Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":April 29, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227461 7.8 危険 rainbowsoft - Z-Blog におけるデータベースをダウンロードされる脆弱性 - CVE-2007-3083 2012-12-20 18:19 2007-06-6 Show GitHub Exploit DB Packet Storm
227462 7.8 危険 sendcard - Sendcard の sendcard.php におけるディレクトリトラバーサルの脆弱性 - CVE-2007-3082 2012-12-20 18:19 2007-06-6 Show GitHub Exploit DB Packet Storm
227463 7.8 危険 zenturi - Zenturi ProgramChecker の sasatl.dll における任意のファイルをダウンロードされる脆弱性 - CVE-2007-3076 2012-12-20 18:19 2007-06-6 Show GitHub Exploit DB Packet Storm
227464 7.5 危険 phpreactor - Reactor における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-3066 2012-12-20 18:19 2007-06-5 Show GitHub Exploit DB Packet Storm
227465 5 警告 sendcard - SendCard における重要な情報を取得される脆弱性 - CVE-2007-3059 2012-12-20 18:19 2007-06-5 Show GitHub Exploit DB Packet Storm
227466 6.8 警告 XOOPS - XOOPS 用の icontent モジュールにおける PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-3057 2012-12-20 18:19 2007-06-5 Show GitHub Exploit DB Packet Storm
227467 4.3 警告 WebSVN - WebSVN の filedetails.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-3056 2012-12-20 18:19 2007-06-5 Show GitHub Exploit DB Packet Storm
227468 7.5 危険 postnuke software foundation - PostNuke 用の PNphpBB2 モジュールにおける SQL インジェクションの脆弱性 - CVE-2007-3052 2012-12-20 18:19 2007-06-5 Show GitHub Exploit DB Packet Storm
227469 7.5 危険 revokesoft - RevokeSoft RevokeBB の inc/class_users.php における SQL インジェクションの脆弱性 - CVE-2007-3051 2012-12-20 18:19 2007-06-5 Show GitHub Exploit DB Packet Storm
227470 10 危険 Vonage - Vonage VoIP Telephone Adapter における管理アクセス権限を取得される脆弱性 - CVE-2007-3047 2012-12-20 18:19 2007-06-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 29, 2026, 4:51 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
851 7.8 HIGH
Local 		- - In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: Fix possible invalid memory access after FLR In the case that the first Function Level Reset (FLR) concludes cor… Update - CVE-2026-31442 2026-04-27 23:16 2026-04-22 Show GitHub Exploit DB Packet Storm
852 9.8 CRITICAL
Network 		- - In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: fix possible wrong descriptor completion in llist_abort_desc() At the end of this function, d is the traversal c… Update - CVE-2026-31436 2026-04-27 23:16 2026-04-22 Show GitHub Exploit DB Packet Storm
853 8.8 HIGH
Network 		- - In the Linux kernel, the following vulnerability has been resolved: netfs: Fix read abandonment during retry Under certain circumstances, all the remaining subrequests from a read request will get … Update - CVE-2026-31435 2026-04-27 23:16 2026-04-22 Show GitHub Exploit DB Packet Storm
854 8.8 HIGH
Network 		- - In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix potencial OOB in get_file_all_info() for compound requests When a compound request consists of QUERY_DIRECTORY + QUERY… Update - CVE-2026-31433 2026-04-27 23:16 2026-04-22 Show GitHub Exploit DB Packet Storm
855 8.8 HIGH
Network 		- - In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix OOB write in QUERY_INFO for compound requests When a compound request such as READ + QUERY_INFO(Security) is received,… Update - CVE-2026-31432 2026-04-27 23:16 2026-04-22 Show GitHub Exploit DB Packet Storm
856 7.8 HIGH
Local 		- - In the Linux kernel, the following vulnerability has been resolved: crypto: algif_aead - Revert to operating out-of-place This mostly reverts commit 72548b093ee3 except for the copying of the assoc… Update - CVE-2026-31431 2026-04-27 23:16 2026-04-22 Show GitHub Exploit DB Packet Storm
857 - - - In the Linux kernel, the following vulnerability has been resolved: net: skb: fix cross-cache free of KFENCE-allocated skb head SKB_SMALL_HEAD_CACHE_SIZE is intentionally set to a non-power-of-2 va… Update - CVE-2026-31429 2026-04-27 23:16 2026-04-20 Show GitHub Exploit DB Packet Storm
858 6.3 MEDIUM
Network 		apache dolphinscheduler Deserialization of Untrusted Data vulnerability in Apache DolphinScheduler RPC module. This issue affects Apache DolphinScheduler:  Version >= 3.2.0 and < 3.3.1. Attackers who can access the Maste… Update CWE-502
 Deserialization of Untrusted Data 		CVE-2025-62233 2026-04-27 22:45 2026-04-24 Show GitHub Exploit DB Packet Storm
859 6.6 MEDIUM
Local 		saurabh-kumar python-dotenv python-dotenv reads key-value pairs from a .env file and can set them as environment variables. Prior to version 1.2.2, `set_key()` and `unset_key()` in python-dotenv follow symbolic links when rewri… Update CWE-59
CWE-61
Link Following
 UNIX Symbolic Link (Symlink) Following 		CVE-2026-28684 2026-04-27 22:44 2026-04-21 Show GitHub Exploit DB Packet Storm
860 8.1 HIGH
Network 		apache dolphinscheduler Incorrect Authorization vulnerability in Apache DolphinScheduler allows authenticated users with system login permissions to use tenants that are not defined on the platform during workflow execution… Update CWE-863
 Incorrect Authorization 		CVE-2026-23902 2026-04-27 22:42 2026-04-24 Show GitHub Exploit DB Packet Storm