Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 12, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
611	6.1	警告 Network	Apache Software Foundation	Apache HTTP Server	Apache Software FoundationのApache HTTP Serverにおけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-29170	2026-06-10 14:28	2026-06-8	Show	GitHub Exploit DB Packet Storm

612	7.5	重要 Network	Apache Software Foundation	Apache HTTP Server	Apache Software FoundationのApache HTTP Serverにおけるヒープベースのバッファオーバーフローの脆弱性 New	CWE-122 ヒープオーバーフロー	CVE-2026-34355	2026-06-10 14:28	2026-06-8	Show	GitHub Exploit DB Packet Storm

613	7.5	重要 Network	Apache Software Foundation	Apache HTTP Server	Apache Software FoundationのApache HTTP Serverにおけるヒープベースのバッファオーバーフローの脆弱性 New	CWE-122 ヒープオーバーフロー	CVE-2026-34356	2026-06-10 14:28	2026-06-8	Show	GitHub Exploit DB Packet Storm

614	5.9	警告 Network	VMware	Spring Framework	VMwareのSpring Frameworkにおけるリソースの枯渇に関する脆弱性 New	CWE-400 リソースの枯渇	CVE-2026-41840	2026-06-10 14:28	2026-06-9	Show	GitHub Exploit DB Packet Storm

615	5.9	警告 Network	VMware	Spring Framework	VMwareのSpring Frameworkにおける重要な情報を含むキャッシュの使用に関する脆弱性 New	CWE-524 重要な情報を含むキャッシュの使用	CVE-2026-41841	2026-06-10 14:28	2026-06-9	Show	GitHub Exploit DB Packet Storm

616	7.5	重要 Network	VMware	Spring Framework	VMwareのSpring Frameworkにおけるリソースの枯渇に関する脆弱性 New	CWE-400 リソースの枯渇	CVE-2026-41842	2026-06-10 14:28	2026-06-9	Show	GitHub Exploit DB Packet Storm

617	5.9	警告 Network	VMware	Spring Framework	VMwareのSpring Frameworkにおけるパストラバーサルの脆弱性 New	CWE-22 パス・トラバーサル	CVE-2026-41843	2026-06-10 14:28	2026-06-9	Show	GitHub Exploit DB Packet Storm

618	7.5	重要 Network	VMware	Spring Framework	VMwareのSpring Frameworkにおける整数オーバーフローの脆弱性 New	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2026-41849	2026-06-10 14:28	2026-06-9	Show	GitHub Exploit DB Packet Storm

619	7.5	重要 Network	VMware	Spring Framework	VMwareのSpring Frameworkにおけるアルゴリズムの複雑さに関する脆弱性 New	CWE-407 アルゴリズムの複雑性	CVE-2026-41850	2026-06-10 14:28	2026-06-9	Show	GitHub Exploit DB Packet Storm

620	7.5	重要 Network	VMware	Spring Framework	VMwareのSpring Frameworkにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 New	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-41851	2026-06-10 14:27	2026-06-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
344741	-	efiction	efiction	index.php in eFiction before 2.0.7 allows remote attackers to bypass authentication and gain privileges by setting the (1) adminloggedin, (2) loggedin, and (3) level parameters to "1".	NVD-CWE-Other	CVE-2006-4427	2017-10-19 10:29	2006-08-29	Show	GitHub Exploit DB Packet Storm

344742	-	web3king	web3news	PHP remote file inclusion vulnerability in security/include/_class.security.php in Web3news 0.95 and earlier, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code v…	NVD-CWE-Other	CVE-2006-4452	2017-10-19 10:29	2006-08-31	Show	GitHub Exploit DB Packet Storm

344743	-	phpecard	phpecard	PHP remote file inclusion vulnerability in functions.php in phpECard 2.1.4 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the include_path parameter.	NVD-CWE-Other	CVE-2006-4456	2017-10-19 10:29	2006-08-31	Show	GitHub Exploit DB Packet Storm

344744	-	phpgroupware	phpgroupware	Directory traversal vulnerability in calendar/inc/class.holidaycalc.inc.php in phpGroupWare 0.9.16.010 and earlier allows remote attackers to include arbitrary local files via a .. (dot dot) sequence…	NVD-CWE-Other	CVE-2006-4458	2017-10-19 10:29	2006-08-31	Show	GitHub Exploit DB Packet Storm

344745	-	phpgroupware	phpgroupware	Upgrade to phpGroupWare 0.9.16.011	NVD-CWE-Other	CVE-2006-4458	2017-10-19 10:29	2006-08-31	Show	GitHub Exploit DB Packet Storm

344746	-	exbb	exbb_italia	PHP remote file inclusion vulnerability in modules/userstop/userstop.php in ExBB Italia 0.2 and earlier, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a …	NVD-CWE-Other	CVE-2006-4488	2017-10-19 10:29	2006-09-1	Show	GitHub Exploit DB Packet Storm

344747	-	ultrize	minibill	Multiple PHP remote file inclusion vulnerabilities in MiniBill 2006-07-14 (1.2.2) allow remote attackers to execute arbitrary PHP code via (1) a URL in the config[include_dir] parameter in actions/ip…	NVD-CWE-Other	CVE-2006-4489	2017-10-19 10:29	2006-09-1	Show	GitHub Exploit DB Packet Storm

344748	-	cms_frogss	cms_frogss	SQL injection vulnerability in module/rejestracja.php in CMS Frogss 0.4 and earlier allows remote attackers to execute arbitrary SQL commands via the podpis parameter.	NVD-CWE-Other	CVE-2006-4536	2017-10-19 10:29	2006-09-6	Show	GitHub Exploit DB Packet Storm

344749	-	8pixel.net	simple_blog	Incomplete blacklist vulnerability in default.asp in 8pixel.net Simple Blog 2.3 and earlier allows remote attackers to conduct SQL injection attacks via ">" characters in the id parameter, which are …	NVD-CWE-Other	CVE-2006-4592	2017-10-19 10:29	2006-09-7	Show	GitHub Exploit DB Packet Storm

344750	-	bugada_andrea	php_advanced_transfer_manager	Multiple PHP remote file inclusion vulnerabilities in PHP Advanced Transfer Manager (phpAtm) 1.21 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the include_location pa…	NVD-CWE-Other	CVE-2006-4594	2017-10-19 10:29	2006-09-7	Show	GitHub Exploit DB Packet Storm