Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 13, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
5661	7.7	重要 Network	The Kyverno Authors	Kyverno	The Kyverno AuthorsのKyvernoにおける到達可能なアサーションに関する脆弱性	CWE-617 到達可能なアサーション	CVE-2026-41485	2026-04-30 12:25	2026-04-24	Show	GitHub Exploit DB Packet Storm

5662	4	警告 Local	The GnuPG Project	Libgcrypt	The GnuPG ProjectのLibgcryptにおける境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2026-41990	2026-04-30 12:25	2026-04-23	Show	GitHub Exploit DB Packet Storm

5663	7.4	重要 Network	axios project	axios	axios projectのaxiosにおけるオブジェクトプロトタイプ属性の不適切に制御された変更に関する脆弱性	CWE-1321 オブジェクトプロトタイプ属性の不適切に制御された変更 (プロトタイプの汚染)	CVE-2026-42033	2026-04-30 12:25	2026-04-24	Show	GitHub Exploit DB Packet Storm

5664	5.3	警告 Network	axios project	axios	axios projectのaxiosにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-42034	2026-04-30 12:25	2026-04-24	Show	GitHub Exploit DB Packet Storm

5665	7.4	重要 Network	axios project	axios	axios projectのaxiosにおける複数の脆弱性	CWE-113 CWE-1321	CVE-2026-42035	2026-04-30 12:25	2026-04-24	Show	GitHub Exploit DB Packet Storm

5666	5.3	警告 Network	axios project	axios	axios projectのaxiosにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-42036	2026-04-30 12:25	2026-04-24	Show	GitHub Exploit DB Packet Storm

5667	5.3	警告 Network	axios project	axios	axios projectのaxiosにおけるCRLF インジェクションの脆弱性	CWE-93 CRLF インジェクション	CVE-2026-42037	2026-04-30 12:25	2026-04-24	Show	GitHub Exploit DB Packet Storm

5668	7.5	重要 Network	axios project	axios	axios projectのaxiosにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-42038	2026-04-30 12:25	2026-04-24	Show	GitHub Exploit DB Packet Storm

5669	7.5	重要 Network	axios project	axios	axios projectのaxiosにおける再帰制御に関する脆弱性	CWE-674 不適切な再帰制御	CVE-2026-42039	2026-04-30 12:25	2026-04-24	Show	GitHub Exploit DB Packet Storm

5670	3.7	低 Network	axios project	axios	axios projectのaxiosにおける複数の脆弱性	CWE-116 CWE-626	CVE-2026-42040	2026-04-30 12:25	2026-04-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
348881	-	ibm	lotus_domino lotus_domino_enterprise_server lotus_notes	Multiple unspecified vulnerabilities in IBM Lotus Notes and Domino Server before 6.5.5 allow attackers to cause a denial of service (application crash) via multiple vectors, involving (1) a malformed…	NVD-CWE-Other	CVE-2006-0120	2017-07-20 10:29	2006-01-9	Show	GitHub Exploit DB Packet Storm

348882	-	rockliffe	mailsite	Buffer overflow in the IMAP service of Rockliffe MailSite before 6.1.22.1 allows remote attackers to have an unknown impact via unknown attack vectors.	NVD-CWE-Other	CVE-2006-0128	2017-07-20 10:29	2006-01-9	Show	GitHub Exploit DB Packet Storm

348883	-	pd9_software	megabbs	The send-private-message functionality (send-private-message.asp) in PD9 Software MegaBBS 2.1 allows remote attackers to read private messages of other users via a modified replyid parameter.	NVD-CWE-Other	CVE-2006-0139	2017-07-20 10:29	2006-01-10	Show	GitHub Exploit DB Packet Storm

348884	-	eudora	internet_mail_server	Qualcomm Eudora Internet Mail Server (EIMS) before 3.2.8 allows remote attackers to cause a denial of service (crash) via (1) malformed NTLM authentication requests, or a malformed (2) Incoming Mail …	NVD-CWE-Other	CVE-2006-0141	2017-07-20 10:29	2006-01-10	Show	GitHub Exploit DB Packet Storm

348885	-	andromeda_software	andromeda	Cross-site scripting (XSS) vulnerability in andromeda.php in Andromeda 1.9.3.4 and earlier allows remote attackers to inject arbitrary web script or HTML via the s parameter. NOTE: the provenance of…	NVD-CWE-Other	CVE-2006-0142	2017-07-20 10:29	2006-01-10	Show	GitHub Exploit DB Packet Storm

348886	-	netsarang	xlpd	NetSarang Xlpd 2.1 allows remote attackers to cause a denial of service (crash) via a large number of connections from the same IP address.	NVD-CWE-Other	CVE-2006-0148	2017-07-20 10:29	2006-01-10	Show	GitHub Exploit DB Packet Storm

348887	-	phpchamber	phpchamber	Cross-site scripting (XSS) in search_result.php in phpChamber 1.2 and earlier allows remote attackers to inject arbitrary web script or HTML via the needle parameter. NOTE: the provenance of this in…	NVD-CWE-Other	CVE-2006-0152	2017-07-20 10:29	2006-01-10	Show	GitHub Exploit DB Packet Storm

348888	-	javier_suarez_sanz	foro_domus	SQL injection vulnerability in escribir.php in Foro Domus 2.10 allows remote attackers to execute arbitrary SQL commands via the email parameter. NOTE: the provenance of this information is unknown,…	CWE-89 SQL Injection	CVE-2006-0159	2017-07-20 10:29	2006-01-10	Show	GitHub Exploit DB Packet Storm

348889	-	venom_board	venom_board	SQL injection vulnerability in add_post.php3 in Venom Board 1.22 allows remote attackers to execute arbitrary SQL commands via the (1) parent, (2) root, and (3) topic_id parameters to post.php3.	CWE-89 SQL Injection	CVE-2006-0160	2017-07-20 10:29	2006-01-10	Show	GitHub Exploit DB Packet Storm

348890	-	clam_anti-virus	clamav	Heap-based buffer overflow in libclamav/upx.c in Clam Antivirus (ClamAV) before 0.88 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted UPX f…	NVD-CWE-Other	CVE-2006-0162	2017-07-20 10:29	2006-01-11	Show	GitHub Exploit DB Packet Storm