Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 11, 2026, 4:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227671 4.3 警告 webcms - webCMS Portal Edition の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4184 2012-12-20 18:52 2008-09-23 Show GitHub Exploit DB Packet Storm
227672 7.5 危険 PreProject.com - Pre Real Estate Listings の search.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4177 2012-12-20 18:52 2008-09-23 Show GitHub Exploit DB Packet Storm
227673 7.5 危険 proarcadescript - ProArcadeScript における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4173 2012-12-20 18:52 2008-09-22 Show GitHub Exploit DB Packet Storm
227674 7.5 危険 rfaah - Cars & Vehicle の page.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4172 2012-12-20 18:52 2008-09-22 Show GitHub Exploit DB Packet Storm
227675 4.3 警告 pro2col - Pro2col Stingray FTS の verify_login.jsp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4168 2012-12-20 18:52 2008-09-22 Show GitHub Exploit DB Packet Storm
227676 7.5 危険 zanfi solutions - Zanfi CMS lite および Jaw Portal の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4159 2012-12-20 18:52 2008-09-22 Show GitHub Exploit DB Packet Storm
227677 6.8 警告 zanfi solutions - Zanfi CMS lite の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-4158 2012-12-20 18:52 2008-09-22 Show GitHub Exploit DB Packet Storm
227678 7.5 危険 Vastal I-Tech & Co. - Vastal I-Tech phpVID の groups.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4157 2012-12-20 18:52 2008-09-22 Show GitHub Exploit DB Packet Storm
227679 7.5 危険 razorecommerce - RazorCommerce Shopping Cart の category_search.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4143 2012-12-20 18:52 2008-09-24 Show GitHub Exploit DB Packet Storm
227680 7.5 危険 x10media - x10Media x10 Automatic MP3 Script における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-4141 2012-12-20 18:52 2008-09-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2771 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: NFC: nxp-nci: allow GPIOs to sleep Allow the firmware and enable GPIOs to sleep. This fixes a `WARN_ON' and allows the driver to… NVD-CWE-noinfo
CVE-2026-31545 2026-04-29 05:53 2026-04-25 Show GitHub Exploit DB Packet Storm
2772 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: net: bonding: fix NULL deref in bond_debug_rlb_hash_show rlb_clear_slave intentionally keeps RLB hash-table entries on the rx_has… CWE-476
 NULL Pointer Dereference 		CVE-2026-31546 2026-04-29 05:48 2026-04-25 Show GitHub Exploit DB Packet Storm
2773 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: media: vidtv: fix nfeeds state corruption on start_streaming failure syzbot reported a memory leak in vidtv_psi_service_desc_init… CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2026-31585 2026-04-29 05:47 2026-04-25 Show GitHub Exploit DB Packet Storm
2774 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: mm: blk-cgroup: fix use-after-free in cgwb_release_workfn() cgwb_release_workfn() calls css_put(wb->blkcg_css) and then later acc… CWE-416
 Use After Free 		CVE-2026-31586 2026-04-29 05:45 2026-04-25 Show GitHub Exploit DB Packet Storm
2775 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: ASoC: qcom: q6apm: move component registration to unmanaged version q6apm component registers dais dynamically from ASoC toplolog… CWE-416
 Use After Free 		CVE-2026-31587 2026-04-29 05:44 2026-04-25 Show GitHub Exploit DB Packet Storm
2776 8.9 HIGH
Network 		github enterprise_server A server-side request forgery (SSRF) vulnerability was identified in GitHub Enterprise Server that allowed an attacker to extract sensitive environment variables from the instance through a timing si… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-5921 2026-04-29 05:43 2026-04-22 Show GitHub Exploit DB Packet Storm
2777 8.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Use scratch field in MMIO fragment to hold small write values When exiting to userspace to service an emulated MMIO wri… CWE-416
 Use After Free 		CVE-2026-31588 2026-04-29 05:42 2026-04-25 Show GitHub Exploit DB Packet Storm
2778 9.8 CRITICAL
Network 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: mm: call ->free_folio() directly in folio_unmap_invalidate() We can only call filemap_free_folio() if we have a reference to (or … CWE-416
 Use After Free 		CVE-2026-31589 2026-04-29 05:40 2026-04-25 Show GitHub Exploit DB Packet Storm
2779 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: KVM: SEV: Drop WARN on large size for KVM_MEMORY_ENCRYPT_REG_REGION Drop the WARN in sev_pin_memory() on npages overflowing an in… NVD-CWE-noinfo
CVE-2026-31590 2026-04-29 05:38 2026-04-25 Show GitHub Exploit DB Packet Storm
2780 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: KVM: SEV: Lock all vCPUs when synchronzing VMSAs for SNP launch finish Lock all vCPUs when synchronizing and encrypting VMSAs for… NVD-CWE-noinfo
CVE-2026-31591 2026-04-29 05:34 2026-04-25 Show GitHub Exploit DB Packet Storm