Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 11, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226151	4.3	警告	ViewVC	-	ViewVC の viewvc.py におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-3618	2012-12-20 19:28	2009-08-11	Show	GitHub Exploit DB Packet Storm

226152	7.6	危険	tatsuhiro tsujikawa	-	aria の src/AbstractCommand.cc におけるフォーマットストリングの脆弱性	CWE-134 書式文字列の問題	CVE-2009-3617	2012-12-20 19:28	2009-10-20	Show	GitHub Exploit DB Packet Storm

226153	8.5	危険	Fabrice Bellard	-	QEMU の VNC server におけるホストの OS 上で任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2009-3616	2012-12-20 19:28	2009-10-23	Show	GitHub Exploit DB Packet Storm

226154	9.3	危険	freedesktop.org	-	Poppler の glib/poppler-page.cc における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2009-3607	2012-12-20 19:28	2009-10-21	Show	GitHub Exploit DB Packet Storm

226155	4.3	警告	Scriptsez.net	-	Scriptsez Ultimate Poll の demo_page.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-3601	2012-12-20 19:28	2009-10-8	Show	GitHub Exploit DB Packet Storm

226156	7.5	危険	vspanel	-	VS PANEL の results.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-3595	2012-12-20 19:28	2009-10-8	Show	GitHub Exploit DB Packet Storm

226157	4.3	警告	qtmsoft	-	Qualiteam X-Cart の customer/home.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-3592	2012-12-20 19:28	2009-10-8	Show	GitHub Exploit DB Packet Storm

226158	7.5	危険	vspanel	-	VS PANEL の showcat.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-3590	2012-12-20 19:28	2009-10-8	Show	GitHub Exploit DB Packet Storm

226159	5	警告	sql-ledger	-	SQL-Ledger におけるクッキーをキャプチャされる脆弱性	CWE-16 環境設定	CVE-2009-3584	2012-12-20 19:28	2009-12-23	Show	GitHub Exploit DB Packet Storm

226160	5.1	警告	sql-ledger	-	SQL-Ledger の Preferences メニュー項目におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-3583	2012-12-20 19:28	2009-12-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1641	5.3	MEDIUM Network	-	-	Vvveb before version 1.0.8.2 contains an information disclosure vulnerability that allows unauthenticated attackers to obtain sensitive server information by triggering unhandled exceptions in the pa…	CWE-209 CWE-1188 Information Exposure Through an Error Message Insecure Default Initialization of Resource	CVE-2026-41931	2026-05-7 05:16	2026-05-7	Show	GitHub Exploit DB Packet Storm

1642	9.8	CRITICAL Network	-	-	Vvveb before version 1.0.8.2 contains a hard-coded credentials vulnerability in its docker-compose-apache.yaml configuration that allows unauthenticated attackers to access the bundled phpMyAdmin con…	CWE-306 Missing Authentication for Critical Function	CVE-2026-41930	2026-05-7 05:16	2026-05-7	Show	GitHub Exploit DB Packet Storm

1643	-		-	-	Rejected reason: This CVE is a duplicate of another CVE: CVE-2026-33079.	-	CVE-2026-33441	2026-05-7 05:16	2026-05-7	Show	GitHub Exploit DB Packet Storm

1644	8.3	HIGH Network	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: ksmbd: require minimum ACE size in smb_check_perm_dacl() Both ACE-walk loops in smb_check_perm_dacl() only guard against an under…	CWE-787 Out-of-bounds Write	CVE-2026-31712	2026-05-7 05:16	2026-05-1	Show	GitHub Exploit DB Packet Storm

1645	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: rtnetlink: add missing netlink_ns_capable() check for peer netns rtnl_newlink() lacks a CAP_NET_ADMIN capability check on the pee…	NVD-CWE-noinfo	CVE-2026-31692	2026-05-7 05:05	2026-04-30	Show	GitHub Exploit DB Packet Storm

1646	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: Buffer overflow in drivers/xen/sys-hypervisor.c The build id returned by HYPERVISOR_xen_version(XENVER_build_id) is neither NUL t…	CWE-787 Out-of-bounds Write	CVE-2026-31786	2026-05-7 04:44	2026-04-30	Show	GitHub Exploit DB Packet Storm

1647	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: xen/privcmd: fix double free via VMA splitting privcmd_vm_ops defines .close (privcmd_close), but neither .may_split nor .open. W…	CWE-415 Double Free	CVE-2026-31787	2026-05-7 04:38	2026-04-30	Show	GitHub Exploit DB Packet Storm

1648	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: fuse: reject oversized dirents in page cache fuse_add_dirent_to_cache() computes a serialized dirent size from the server-control…	NVD-CWE-noinfo	CVE-2026-31694	2026-05-7 04:23	2026-05-1	Show	GitHub Exploit DB Packet Storm

1649	8.8	HIGH Network	-	-	Vvveb before version 1.0.8.2 contains an authenticated remote code execution vulnerability in the admin code editor that allows low-privilege authenticated users to execute arbitrary code by exploiti…	CWE-184 Incomplete Blacklist	CVE-2026-41934	2026-05-7 04:20	2026-05-7	Show	GitHub Exploit DB Packet Storm

1650	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: wifi: virt_wifi: remove SET_NETDEV_DEV to avoid use-after-free Currently we execute `SET_NETDEV_DEV(dev, &priv->lowerdev->dev)` f…	CWE-416 Use After Free	CVE-2026-31695	2026-05-7 04:19	2026-05-1	Show	GitHub Exploit DB Packet Storm