	GitHub Exploit DB Packet Storm

5612	9.1	緊急 Network	oauth2_proxy project	oauth2_proxy	oauth2_proxy projectのoauth2_proxyにおけるスプーフィングによる認証回避に関する脆弱性	CWE-290 スプーフィングによる認証回避	CVE-2026-40575	2026-04-30 12:28	2026-04-22	Show	GitHub Exploit DB Packet Storm

5613	4.8	警告 Network	pyLoad-ng project	pyLoad-ng	pyLoad-ng projectのpyLoad-ngにおける同一生成元ポリシー違反に関する脆弱性	CWE-346 同一生成元ポリシー違反	CVE-2026-40594	2026-04-30 12:28	2026-04-21	Show	GitHub Exploit DB Packet Storm

5614	8.1	重要 Network	The Kyverno Authors	Kyverno	The Kyverno AuthorsのKyvernoにおける重要な情報のセキュアでない格納に関する脆弱性	CWE-922 重要な情報のセキュアでない格納	CVE-2026-40868	2026-04-30 12:28	2026-04-21	Show	GitHub Exploit DB Packet Storm

5615	8.1	重要 Network	goshs	goshs	goshsにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2026-40883	2026-04-30 12:28	2026-04-21	Show	GitHub Exploit DB Packet Storm

5616	9.8	緊急 Network	goshs	goshs	goshsにおける重要な機能に対する認証の欠如に関する脆弱性	CWE-306 重要な機能に対する認証の欠如解説	CVE-2026-40884	2026-04-30 12:28	2026-04-21	Show	GitHub Exploit DB Packet Storm

5617	8.8	重要 Network	goshs	goshs	goshsにおける情報漏えいに関する脆弱性	CWE-200 CWE-noinfo	CVE-2026-40885	2026-04-30 12:28	2026-04-21	Show	GitHub Exploit DB Packet Storm

5618	7.5	重要 Network	gomarkdown	markdown	gomarkdownのMarkdownにおける境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2026-40890	2026-04-30 12:28	2026-04-21	Show	GitHub Exploit DB Packet Storm

5619	10	緊急 Network	WWBN	AVideo	WWBNのAVideoにおけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2026-40911	2026-04-30 12:28	2026-04-21	Show	GitHub Exploit DB Packet Storm

5620	5.4	警告 Network	Linux Foundation	tekton pipelines	Linux Foundationのtekton pipelinesにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-40923	2026-04-30 12:27	2026-04-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
349021	-	bea	weblogic_server	Certain configurations of BEA WebLogic Server and WebLogic Express 9.0, 8.1 through SP5, and 7.0 through SP6, when connection filters are enabled, cause the server to run more slowly, which makes it …	NVD-CWE-Other	CVE-2006-0430	2017-07-20 10:29	2006-01-26	Show	GitHub Exploit DB Packet Storm

349022	-	bea	weblogic_server	Unspecified vulnerability in BEA WebLogic Server and WebLogic Express 8.1 SP5 allows untrusted applications to obtain the server's SSL identity via unknown attack vectors.	NVD-CWE-Other	CVE-2006-0431	2017-07-20 10:29	2006-01-26	Show	GitHub Exploit DB Packet Storm

349023	-	bea	weblogic_server	Unspecified vulnerability in BEA WebLogic Server and WebLogic Express 9.0, when an Administrator uses the WebLogic Administration Console to add custom security policies, causes incorrect policies to…	NVD-CWE-Other	CVE-2006-0432	2017-07-20 10:29	2006-01-26	Show	GitHub Exploit DB Packet Storm

349024	-	freebsd	freebsd	Selective Acknowledgement (SACK) in FreeBSD 5.3 and 5.4 does not properly handle an incoming selective acknowledgement when there is insufficient memory, which might allow remote attackers to cause a…	NVD-CWE-Other	CVE-2006-0433	2017-07-20 10:29	2006-02-2	Show	GitHub Exploit DB Packet Storm

349025	-	phpbb_group	phpbb	Cross-site scripting (XSS) vulnerability in admin_smilies.php in phpBB 2.0.19 allows remote attackers to inject arbitrary web script or HTML via Javascript events such as "onmouseover" in the (1) smi…	NVD-CWE-Other	CVE-2006-0437	2017-07-20 10:29	2006-02-7	Show	GitHub Exploit DB Packet Storm

349026	-	phpbb_group	phpbb	Cross-site request forgery (CSRF) vulnerability in phpBB 2.0.19, when Link to off-site Avatar or bbcode (IMG) are enabled, allows remote attackers to perform unauthorized actions as a logged in user …	NVD-CWE-Other	CVE-2006-0438	2017-07-20 10:29	2006-02-7	Show	GitHub Exploit DB Packet Storm

349027	-	webwork	webwork	Unspecified vulnerability in WeBWorK 2.1.3 and 2.2-pre1 allows remote privileged attackers to execute arbitrary commands as the web server via unknown attack vectors.	NVD-CWE-Other	CVE-2006-0446	2017-07-20 10:29	2006-01-27	Show	GitHub Exploit DB Packet Storm

349028	-	e-post_corporation	mail_server smtp_server spa-pro_mail_atsolomon	Multiple buffer overflows in E-Post Mail Server 4.10 and SPA-PRO Mail @Solomon 4.00 allow remote attackers to execute arbitrary code via a long username to the (1) AUTH PLAIN or (2) AUTH LOGIN SMTP c…	NVD-CWE-Other	CVE-2006-0447	2017-07-20 10:29	2006-01-27	Show	GitHub Exploit DB Packet Storm

349029	-	e-post_corporation	mail_server spa-pro_mail_atsolomon	Multiple directory traversal vulnerabilities in (1) EPSTIMAP4S.EXE and (2) SPA-IMAP4S.EXE in the IMAP service in E-Post Mail 4.05 and SPA-PRO Mail 4.05 allow remote attackers to (a) list arbitrary di…	NVD-CWE-Other	CVE-2006-0448	2017-07-20 10:29	2006-01-27	Show	GitHub Exploit DB Packet Storm

349030	-	e-post_corporation	mail_server spa-pro_mail_atsolomon	Early termination vulnerability in the IMAP service in E-Post Mail 4.05 and SPA-PRO Mail 4.05 allows remote attackers to cause a denial of service (infinite loop) by sending an APPEND command and dis…	NVD-CWE-Other	CVE-2006-0449	2017-07-20 10:29	2006-01-27	Show	GitHub Exploit DB Packet Storm