Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 17, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
6271	6.5	警告 Local	シスコシステムズ	Cisco Firepower Threat Defense ソフトウェア	シスコシステムズのCisco Firepower Threat Defense ソフトウェアにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-20064	2026-04-30 12:17	2026-03-4	Show	GitHub Exploit DB Packet Storm

6272	6.5	警告 Network	シスコシステムズ	Cisco Unity Connection	シスコシステムズのCisco Unity Connectionにおける相対パストラバーサルの脆弱性	CWE-23 相対的パストラバーサル	CVE-2026-20078	2026-04-30 12:17	2026-04-15	Show	GitHub Exploit DB Packet Storm

6273	6.5	警告 Network	シスコシステムズ	Cisco Unity Connection	シスコシステムズのCisco Unity Connectionにおける相対パストラバーサルの脆弱性	CWE-23 相対的パストラバーサル	CVE-2026-20081	2026-04-30 12:17	2026-04-15	Show	GitHub Exploit DB Packet Storm

6274	7.2	重要 Network	デル	PowerProtect DP Series Appliance data domain operating system	デルのdata domain operating system等の複数製品におけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-22761	2026-04-30 12:17	2026-04-20	Show	GitHub Exploit DB Packet Storm

6275	9.1	緊急 Network	GNOME Project	libsoup	GNOME Projectのlibsoupにおける整数アンダーフローの脆弱性	CWE-191 整数アンダーフロー	CVE-2026-2369	2026-04-30 12:17	2026-03-19	Show	GitHub Exploit DB Packet Storm

6276	9.6	緊急 Network	マイクロソフト	Microsoft Partner Center	Microsoft パートナーセンターの特権昇格の脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-24303	2026-04-30 12:17	2026-04-23	Show	GitHub Exploit DB Packet Storm

6277	7.2	重要 Network	デル	PowerProtect DP Series Appliance data domain operating system	デルのdata domain operating system等の複数製品における入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2026-24504	2026-04-30 12:17	2026-04-20	Show	GitHub Exploit DB Packet Storm

6278	7.2	重要 Network	デル	PowerProtect DP Series Appliance data domain operating system	デルのdata domain operating system等の複数製品における入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2026-24505	2026-04-30 12:17	2026-04-20	Show	GitHub Exploit DB Packet Storm

6279	7.2	重要 Network	デル	PowerProtect DP Series Appliance data domain operating system	デルのdata domain operating system等の複数製品におけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-24506	2026-04-30 12:17	2026-04-20	Show	GitHub Exploit DB Packet Storm

6280	8.8	重要 Network	it-novum GmbH	openITCOCKPIT	it-novum GmbHのopenITCOCKPITにおける複数の脆弱性	CWE-20 CWE-78 CWE-78	CVE-2026-24893	2026-04-30 12:16	2026-04-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 17, 2026, 4:19 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
357451	-	amule	amule	Multiple unspecified vulnerabilities in aMuleWeb for AMule before 2.1.2 allow remote attackers to read arbitrary image, HTML, or PHP files via unknown vectors, probably related to directory traversal.	NVD-CWE-Other	CVE-2006-2692	2008-09-6 06:05	2006-05-31	Show	GitHub Exploit DB Packet Storm

357452	-	amule	amule	Successful exploitation requires that the full pathname of the file is known. This vulnerability is addressed in the following product release: aMule, aMule, 2.1.2	NVD-CWE-Other	CVE-2006-2692	2008-09-6 06:05	2006-05-31	Show	GitHub Exploit DB Packet Storm

357453	-	jetty	jetty	Directory traversal vulnerability in jetty 6.0.x (jetty6) beta16 allows remote attackers to read arbitrary files via a %2e%2e%5c (encoded ../) in the URL. NOTE: this might be the same issue as CVE-2…	CWE-22 Path Traversal	CVE-2006-2758	2008-09-6 06:05	2006-06-2	Show	GitHub Exploit DB Packet Storm

357454	-	jetty	jetty	jetty 6.0.x (jetty6) beta16 allows remote attackers to read arbitrary script source code via a capital P in the .jsp extension, and probably other mixed case manipulations.	NVD-CWE-Other	CVE-2006-2759	2008-09-6 06:05	2006-06-2	Show	GitHub Exploit DB Packet Storm

357455	-	xiti	xiti_tracking_script	Multiple cross-site scripting (XSS) vulnerabilities in XiTi Tracking Script 6 and 7 RC allow remote attackers to inject arbitrary web script or HTML via (1) the xtref parameter in xiti.js and (2) an …	NVD-CWE-Other	CVE-2006-2795	2008-09-6 06:05	2006-06-3	Show	GitHub Exploit DB Packet Storm

357456	-	jelsoft	vbulletin	SQL injection vulnerability in VBulletin 3.0.10 allows remote attackers to execute arbitrary SQL commands via the featureid parameter.	NVD-CWE-Other	CVE-2006-2805	2008-09-6 06:05	2006-06-3	Show	GitHub Exploit DB Packet Storm

357457	-	visiongate	visiongate_portal_system	Cross-site scripting (XSS) vulnerability in Print.PHP in VisionGate Portal System allows remote attackers to inject arbitrary web script or HTML via unspecified parameters. NOTE: The provenance of t…	NVD-CWE-Other	CVE-2006-2846	2008-09-6 06:05	2006-06-7	Show	GitHub Exploit DB Packet Storm

357458	-	skoom	i.list	Cross-site scripting (XSS) vulnerability in i.List 1.5 beta and earlier allows remote attackers to inject arbitrary web script or HTML via the banurl parameter to add.php. NOTE: the provenance of th…	NVD-CWE-Other	CVE-2006-2957	2008-09-6 06:05	2006-06-13	Show	GitHub Exploit DB Packet Storm

357459	-	arantius	vice_stats	SQL injection vulnerability in vs_search.php in Arantius Vice Stats before 1.0.1 allows remote attackers to execute arbitrary SQL commands via unknown vectors, a different issue than CVE-2006-2972.	NVD-CWE-Other	CVE-2006-2981	2008-09-6 06:05	2006-06-13	Show	GitHub Exploit DB Packet Storm

357460	-	vizra	vizra	Cross-site scripting (XSS) vulnerability in a_login.php in Vizra allows remote attackers to inject arbitrary web script or HTML via the message parameter.	NVD-CWE-Other	CVE-2006-2365	2008-09-6 06:04	2006-05-16	Show	GitHub Exploit DB Packet Storm