Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226041 7.5 危険 fr.simon rundell
TYPO3 Association		 - TYPO3 用の Portsmouth Resources Database エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4396 2012-12-20 19:28 2009-12-22 Show GitHub Exploit DB Packet Storm
226042 7.5 危険 TYPO3 Association - TYPO3 用の XDS Staff List エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4392 2012-12-20 19:28 2009-12-22 Show GitHub Exploit DB Packet Storm
226043 5 警告 robert puntigam - TYPO3 用の watchdog エクステンションにおける重要な情報を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2009-4389 2012-12-20 19:28 2009-12-22 Show GitHub Exploit DB Packet Storm
226044 6.8 警告 Scriptsez.net - Scriptsez.net EPH におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2009-4385 2012-12-20 19:28 2009-12-22 Show GitHub Exploit DB Packet Storm
226045 4.3 警告 Scriptsez.net - Scriptsez.net EPH におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4384 2012-12-20 19:28 2009-12-22 Show GitHub Exploit DB Packet Storm
226046 4.3 警告 phpfaber - PHPFABER CMS の module.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4382 2012-12-20 19:28 2009-12-22 Show GitHub Exploit DB Packet Storm
226047 4.3 警告 texmedia - texmedia Million Pixel Script の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4381 2012-12-20 19:28 2009-12-22 Show GitHub Exploit DB Packet Storm
226048 7.5 危険 Wafer - Valarsoft Webmatic における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4380 2012-12-20 19:28 2009-12-14 Show GitHub Exploit DB Packet Storm
226049 4.3 警告 Wafer - Valarsoft Webmatic におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4379 2012-12-20 19:28 2009-12-14 Show GitHub Exploit DB Packet Storm
226050 4.3 警告 Wireshark - Windows 上で稼動している Wireshark の IPMI 解析子におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2009-4378 2012-12-20 19:28 2009-12-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1611 - - - Masa CMS is affected by an Open Redirect vulnerability due to improper handling of scheme-relative URLs. The application incorrectly interprets paths beginning with double slashes (//) as internal pa… CWE-601
Open Redirect 		CVE-2026-40332 2026-05-7 06:22 2026-05-7 Show GitHub Exploit DB Packet Storm
1612 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: fuse: abort on fatal signal during sync init When sync init is used and the server exits for some reason (error, crash) while pro… NVD-CWE-noinfo
CVE-2026-31713 2026-05-7 06:13 2026-05-1 Show GitHub Exploit DB Packet Storm
1613 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid memory leak in f2fs_rename() syzbot reported a f2fs bug as below: BUG: memory leak unreferenced object 0xffff… CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2026-31714 2026-05-7 06:12 2026-05-1 Show GitHub Exploit DB Packet Storm
1614 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: validate rec->used in journal-replay file record check check_file_record() validates rec->total against the record size… CWE-787
 Out-of-bounds Write 		CVE-2026-31716 2026-05-7 06:10 2026-05-1 Show GitHub Exploit DB Packet Storm
1615 8.8 HIGH
Network 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: ksmbd: validate owner of durable handle on reconnect Currently, ksmbd does not verify if the user attempting to reconnect to a du… NVD-CWE-noinfo
CVE-2026-31717 2026-05-7 06:08 2026-05-1 Show GitHub Exploit DB Packet Storm
1616 9.8 CRITICAL
Network 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free in __ksmbd_close_fd() via durable scavenger When a durable file handle survives session disconnect (TCP… CWE-416
 Use After Free 		CVE-2026-31718 2026-05-7 06:07 2026-05-1 Show GitHub Exploit DB Packet Storm
1617 7.5 HIGH
Network 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: crypto: krb5enc - fix async decrypt skipping hash verification krb5enc_dispatch_decrypt() sets req->base.complete as the skcipher… NVD-CWE-noinfo
CVE-2026-31719 2026-05-7 05:59 2026-05-1 Show GitHub Exploit DB Packet Storm
1618 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: usb: gadget: f_uac1_legacy: validate control request size f_audio_complete() copies req->length bytes into a 4-byte stack variabl… CWE-787
 Out-of-bounds Write 		CVE-2026-31720 2026-05-7 05:58 2026-05-2 Show GitHub Exploit DB Packet Storm
1619 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: usb: gadget: f_hid: move list and spinlock inits from bind to alloc There was an issue when you did the following: - setup and bi… NVD-CWE-noinfo
CVE-2026-31721 2026-05-7 05:56 2026-05-2 Show GitHub Exploit DB Packet Storm
1620 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: usb: gadget: f_rndis: Fix net_device lifecycle with device_move The net_device is allocated during function instance creation and… NVD-CWE-noinfo
CVE-2026-31722 2026-05-7 05:55 2026-05-2 Show GitHub Exploit DB Packet Storm