Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 8, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228361 7.5 危険 vu - VU Case Manager の default.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-6143 2012-12-20 18:34 2007-11-27 Show GitHub Exploit DB Packet Storm
228362 4.3 警告 salims softhouse - ph03y3nk JAF CMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-6142 2012-12-20 18:34 2007-11-27 Show GitHub Exploit DB Packet Storm
228363 4.3 警告 vbtube - vBTube の vBTube.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-6141 2012-12-20 18:34 2007-11-27 Show GitHub Exploit DB Packet Storm
228364 7.5 危険 vu - VU Mass Mailer の redir.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-6138 2012-12-20 18:33 2007-11-27 Show GitHub Exploit DB Packet Storm
228365 4.3 警告 phpslideshow - PHPSlideShow の phpslideshow.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-6135 2012-12-20 18:33 2007-11-27 Show GitHub Exploit DB Packet Storm
228366 7.5 危険 PHPKIT - PHPKIT の pkinc/public/article.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-6134 2012-12-20 18:33 2007-11-27 Show GitHub Exploit DB Packet Storm
228367 2.1 注意 レッドハット - scanbuttond の buttonpressed.sh における任意のファイルを上書きされる脆弱性 CWE-16
環境設定 		CVE-2007-6131 2012-12-20 18:33 2007-11-14 Show GitHub Exploit DB Packet Storm
228368 7.5 危険 project alumni - project alumni における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-6127 2012-12-20 18:33 2007-11-26 Show GitHub Exploit DB Packet Storm
228369 4.3 警告 project alumni - project alumni におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-6126 2012-12-20 18:33 2007-11-26 Show GitHub Exploit DB Packet Storm
228370 7.5 危険 softbiz - Softbiz Freelancers Script の search_form.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-6125 2012-12-20 18:33 2007-11-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2381 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: net: lan966x: fix page_pool error handling in lan966x_fdma_rx_alloc_page_pool() page_pool_create() can return an ERR_PTR on failu… CWE-476
 NULL Pointer Dereference 		CVE-2026-31646 2026-04-28 05:19 2026-04-25 Show GitHub Exploit DB Packet Storm
2382 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: idpf: fix PREEMPT_RT raw/bh spinlock nesting for async VC handling Switch from using the completion's raw spinlock to a local loc… NVD-CWE-noinfo
CVE-2026-31647 2026-04-28 05:18 2026-04-25 Show GitHub Exploit DB Packet Storm
2383 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: wifi: brcmsmac: Fix dma_free_coherent() size dma_alloc_consistent() may change the size to align it. The new size is saved in all… NVD-CWE-noinfo
CVE-2026-31661 2026-04-28 05:17 2026-04-25 Show GitHub Exploit DB Packet Storm
2384 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: nfc: pn533: allocate rx skb before consuming bytes pn532_receive_buf() reports the number of accepted bytes to the serdev core. T… NVD-CWE-Other
CVE-2026-31660 2026-04-28 05:17 2026-04-25 Show GitHub Exploit DB Packet Storm
2385 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: net: altera-tse: fix skb leak on DMA mapping error in tse_start_xmit() When dma_map_single() fails in tse_start_xmit(), the funct… CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2026-31658 2026-04-28 05:17 2026-04-25 Show GitHub Exploit DB Packet Storm
2386 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: pmdomain: imx8mp-blk-ctrl: Keep the NOC_HDCP clock enabled Keep the NOC_HDCP clock always enabled to fix the potential hang cause… NVD-CWE-noinfo
CVE-2026-31655 2026-04-28 05:16 2026-04-25 Show GitHub Exploit DB Packet Storm
2387 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: mm/vma: fix memory leak in __mmap_region() commit 605f6586ecf7 ("mm/vma: do not leak memory when .mmap_prepare swaps the file") h… CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2026-31654 2026-04-28 05:16 2026-04-25 Show GitHub Exploit DB Packet Storm
2388 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: mm/damon/sysfs: dealloc repeat_call_control if damon_call() fails damon_call() for repeat_call_control of DAMON_SYSFS could fail … NVD-CWE-noinfo
CVE-2026-31653 2026-04-28 05:16 2026-04-25 Show GitHub Exploit DB Packet Storm
2389 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: mm/damon/stat: deallocate damon_call() failure leaking damon_ctx damon_stat_start() always allocates the module's damon_ctx objec… CWE-416
 Use After Free 		CVE-2026-31652 2026-04-28 05:16 2026-04-25 Show GitHub Exploit DB Packet Storm
2390 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: drm/xe: Fix missing runtime PM reference in ccs_mode_store ccs_mode_store() calls xe_gt_reset() which internally invokes xe_pm_ru… NVD-CWE-noinfo
CVE-2026-31547 2026-04-28 05:16 2026-04-25 Show GitHub Exploit DB Packet Storm