Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 18, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
5731	8.1	重要 Adjacent	Amazon.com, Inc.	freertos-plus-tcp	Amazon.com, Inc.のfreertos-plus-tcpにおける境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2026-7426	2026-05-7 11:25	2026-04-29	Show	GitHub Exploit DB Packet Storm

5732	5.4	警告 Network	レッドハット	build of keycloak	レッドハットのbuild of keycloakにおけるリクエストの直接送信に関する脆弱性	CWE-425 CWE-noinfo	CVE-2026-7500	2026-05-7 11:25	2026-04-30	Show	GitHub Exploit DB Packet Storm

5733	8.8	重要 Network	HKUDS	OpenHarness	HKUDSのOpenHarnessにおけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-7551	2026-05-7 11:25	2026-04-30	Show	GitHub Exploit DB Packet Storm

5734	9.8	緊急 Network	Synway	SMG Gateway Management Software	SynwayのSMG Gateway Management SoftwareにおけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2025-71284	2026-05-7 10:53	2026-04-30	Show	GitHub Exploit DB Packet Storm

5735	7.8	重要 Local	KDE project	KCoreAddons	KDE projectのKCoreAddonsにおけるエスケープ、メタ、またはコントロールシーケンスの不適切な無効化に関する脆弱性	CWE-150 エスケープ、メタ、またはコントロールシーケンスの不適切な無効化	CVE-2026-41526	2026-05-7 10:53	2026-04-28	Show	GitHub Exploit DB Packet Storm

5736	8.8	重要 Network	SailPoint Technologies Holdings, Inc.	IdentityIQ	SailPoint Technologies Holdings, Inc.のIdentityIQにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-5712	2026-05-7 10:53	2026-04-29	Show	GitHub Exploit DB Packet Storm

5737	5.5	警告 Local	Canonical	pdfunite	Canonicalのpdfuniteにおける古典的バッファオーバーフローの脆弱性	CWE-120 古典的バッファオーバーフロー	CVE-2018-25306	2026-05-7 10:53	2026-04-29	Show	GitHub Exploit DB Packet Storm

5738	9.8	緊急 Network	Kvcache-ai	Ktransformers	Kvcache-aiのKtransformersにおける信頼できないデータのデシリアライゼーションに関する脆弱性	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2026-26210	2026-05-7 10:53	2026-04-23	Show	GitHub Exploit DB Packet Storm

5739	7.1	重要 Local	デル	Dell/Alienware Purchased Apps	デルのDell/Alienware Purchased Appsにおけるリンク解釈に関する脆弱性	CWE-59 リンク解釈の問題	CVE-2026-27105	2026-05-7 10:53	2026-04-29	Show	GitHub Exploit DB Packet Storm

5740	7.8	重要 Local	entechtaiwan	TViPort	entechtaiwanのTViPortにおける複数の脆弱性	CWE-20 CWE-269	CVE-2026-30769	2026-05-7 10:53	2026-04-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 18, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
349201	-	plaino	wimpy_mp3	wimpy_trackplays.php in Plaino Wimpy MP3 Player, possibly 5.2 and earlier, allows remote attackers to insert arbitrary strings into trackme.txt via the (1) trackFile, (2) trackArtist, and (3) trackTi…	NVD-CWE-Other	CVE-2006-0787	2017-07-20 10:30	2006-02-19	Show	GitHub Exploit DB Packet Storm

349202	-	kyocera	fs-3830n	Kyocera 3830 (aka FS-3830N) printers have a back door that allows remote attackers to read and alter configuration settings via strings that begin with "!R!SIOP0", as demonstrated using (1) a connect…	NVD-CWE-Other	CVE-2006-0788	2017-07-20 10:30	2006-02-19	Show	GitHub Exploit DB Packet Storm

349203	-	kyocera	fs-3830n	Certain unspecified Kyocera printers have a default "admin" account with a blank password, which allows remote attackers to access an administrative menu via a telnet session.	NVD-CWE-Other	CVE-2006-0789	2017-07-20 10:30	2006-02-19	Show	GitHub Exploit DB Packet Storm

349204	-	rockliffe	mailsite	Rockliffe MailSite 7.0 and earlier allows remote attackers to cause a denial of service by sending crafted LDAP packets to port 389/TCP, as demonstrated by the ProtoVer LDAP testsuite.	NVD-CWE-Other	CVE-2006-0790	2017-07-20 10:30	2006-02-20	Show	GitHub Exploit DB Packet Storm

349205	-	v-webmail	v-webmail	Cross-site scripting (XSS) vulnerability in preferences.personal.php in V-webmail 1.6.2 allows remote attackers to inject arbitrary web script or HTML via the newid parameter. NOTE: the provenance o…	NVD-CWE-Other	CVE-2006-0792	2017-07-20 10:30	2006-02-20	Show	GitHub Exploit DB Packet Storm

349206	-	v-webmail	v-webmail	frameset.php in V-webmail 1.6.2 allows remote attackers to conduct phishing attacks by referencing arbitrary websites in the rframe parameter. NOTE: the provenance of this information is unknown; th…	NVD-CWE-Other	CVE-2006-0793	2017-07-20 10:30	2006-02-20	Show	GitHub Exploit DB Packet Storm

349207	-	v-webmail	v-webmail	help.php in V-webmail 1.6.2 allows remote attackers to obtain the installation path via unspecified invalid parameters. NOTE: the provenance of this information is unknown; the details are obtained …	NVD-CWE-Other	CVE-2006-0794	2017-07-20 10:30	2006-02-20	Show	GitHub Exploit DB Packet Storm

349208	-	clever_copy	clever_copy	Cross-site scripting (XSS) vulnerability in default.php in Clever Copy 3.0 allows remote attackers to inject arbitrary web script or HTML via the Subject field when sending private messages (privatem…	NVD-CWE-Other	CVE-2006-0796	2017-07-20 10:30	2006-02-20	Show	GitHub Exploit DB Packet Storm

349209	-	nokia	n70	Nokia N70 cell phone allows remote attackers to cause a denial of service (reboot or shutdown) through a wireless Bluetooth connection via a malformed Logical Link Control and Adaptation Protocol (L2…	NVD-CWE-Other	CVE-2006-0797	2017-07-20 10:30	2006-02-20	Show	GitHub Exploit DB Packet Storm

349210	-	macallan	mail_solution	Multiple directory traversal vulnerabilities in the IMAP service in Macallan Mail Solution before 4.8.05.004 allow remote authenticated users to read e-mails of other users or create, modify, or dele…	NVD-CWE-Other	CVE-2006-0798	2017-07-20 10:30	2006-02-20	Show	GitHub Exploit DB Packet Storm