Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 3, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226731	9.3	危険	pragyan	-	Pragyan CMS の cms/modules/form.lib.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-3207	2012-12-20 18:52	2008-07-18	Show	GitHub Exploit DB Packet Storm

226732	4.3	警告	xomol	-	Xomol CMS の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-3202	2012-12-20 18:52	2008-07-17	Show	GitHub Exploit DB Packet Storm

226733	7.8	危険	reSIProcate	-	ReSIProcate におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2008-3199	2012-12-20 18:52	2008-07-14	Show	GitHub Exploit DB Packet Storm

226734	3.5	注意	The phpMyAdmin Project	-	phpMyAdmin におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2008-3197	2012-12-20 18:52	2008-07-15	Show	GitHub Exploit DB Packet Storm

226735	7.8	危険	yacc	-	yacc 内の skeleton.c における範囲外メモリのスタックにアクセスされる脆弱性	CWE-399 リソース管理の問題	CVE-2008-3196	2012-12-20 18:52	2008-07-16	Show	GitHub Exploit DB Packet Storm

226736	6.8	警告	TWiki	-	TWiki の bin/configure におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-3195	2012-12-20 18:52	2008-08-5	Show	GitHub Exploit DB Packet Storm

226737	6.8	警告	Pluck CMS	-	pluck の data/inc/themes/predefined_variables.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-3194	2012-12-20 18:52	2008-07-16	Show	GitHub Exploit DB Packet Storm

226738	7.5	危険	Sclek	-	jSite における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3193	2012-12-20 18:52	2008-07-16	Show	GitHub Exploit DB Packet Storm

226739	6.8	警告	Sclek	-	jSite の index.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-3192	2012-12-20 18:52	2008-07-16	Show	GitHub Exploit DB Packet Storm

226740	6.8	警告	vclcomponents	-	Relative Real Estate Systems の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3185	2012-12-20 18:52	2008-07-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 3, 2026, 4:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1051	8.9	HIGH Network	github	enterprise_server	A server-side request forgery (SSRF) vulnerability was identified in GitHub Enterprise Server that allowed an attacker to extract sensitive environment variables from the instance through a timing si…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-5921	2026-04-29 05:43	2026-04-22	Show	GitHub Exploit DB Packet Storm

1052	8.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Use scratch field in MMIO fragment to hold small write values When exiting to userspace to service an emulated MMIO wri…	CWE-416 Use After Free	CVE-2026-31588	2026-04-29 05:42	2026-04-25	Show	GitHub Exploit DB Packet Storm

1053	9.8	CRITICAL Network	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: mm: call ->free_folio() directly in folio_unmap_invalidate() We can only call filemap_free_folio() if we have a reference to (or …	CWE-416 Use After Free	CVE-2026-31589	2026-04-29 05:40	2026-04-25	Show	GitHub Exploit DB Packet Storm

1054	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: KVM: SEV: Drop WARN on large size for KVM_MEMORY_ENCRYPT_REG_REGION Drop the WARN in sev_pin_memory() on npages overflowing an in…	NVD-CWE-noinfo	CVE-2026-31590	2026-04-29 05:38	2026-04-25	Show	GitHub Exploit DB Packet Storm

1055	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: KVM: SEV: Lock all vCPUs when synchronzing VMSAs for SNP launch finish Lock all vCPUs when synchronizing and encrypting VMSAs for…	NVD-CWE-noinfo	CVE-2026-31591	2026-04-29 05:34	2026-04-25	Show	GitHub Exploit DB Packet Storm

1056	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: KVM: SEV: Protect all of sev_mem_enc_register_region() with kvm->lock Take and hold kvm->lock for before checking sev_guest() i…	CWE-476 NULL Pointer Dereference	CVE-2026-31592	2026-04-29 05:33	2026-04-25	Show	GitHub Exploit DB Packet Storm

1057	5.3	MEDIUM Network	-	-	A vulnerability has been found in aligungr UERANSIM up to 3.2.7. The affected element is the function rls::DecodeRlsMessage in the library src/lib/rls/rls_pdu.cpp of the component Radio Link Simulati…	CWE-248 Uncaught Exception	CVE-2026-7183	2026-04-29 05:27	2026-04-28	Show	GitHub Exploit DB Packet Storm

1058	9.8	CRITICAL Network	-	-	A weakness has been identified in Totolink A8000RU 7.1cu.643_b20200521. This affects the function setAdvancedInfoShow of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Executing a manipu…	CWE-77 CWE-78 Command Injection OS Command	CVE-2026-7154	2026-04-29 05:24	2026-04-28	Show	GitHub Exploit DB Packet Storm

1059	9.8	CRITICAL Network	-	-	A security vulnerability has been detected in Totolink A8000RU 7.1cu.643_b20200521. This impacts the function setLoginPasswordCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. The ma…	CWE-77 CWE-78 Command Injection OS Command	CVE-2026-7155	2026-04-29 05:24	2026-04-28	Show	GitHub Exploit DB Packet Storm

1060	9.8	CRITICAL Network	-	-	A vulnerability was detected in Totolink A8000RU 7.1cu.643_b20200521. Affected is the function CsteSystem of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. The manipulation of the argume…	CWE-77 CWE-78 Command Injection OS Command	CVE-2026-7156	2026-04-29 05:24	2026-04-28	Show	GitHub Exploit DB Packet Storm