Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 16, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
5911 8.8 重要
Adjacent 		フィリップス Hue Bridge V2 ファームウェア フィリップスのHue Bridge V2 ファームウェアにおけるデジタル署名の検証に関する脆弱性 CWE-347
デジタル署名の不適切な検証 		CVE-2026-3562 2026-04-30 12:29 2026-03-16 Show GitHub Exploit DB Packet Storm
5912 6.5 警告
Network 		OpenClaw OpenClaw OpenClawにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-3689 2026-04-30 12:29 2026-04-11 Show GitHub Exploit DB Packet Storm
5913 7.4 重要
Network 		OpenClaw OpenClaw OpenClawにおける認証時の IP アドレスへの依存に関する脆弱性 CWE-291
認証時の IP アドレスへの依存 		CVE-2026-3690 2026-04-30 12:29 2026-04-11 Show GitHub Exploit DB Packet Storm
5914 5.3 警告
Network 		OpenClaw OpenClaw OpenClawにおける情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2026-3691 2026-04-30 12:29 2026-04-11 Show GitHub Exploit DB Packet Storm
5915 7.3 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. w30e ファームウェア Shenzhen Tenda Technology Co.,Ltd.のw30e ファームウェアにおけるコマンドインジェクションの脆弱性 CWE-77
コマンドインジェクション 		CVE-2026-38834 2026-04-30 12:29 2026-04-21 Show GitHub Exploit DB Packet Storm
5916 9.8 緊急
Network 		Shenzhen Tenda Technology Co.,Ltd. w30e ファームウェア Shenzhen Tenda Technology Co.,Ltd.のw30e ファームウェアにおけるコマンドインジェクションの脆弱性 CWE-77
コマンドインジェクション 		CVE-2026-38835 2026-04-30 12:29 2026-04-21 Show GitHub Exploit DB Packet Storm
5917 5.4 警告
Network 		pyLoad pyLoad pyLoadにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-40071 2026-04-30 12:29 2026-04-9 Show GitHub Exploit DB Packet Storm
5918 6.5 警告
Network 		getkirby kirby getkirbyのkirbyにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-40099 2026-04-30 12:29 2026-04-24 Show GitHub Exploit DB Packet Storm
5919 5.4 警告
Network 		Auth0 Inc. nextjs-auth0 Auth0 Inc.のnextjs-auth0における複数の脆弱性 CWE-362
CWE-863
CVE-2026-40155 2026-04-30 12:29 2026-04-17 Show GitHub Exploit DB Packet Storm
5920 5.5 警告
Local 		systemd project systemd systemd projectのsystemdにおける不適切な動作順序に関する脆弱性 CWE-696
不適切な動作順序 		CVE-2026-40223 2026-04-30 12:29 2026-04-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
348761 - lighttpd lighttpd LightTPD 1.4.8 and earlier, when the web root is on a case-insensitive filesystem, allows remote attackers to bypass URL checks and obtain sensitive information via file extensions with unexpected ca… NVD-CWE-Other
CVE-2006-0760 2017-07-20 10:30 2006-02-18 Show GitHub Exploit DB Packet Storm
348762 - cpanel cpanel Cross-site scripting (XSS) vulnerability in dowebmailforward.cgi in cPanel allows remote attackers to inject arbitrary web script or HTML via a URL encoded value in the fwd parameter. NVD-CWE-Other
CVE-2006-0763 2017-07-20 10:30 2006-02-18 Show GitHub Exploit DB Packet Storm
348763 - cisco anomaly_guard_module
guard
traffic_anomaly_detector_module 		The Authentication, Authorization, and Accounting (AAA) capability in versions 5.0(1) and 5.0(3) of the software used by multiple Cisco Anomaly Detection and Mitigation products, when running with an… NVD-CWE-Other
CVE-2006-0764 2017-07-20 10:30 2006-02-18 Show GitHub Exploit DB Packet Storm
348764 - nathan_neulinger cgiwrap CGIWrap before 3.10 allows remote attackers to obtain sensitive information via unknown attack vectors that cause errors in scripts that reveal system information. NVD-CWE-Other
CVE-2006-0767 2017-07-20 10:30 2006-02-19 Show GitHub Exploit DB Packet Storm
348765 - mybulletinboard mybulletinboard Cross-site scripting (XSS) vulnerability in calendar.php in MyBulletinBoard (MyBB) 1.0.4 allows remote attackers to inject arbitrary web script or HTML via a URL that is not sanitized before being re… NVD-CWE-Other
CVE-2006-0770 2017-07-20 10:30 2006-02-19 Show GitHub Exploit DB Packet Storm
348766 - hitachi business_logic SQL injection vulnerability in Hitachi Business Logic - Container 02-03 through 03-00-/B on Windows, and 03-00 through 03-00-/B on Linux, allows remote attackers to execute arbitrary SQL commands via… CWE-89
SQL Injection 		CVE-2006-0772 2017-07-20 10:30 2006-02-19 Show GitHub Exploit DB Packet Storm
348767 - hitachi business_logic Cross-site scripting (XSS) vulnerability in Hitachi Business Logic - Container 02-03 through 03-00-/B on Windows, and 03-00 through 03-00-/B on Linux, allows remote attackers to inject arbitrary web … NVD-CWE-Other
CVE-2006-0773 2017-07-20 10:30 2006-02-19 Show GitHub Exploit DB Packet Storm
348768 - ridder_roeland birthsys Multiple SQL injection vulnerabilities in show.php in BirthSys 3.1 allow remote attackers to execute arbitrary SQL commands via the $month variable. NOTE: a vector regarding the $date parameter and … NVD-CWE-Other
CVE-2006-0775 2017-07-20 10:30 2006-02-19 Show GitHub Exploit DB Packet Storm
348769 - plaino wimpy_mp3 wimpy_trackplays.php in Plaino Wimpy MP3 Player, possibly 5.2 and earlier, allows remote attackers to insert arbitrary strings into trackme.txt via the (1) trackFile, (2) trackArtist, and (3) trackTi… NVD-CWE-Other
CVE-2006-0787 2017-07-20 10:30 2006-02-19 Show GitHub Exploit DB Packet Storm
348770 - kyocera fs-3830n Kyocera 3830 (aka FS-3830N) printers have a back door that allows remote attackers to read and alter configuration settings via strings that begin with "!R!SIOP0", as demonstrated using (1) a connect… NVD-CWE-Other
CVE-2006-0788 2017-07-20 10:30 2006-02-19 Show GitHub Exploit DB Packet Storm