Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 15, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
5611	9.1	緊急 Network	Fatedier	FRP	FatedierのFRPにおける認証に関する脆弱性	CWE-287 CWE-noinfo	CVE-2026-40910	2026-05-1 10:38	2026-04-21	Show	GitHub Exploit DB Packet Storm

5612	8.8	重要 Network	VMware	Spring gRPC	VMwareのSpring gRPCにおける隔離または分類に関する脆弱性	CWE-653 不適切な隔離または分類	CVE-2026-40968	2026-05-1 10:38	2026-04-28	Show	GitHub Exploit DB Packet Storm

5613	5.3	警告 Network	VMware	Spring gRPC	VMwareのSpring gRPCにおけるエラーメッセージによる情報漏えいに関する脆弱性	CWE-209 エラーメッセージによる情報漏えい	CVE-2026-40969	2026-05-1 10:38	2026-04-28	Show	GitHub Exploit DB Packet Storm

5614	7.5	重要 Network	Frappe	Press	FrappeのPressにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2026-41317	2026-05-1 10:38	2026-04-24	Show	GitHub Exploit DB Packet Storm

5615	6.1	警告 Network	Frappe	Press	FrappeのPressにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-41430	2026-05-1 10:38	2026-04-24	Show	GitHub Exploit DB Packet Storm

5616	8.8	重要 Network	D-Link Systems, Inc.	DHP-1320 Firmware	D-Link CorporationのDHP-1320 Firmwareにおける複数の脆弱性	CWE-119 CWE-121	CVE-2026-4529	2026-05-1 10:38	2026-03-21	Show	GitHub Exploit DB Packet Storm

5617	7	重要 Local	flos-freeware (Florian Balmer)	Notepad2	flos-freeware (Florian Balmer)のNotepad2における複数の脆弱性	CWE-426 CWE-427	CVE-2026-4545	2026-05-1 10:38	2026-03-22	Show	GitHub Exploit DB Packet Storm

5618	7	重要 Local	flos-freeware (Florian Balmer)	Notepad2	flos-freeware (Florian Balmer)のNotepad2における複数の脆弱性	CWE-426 CWE-427	CVE-2026-4546	2026-05-1 10:38	2026-03-22	Show	GitHub Exploit DB Packet Storm

5619	9.8	緊急 Network	Shenzhen Tenda Technology Co.,Ltd.	4G03 Pro Firmware	Shenzhen Tenda Technology Co.,Ltd.の4G03 Pro Firmwareにおける複数の脆弱性	CWE-266 CWE-284	CVE-2026-5526	2026-05-1 10:38	2026-04-4	Show	GitHub Exploit DB Packet Storm

5620	5.3	警告 Network	Shenzhen Tenda Technology Co.,Ltd.	4G03 Pro Firmware	Shenzhen Tenda Technology Co.,Ltd.の4G03 Pro Firmwareにおける複数の脆弱性	CWE-320 CWE-321	CVE-2026-5527	2026-05-1 10:38	2026-04-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 15, 2026, 4:10 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
349111	-	aol	aol_client_software	Buffer overflow in YGPPicFinder.DLL in AOL You've Got Pictures (YGP) Picture Finder Tool ActiveX Control, as used in AOL 8.0, 8.0 Plus, and 9.0 Classic, allows remote attackers to execute arbitrary c…	NVD-CWE-Other	CVE-2006-0316	2017-07-20 10:29	2006-01-19	Show	GitHub Exploit DB Packet Storm

349112	-	redkernel	referrer_tracker	Cross-site scripting (XSS) vulnerability in rkrt_stats.php in RedKernel Referrer Tracker 1.1.0-3 allows remote attackers to inject arbitrary web script or HTML via a query string value as a GET, whic…	NVD-CWE-Other	CVE-2006-0317	2017-07-20 10:29	2006-01-19	Show	GitHub Exploit DB Packet Storm

349113	-	farmers_wife	farmers_wife	Directory traversal vulnerability in the FTP server (port 22003/tcp) in Farmers WIFE 4.4 SP1 allows remote attackers to create arbitrary files via ".." (dot dot) sequences in a (1) PUT, (2) SIZE, and…	NVD-CWE-Other	CVE-2006-0319	2017-07-20 10:29	2006-01-19	Show	GitHub Exploit DB Packet Storm

349114	-	mediawiki	mediawiki	Unspecified vulnerability the edit comment formatting functionality in MediaWiki 1.5.x before 1.5.6 and 1.4.x before 1.4.14 allows attackers to cause a denial of service (infinite loop) via "certain …	NVD-CWE-Other	CVE-2006-0322	2017-07-20 10:29	2006-01-20	Show	GitHub Exploit DB Packet Storm

349115	-	hitachi	hitsenser_data_mart_server	SQL injection vulnerability in HITSENSER Data Mart Server BS, BS-S, BS-M, BS-L, and EX allows remote attackers to execute arbitrary SQL commands via unknown attack vectors.	NVD-CWE-Other	CVE-2006-0329	2017-07-20 10:29	2006-01-21	Show	GitHub Exploit DB Packet Storm

349116	-	gallery_project	gallery	Cross-site scripting (XSS) vulnerability in Gallery before 1.5.2 allows remote attackers to inject arbitrary web script or HTML via unknown attack vectors, possibly involving the user name (fullname).	NVD-CWE-Other	CVE-2006-0330	2017-07-20 10:29	2006-01-21	Show	GitHub Exploit DB Packet Storm

349117	-	ecartis	ecartis	Pantomime in Ecartis 1.0.0 snapshot 20050909 stores e-mail attachments in a publicly accessible directory, which may allow remote attackers to upload arbitrary files.	CWE-94 Code Injection	CVE-2006-0332	2017-07-20 10:29	2006-01-21	Show	GitHub Exploit DB Packet Storm

349118	-	freekrai.net	my_amazon_store_manager	Cross-site scripting (XSS) vulnerability in search.php in My Amazon Store Manager 1.0 allows remote attackers to inject arbitrary web script or HTML via the Keywords parameter. NOTE: some sources cl…	NVD-CWE-Other	CVE-2006-0334	2017-07-20 10:29	2006-01-21	Show	GitHub Exploit DB Packet Storm

349119	-	kerio	winroute_firewall	Multiple unspecified vulnerabilities in Kerio WinRoute Firewall before 6.1.4 Patch 1 allow remote attackers to cause a denial of service via multiple unspecified vectors involving (1) long strings re…	NVD-CWE-Other	CVE-2006-0335	2017-07-20 10:29	2006-01-21	Show	GitHub Exploit DB Packet Storm

349120	-	kerio	winroute_firewall	Kerio WinRoute Firewall before 6.1.4 Patch 2 allows attackers to cause a denial of service (CPU consumption and hang) via unknown vectors involving "browsing the web".	NVD-CWE-Other	CVE-2006-0336	2017-07-20 10:29	2006-01-21	Show	GitHub Exploit DB Packet Storm