Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":April 30, 2026, 12:07 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228081	10	危険	webo	-	Leo West WEBO の modules/abook/foldertree.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1391	2012-12-20 18:19	2007-03-10	Show	GitHub Exploit DB Packet Storm

228082	4.3	警告	Snitz	-	Snitz Forums 2000 の pop_profile.asp におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-1374	2012-12-20 18:19	2007-03-9	Show	GitHub Exploit DB Packet Storm

228083	10	危険	Pegasus Mail	-	Mercury/32 におけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2007-1373	2012-12-20 18:19	2007-03-9	Show	GitHub Exploit DB Packet Storm

228084	10	危険	postguestbook	-	PHP-Nuke 用の PostGuestbook モジュールにおける PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1372	2012-12-20 18:19	2007-03-9	Show	GitHub Exploit DB Packet Storm

228085	6.9	警告	Jon Trulson	-	Conquest におけるバッファオーバーフローの脆弱性	-	CVE-2007-1371	2012-12-20 18:19	2007-03-9	Show	GitHub Exploit DB Packet Storm

228086	6.2	警告	Zend Technologies Ltd.	-	Zend Platform におけるルート権限を取得される脆弱性	-	CVE-2007-1370	2012-12-20 18:19	2007-03-9	Show	GitHub Exploit DB Packet Storm

228087	4.4	警告	Zend Technologies Ltd.	-	Zend Platform の ini_modifier における system.ini ファイルを変更される脆弱性	-	CVE-2007-1369	2012-12-20 18:19	2007-03-9	Show	GitHub Exploit DB Packet Storm

228088	4.3	警告	VirtueMart	-	VirtueMart の virtuemart_parser.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-1361	2012-12-20 18:19	2007-03-8	Show	GitHub Exploit DB Packet Storm

228089	6.6	警告	サン・マイクロシステムズ	-	Sun Fire X2100M2 および X2200M2 用の ipmitool における権限を取得される脆弱性	-	CVE-2007-1346	2012-12-20 18:19	2007-03-7	Show	GitHub Exploit DB Packet Storm

228090	7.5	危険	webcalendar	-	Craig Knudsen WebCalendar の includes/functions.php における任意のグローバル変数を設定される脆弱性	-	CVE-2007-1343	2012-12-20 18:19	2007-03-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 30, 2026, 4:58 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1321	4.7	MEDIUM Local	uutils	coreutils	The cp utility in uutils coreutils is vulnerable to an information disclosure race condition. Destination files are initially created with umask-derived permissions (e.g., 0644) before being restrict…	CWE-367 Time-of-check Time-of-use (TOCTOU) Race Condition	CVE-2026-35357	2026-04-25 04:02	2026-04-23	Show	GitHub Exploit DB Packet Storm

1322	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: bpf: Fix stack-out-of-bounds write in devmap get_upper_ifindexes() iterates over all upper devices and writes their indices into …	CWE-787 Out-of-bounds Write	CVE-2026-23359	2026-04-25 04:02	2026-03-25	Show	GitHub Exploit DB Packet Storm

1323	7.8	HIGH Local	linux	linux_kernel	En el kernel de Linux, la siguiente vulnerabilidad ha sido resuelta: bpf: Corrección de escritura fuera de límites de la pila en devmap get_upper_ifindexes() itera sobre todos los dispositivos supe…	CWE-787 Out-of-bounds Write	CVE-2026-23359	2026-04-25 04:02	2026-03-25	Show	GitHub Exploit DB Packet Storm

1324	4.7	MEDIUM Local	uutils	coreutils	A Time-of-Check to Time-of-Use (TOCTOU) vulnerability in the cp utility of uutils coreutils allows an attacker to bypass no-dereference intent. The utility checks if a source path is a symbolic link …	CWE-59 CWE-367 Link Following Time-of-check Time-of-use (TOCTOU) Race Condition	CVE-2026-35359	2026-04-25 04:02	2026-04-23	Show	GitHub Exploit DB Packet Storm

1325	6.3	MEDIUM Local	uutils	coreutils	The touch utility in uutils coreutils is vulnerable to a Time-of-Check to Time-of-Use (TOCTOU) race condition during file creation. When the utility identifies a missing path, it later attempts creat…	CWE-367 Time-of-check Time-of-use (TOCTOU) Race Condition	CVE-2026-35360	2026-04-25 04:02	2026-04-23	Show	GitHub Exploit DB Packet Storm

1326	5.6	MEDIUM Local	uutils	coreutils	A vulnerability in the rm utility of uutils coreutils allows the bypass of safeguard mechanisms intended to protect the current directory. While the utility correctly refuses to delete . or .., it fa…	CWE-22 Path Traversal	CVE-2026-35363	2026-04-25 04:02	2026-04-23	Show	GitHub Exploit DB Packet Storm

1327	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: nvme: fix admin queue leak on controller reset When nvme_alloc_admin_tag_set() is called during a controller reset, a previous ad…	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2026-23360	2026-04-25 03:59	2026-03-25	Show	GitHub Exploit DB Packet Storm

1328	5.5	MEDIUM Local	linux	linux_kernel	En el kernel de Linux, la siguiente vulnerabilidad ha sido resuelta: nvme: corrige la fuga de la cola de administración al reiniciar el controlador Cuando se llama a nvme_alloc_admin_tag_set() dura…	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2026-23360	2026-04-25 03:59	2026-03-25	Show	GitHub Exploit DB Packet Storm

1329	4.3	MEDIUM Adjacent	openbsd	openbsd	In OpenBSD through 7.8, the slaacd and rad daemons have an infinite loop when they receive a crafted ICMPv6 Neighbor Discovery (ND) option (over a local network) with length zero, because of an "nd_o…	CWE-1284 CWE-835 Improper Validation of Specified Quantity in Input Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2026-41285	2026-04-25 03:59	2026-04-21	Show	GitHub Exploit DB Packet Storm

1330	5.5	MEDIUM Local	uutils	coreutils	The sort utility in uutils coreutils is vulnerable to a process panic when using the --files0-from option with inputs containing non-UTF-8 filenames. The implementation enforces UTF-8 encoding and ut…	CWE-248 Uncaught Exception	CVE-2026-35348	2026-04-25 03:57	2026-04-23	Show	GitHub Exploit DB Packet Storm