Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 21, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
6211	9.1	緊急 Network	The Kyverno Authors	Kyverno	The Kyverno AuthorsのKyvernoにおける複数の脆弱性	CWE-200 CWE-918	CVE-2026-41323	2026-04-30 12:26	2026-04-24	Show	GitHub Exploit DB Packet Storm

6212	7.5	重要 Network	Patrick Juchli (patrickjuchli)	Basic FTP	Patrick Juchli (patrickjuchli)のBasic FTPにおける複数の脆弱性	CWE-400 CWE-770	CVE-2026-41324	2026-04-30 12:26	2026-04-24	Show	GitHub Exploit DB Packet Storm

6213	8.8	重要 Network	getkirby	kirby	getkirbyのkirbyにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-41325	2026-04-30 12:26	2026-04-24	Show	GitHub Exploit DB Packet Storm

6214	9.9	緊急 Network	OpenClaw	OpenClaw	OpenClawにおける特権 API の不適切な使用に関する脆弱性	CWE-648 特権 API の不適切な使用	CVE-2026-41329	2026-04-30 12:26	2026-04-21	Show	GitHub Exploit DB Packet Storm

6215	4.4	警告 Local	OpenClaw	OpenClaw	OpenClawにおける変数の安全ではないデフォルト値への初期化に関する脆弱性	CWE-453 変数の安全ではないデフォルト値への初期化	CVE-2026-41330	2026-04-30 12:26	2026-04-21	Show	GitHub Exploit DB Packet Storm

6216	9.8	緊急 Network	socialengine	socialengine	socialengineにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2026-41460	2026-04-30 12:26	2026-04-23	Show	GitHub Exploit DB Packet Storm

6217	8.5	重要 Network	socialengine	socialengine	socialengineにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-41461	2026-04-30 12:26	2026-04-23	Show	GitHub Exploit DB Packet Storm

6218	7.7	重要 Network	The Kyverno Authors	Kyverno	The Kyverno AuthorsのKyvernoにおける到達可能なアサーションに関する脆弱性	CWE-617 到達可能なアサーション	CVE-2026-41485	2026-04-30 12:25	2026-04-24	Show	GitHub Exploit DB Packet Storm

6219	4	警告 Local	The GnuPG Project	Libgcrypt	The GnuPG ProjectのLibgcryptにおける境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2026-41990	2026-04-30 12:25	2026-04-23	Show	GitHub Exploit DB Packet Storm

6220	7.4	重要 Network	axios project	axios	axios projectのaxiosにおけるオブジェクトプロトタイプ属性の不適切に制御された変更に関する脆弱性	CWE-1321 オブジェクトプロトタイプ属性の不適切に制御された変更 (プロトタイプの汚染)	CVE-2026-42033	2026-04-30 12:25	2026-04-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 22, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
349721	-	phpbb_group	phpbb	Cross-site scripting (XSS) vulnerability in admin_smilies.php in phpBB 2.0.19 allows remote attackers to inject arbitrary web script or HTML via Javascript events such as "onmouseover" in the (1) smi…	NVD-CWE-Other	CVE-2006-0437	2017-07-20 10:29	2006-02-7	Show	GitHub Exploit DB Packet Storm

349722	-	phpbb_group	phpbb	Cross-site request forgery (CSRF) vulnerability in phpBB 2.0.19, when Link to off-site Avatar or bbcode (IMG) are enabled, allows remote attackers to perform unauthorized actions as a logged in user …	NVD-CWE-Other	CVE-2006-0438	2017-07-20 10:29	2006-02-7	Show	GitHub Exploit DB Packet Storm

349723	-	webwork	webwork	Unspecified vulnerability in WeBWorK 2.1.3 and 2.2-pre1 allows remote privileged attackers to execute arbitrary commands as the web server via unknown attack vectors.	NVD-CWE-Other	CVE-2006-0446	2017-07-20 10:29	2006-01-27	Show	GitHub Exploit DB Packet Storm

349724	-	e-post_corporation	mail_server smtp_server spa-pro_mail_atsolomon	Multiple buffer overflows in E-Post Mail Server 4.10 and SPA-PRO Mail @Solomon 4.00 allow remote attackers to execute arbitrary code via a long username to the (1) AUTH PLAIN or (2) AUTH LOGIN SMTP c…	NVD-CWE-Other	CVE-2006-0447	2017-07-20 10:29	2006-01-27	Show	GitHub Exploit DB Packet Storm

349725	-	e-post_corporation	mail_server spa-pro_mail_atsolomon	Multiple directory traversal vulnerabilities in (1) EPSTIMAP4S.EXE and (2) SPA-IMAP4S.EXE in the IMAP service in E-Post Mail 4.05 and SPA-PRO Mail 4.05 allow remote attackers to (a) list arbitrary di…	NVD-CWE-Other	CVE-2006-0448	2017-07-20 10:29	2006-01-27	Show	GitHub Exploit DB Packet Storm

349726	-	e-post_corporation	mail_server spa-pro_mail_atsolomon	Early termination vulnerability in the IMAP service in E-Post Mail 4.05 and SPA-PRO Mail 4.05 allows remote attackers to cause a denial of service (infinite loop) by sending an APPEND command and dis…	NVD-CWE-Other	CVE-2006-0449	2017-07-20 10:29	2006-01-27	Show	GitHub Exploit DB Packet Storm

349727	-	redhat	fedora_core	Multiple memory leaks in the LDAP component in Fedora Directory Server 1.0 allow remote attackers to cause a denial of service (memory consumption) via invalid BER packets that trigger an error, whic…	NVD-CWE-Other	CVE-2006-0451	2017-07-20 10:29	2006-02-15	Show	GitHub Exploit DB Packet Storm

349728	-	redhat	fedora_core	dn2ancestor in the LDAP component in Fedora Directory Server 1.0 allows remote attackers to cause a denial of service (CPU and memory consumption) via a ModDN operation with a DN that contains a larg…	NVD-CWE-Other	CVE-2006-0452	2017-07-20 10:29	2006-02-15	Show	GitHub Exploit DB Packet Storm

349729	-	redhat	fedora_core	The LDAP component in Fedora Directory Server 1.0 allow remote attackers to cause a denial of service (crash) via a certain "bad BER sequence" that results in a free of uninitialized memory, as demon…	NVD-CWE-Other	CVE-2006-0453	2017-07-20 10:29	2006-02-15	Show	GitHub Exploit DB Packet Storm

349730	-	bomberclone	bomberclone	Multiple buffer overflows in BomberClone before 0.11.6.2 allow remote attackers to execute arbitrary code via long error messages.	NVD-CWE-Other	CVE-2006-0460	2017-07-20 10:29	2006-02-17	Show	GitHub Exploit DB Packet Storm