Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 5, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1021	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux KernelにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-23332	2026-04-27 11:25	2026-03-25	Show	GitHub Exploit DB Packet Storm

1022	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-23334	2026-04-27 11:25	2026-03-25	Show	GitHub Exploit DB Packet Storm

1023	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける有効期限後のメモリの解放の欠如に関する脆弱性	CWE-401 有効期限後のメモリの解放の欠如	CVE-2026-23335	2026-04-27 11:25	2026-03-25	Show	GitHub Exploit DB Packet Storm

1024	7.8	重要 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-23336	2026-04-27 11:25	2026-03-25	Show	GitHub Exploit DB Packet Storm

1025	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける有効期限後のメモリの解放の欠如に関する脆弱性	CWE-401 有効期限後のメモリの解放の欠如	CVE-2026-23337	2026-04-27 11:25	2026-03-25	Show	GitHub Exploit DB Packet Storm

1026	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-23338	2026-04-27 11:25	2026-03-25	Show	GitHub Exploit DB Packet Storm

1027	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける有効期限後のメモリの解放の欠如に関する脆弱性	CWE-401 有効期限後のメモリの解放の欠如	CVE-2026-23339	2026-04-27 11:25	2026-03-25	Show	GitHub Exploit DB Packet Storm

1028	7.8	重要 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-23340	2026-04-27 11:25	2026-03-25	Show	GitHub Exploit DB Packet Storm

1029	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux KernelにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-23341	2026-04-27 11:25	2026-03-25	Show	GitHub Exploit DB Packet Storm

1030	4.7	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける競合状態に関する脆弱性	CWE-362 競合状態	CVE-2026-23342	2026-04-27 11:25	2026-03-25	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 5, 2026, 4:51 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
313591	-	sergey_korostel	php_upload_center	Sergey Korostel PHP Upload Center allows remote attackers to execute arbitrary PHP code by uploading a file whose name ends in a .php.li extension, which can be accessed from the upload directory.	NVD-CWE-Other	CVE-2006-1208	2024-02-14 10:17	2006-03-14	Show	GitHub Exploit DB Packet Storm

313592	-	bugada_andrea	php_advanced_transfer_manager	PHP Advanced Transfer Manager 1.00 through 1.30 stores sensitive information, including password hashes, under the web root with insufficient access control, which allows remote attackers to download…	NVD-CWE-Other	CVE-2006-1209	2024-02-14 10:17	2006-03-14	Show	GitHub Exploit DB Packet Storm

313593	-	nmdeluxe	nmdeluxe	Cross-site scripting (XSS) vulnerability in news.php in NMDeluxe before 1.0.1 allows remote attackers to inject arbitrary web script or HTML via the nick parameter.	NVD-CWE-Other	CVE-2006-1107	2024-02-14 10:17	2006-03-9	Show	GitHub Exploit DB Packet Storm

313594	-	nmdeluxe	nmdeluxe	SQL injection vulnerability in news.php in NMDeluxe before 1.0.1 allows remote attackers to execute arbitrary SQL commands via the id parameter.	NVD-CWE-Other	CVE-2006-1108	2024-02-14 10:17	2006-03-9	Show	GitHub Exploit DB Packet Storm

313595	-	game-panel	game-panel	Cross-site scripting (XSS) vulnerability in login.php in Game-Panel 2.6.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the message parameter, possibly requiring a UR…	NVD-CWE-Other	CVE-2006-1080	2024-02-14 10:17	2006-03-9	Show	GitHub Exploit DB Packet Storm

313596	-	simplog	simplog	Cross-site scripting (XSS) vulnerability in Daverave Simplog 1.0.2 and earlier allows remote attackers to inject arbitrary web script or HTML via a blog post.	NVD-CWE-Other	CVE-2006-1072	2024-02-14 10:17	2006-03-8	Show	GitHub Exploit DB Packet Storm

313597	-	simplog	simplog	Directory traversal vulnerability in index.php in Daverave Simplog 1.0.2 and earlier allows remote attackers to include or read arbitrary .txt files via the (1) act and (2) blogid parameters.	NVD-CWE-Other	CVE-2006-1073	2024-02-14 10:17	2006-03-8	Show	GitHub Exploit DB Packet Storm

313598	-	intensive_point	iuser_ecommerce	Multiple unspecified vulnerabilities in Intensive Point iUser Ecommerce before 2.2 have unspecified vectors and impact, as addressed by "Urgent secure fixes". NOTE: this might be a duplicate of CVE-…	NVD-CWE-noinfo	CVE-2006-0874	2024-02-14 10:17	2006-02-24	Show	GitHub Exploit DB Packet Storm

313599	-	bluecoat	sgos	Blue Coat Proxy Security Gateway OS (SGOS) 4.1.2.1 does not enforce CONNECT rules when using Deep Content Inspection, which allows remote attackers to bypass connection filters.	NVD-CWE-Other	CVE-2006-0578	2024-02-14 10:17	2006-02-8	Show	GitHub Exploit DB Packet Storm

313600	-	gallery_project	gallery	Unspecified vulnerability in util.php in Gallery before 1.5.2-pl2 allows remote authenticated users with trick an owner into modifying stored album data and possibly executing arbitrary code via unsp…	NVD-CWE-Other	CVE-2006-0587	2024-02-14 10:17	2006-02-8	Show	GitHub Exploit DB Packet Storm