Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 1, 2026, 12:10 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227141 6.8 警告 VideoLAN - VLC 用の libmp4.c における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2008-1489 2012-12-20 18:52 2008-03-24 Show GitHub Exploit DB Packet Storm
227142 4.3 警告 PunBB - PunBB におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-1485 2012-12-20 18:52 2008-03-24 Show GitHub Exploit DB Packet Storm
227143 3.5 注意 PunBB - PunBB のパスワードリセット機能における新規パスワードを特定される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-1484 2012-12-20 18:52 2008-02-20 Show GitHub Exploit DB Packet Storm
227144 6.8 警告 Xine - xine-lib における整数オーバーフローの脆弱性 CWE-119
CWE-189
CVE-2008-1482 2012-12-20 18:52 2008-03-24 Show GitHub Exploit DB Packet Storm
227145 4.3 警告 webSPELL - webSPELL の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-1481 2012-12-20 18:52 2008-03-24 Show GitHub Exploit DB Packet Storm
227146 4.3 警告 s9y - S9Y におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-1476 2012-12-20 18:52 2008-03-18 Show GitHub Exploit DB Packet Storm
227147 6.4 警告 Roundup - Roundup の xml-rpc サーバにおける制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-1475 2012-12-20 18:52 2008-03-24 Show GitHub Exploit DB Packet Storm
227148 4.3 警告 Roundup - Roundup における脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-1474 2012-12-20 18:52 2008-03-24 Show GitHub Exploit DB Packet Storm
227149 7.2 危険 シマンテック - Symantec Altiris Deployment Solution の Altiris Client Service における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-1473 2012-12-20 18:52 2008-03-10 Show GitHub Exploit DB Packet Storm
227150 4.3 警告 RSAセキュリティ - WebID RSA Authentication Agent の IISWebAgentIF.dll におけるクロスサイトスクリプティング (XSS) 攻撃を実行される脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-1470 2012-12-20 18:52 2008-03-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 1, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
921 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: drm/mediatek: dsi: Store driver data before invoking mipi_dsi_host_register The call to mipi_dsi_host_register triggers a callbac… CWE-476
 NULL Pointer Dereference 		CVE-2026-31562 2026-04-28 05:30 2026-04-25 Show GitHub Exploit DB Packet Storm
922 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: rxrpc: fix reference count leak in rxrpc_server_keyring() This patch fixes a reference count leak in rxrpc_server_keyring() by ch… NVD-CWE-Other
CVE-2026-31634 2026-04-28 05:30 2026-04-25 Show GitHub Exploit DB Packet Storm
923 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: x86/cpu: Remove X86_CR4_FRED from the CR4 pinned bits mask Commit in Fixes added the FRED CR4 bit to the CR4 pinned bits mask so … NVD-CWE-noinfo
CVE-2026-31561 2026-04-28 05:30 2026-04-25 Show GitHub Exploit DB Packet Storm
924 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: spi: spi-dw-dma: fix print error log when wait finish transaction If an error occurs, the device may not have a current message. … NVD-CWE-noinfo
CVE-2026-31560 2026-04-28 05:30 2026-04-25 Show GitHub Exploit DB Packet Storm
925 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: media: verisilicon: Fix kernel panic due to __initconst misuse Fix a kernel panic when probing the driver as a module: Unable … NVD-CWE-noinfo
CVE-2026-31573 2026-04-28 05:29 2026-04-25 Show GitHub Exploit DB Packet Storm
926 - - - An authenticated administrative user who can import or save DataObject class definitions can inject attacker-controlled composite index metadata and trigger unintended SQL execution in the backend. … CWE-89
SQL Injection 		CVE-2026-5394 2026-04-28 05:21 2026-04-28 Show GitHub Exploit DB Packet Storm
927 9.8 CRITICAL
Network 		- - A vulnerability was identified in Totolink A8000RU 7.1cu.643_b20200521. The affected element is the function setTelnetCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Such manipulat… CWE-77
CWE-78
Command Injection
OS Command  		CVE-2026-7152 2026-04-28 05:21 2026-04-28 Show GitHub Exploit DB Packet Storm
928 9.8 CRITICAL
Network 		- - A security flaw has been discovered in Totolink A8000RU 7.1cu.643_b20200521. The impacted element is the function setMiniuiHomeInfoShow of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. … CWE-77
CWE-78
Command Injection
OS Command  		CVE-2026-7153 2026-04-28 05:21 2026-04-28 Show GitHub Exploit DB Packet Storm
929 8.8 HIGH
Network 		- - The LatePoint – Calendar Booking Plugin for Appointments and Events plugin for WordPress is vulnerable to Privilege Escalation in versions up to and including 5.4.1. This is due to a missing authoriz… CWE-269
 Improper Privilege Management 		CVE-2026-6741 2026-04-28 05:21 2026-04-28 Show GitHub Exploit DB Packet Storm
930 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix key reference count leak from call->key When creating a client call in rxrpc_alloc_client_call(), the code obtains a r… NVD-CWE-Other
CVE-2026-31639 2026-04-28 05:20 2026-04-25 Show GitHub Exploit DB Packet Storm