Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 7, 2026, 4:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228711 4.3 警告 WordPress.org - WordPress 用の AndyBlue テーマの searchform.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-3239 2012-12-20 18:19 2007-06-14 Show GitHub Exploit DB Packet Storm
228712 6 警告 WordPress.org - WordPress のデフォルトテーマの functions.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-3238 2012-12-20 18:19 2007-06-14 Show GitHub Exploit DB Packet Storm
228713 6.8 警告 XOOPS - XOOPS 用の TinyContent モジュールにおける PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-3237 2012-12-20 18:19 2007-06-12 Show GitHub Exploit DB Packet Storm
228714 7.5 危険 XOOPS - XOOPS 用の Horoscope モジュールにおける PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-3236 2012-12-20 18:19 2007-06-14 Show GitHub Exploit DB Packet Storm
228715 5 警告 tec-it - TEC-IT TBarCode OCX ActiveX コントロール における任意のファイルを上書きされる脆弱性 - CVE-2007-3233 2012-12-20 18:19 2007-06-14 Show GitHub Exploit DB Packet Storm
228716 6.8 警告 simian systems inc - Idan Sofer PHP::HTML の phphtml.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-3230 2012-12-20 18:19 2007-06-14 Show GitHub Exploit DB Packet Storm
228717 6.8 警告 singapore - Singapore Gallery の index.php における重要な情報を取得される脆弱性 - CVE-2007-3229 2012-12-20 18:19 2007-06-14 Show GitHub Exploit DB Packet Storm
228718 6.8 警告 simian systems inc - Sitellite CMS における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-3228 2012-12-20 18:19 2007-06-14 Show GitHub Exploit DB Packet Storm
228719 4.3 警告 Ruby on Rails project - Ruby on Rails の to_json 関数におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-3227 2012-12-20 18:19 2007-06-14 Show GitHub Exploit DB Packet Storm
228720 6.4 警告 サン・マイクロシステムズ - slapd における特定のデータを変更される脆弱性 - CVE-2007-3225 2012-12-20 18:19 2007-06-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1991 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: Bluetooth: btintel: serialize btintel_hw_error() with hci_req_sync_lock btintel_hw_error() issues two __hci_cmd_sync() calls (HCI… CWE-416
 Use After Free 		CVE-2026-31500 2026-04-28 22:57 2026-04-22 Show GitHub Exploit DB Packet Storm
1992 9.8 CRITICAL
Network 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: net: ti: icssg-prueth: fix use-after-free of CPPI descriptor in RX path cppi5_hdesc_get_psdata() returns a pointer into the CPPI … CWE-416
 Use After Free 		CVE-2026-31501 2026-04-28 22:50 2026-04-22 Show GitHub Exploit DB Packet Storm
1993 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: s390/entry: Scrub r12 register on kernel entry Before commit f33f2d4c7c80 ("s390/bp: remove TIF_ISOLATE_BP"), all entry handlers … NVD-CWE-noinfo
CVE-2026-31482 2026-04-28 22:46 2026-04-22 Show GitHub Exploit DB Packet Storm
1994 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: s390/syscalls: Add spectre boundary for syscall dispatch table The s390 syscall number is directly controlled by userspace, but d… NVD-CWE-noinfo
CVE-2026-31483 2026-04-28 22:40 2026-04-22 Show GitHub Exploit DB Packet Storm
1995 7.1 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: io_uring/fdinfo: fix OOB read in SQE_MIXED wrap check __io_uring_show_fdinfo() iterates over pending SQEs and, for 128-byte SQEs … CWE-125
Out-of-bounds Read 		CVE-2026-31484 2026-04-28 22:39 2026-04-22 Show GitHub Exploit DB Packet Storm
1996 4.3 MEDIUM
Network 		- - A flaw was found in the OpenShift Container Platform build system. A user with the `edit` ClusterRole can inject arbitrary environment variables, such as `LD_PRELOAD` or `http_proxy`, into `docker-bu… CWE-426
 Untrusted Search Path 		CVE-2026-7309 2026-04-28 22:19 2026-04-28 Show GitHub Exploit DB Packet Storm
1997 5.3 MEDIUM
Network 		- - A vulnerability was detected in DV0x creative-ad-agent up to 751b9e5146604dc65049bd0f62dcbdad6212f8a3. Impacted is an unknown function of the file server/sdk-server.ts of the component creative-ad-ag… CWE-22
Path Traversal 		CVE-2026-7271 2026-04-28 22:19 2026-04-28 Show GitHub Exploit DB Packet Storm
1998 - - - P4 Server versions prior to 2026.1 are configured with insecure default settings that, when exposed to untrusted networks, allow unauthenticated attackers to create arbitrary user accounts, enumerate… CWE-1188
 Insecure Default Initialization of Resource 		CVE-2026-6043 2026-04-28 22:19 2026-04-24 Show GitHub Exploit DB Packet Storm
1999 8.8 HIGH
Network 		- - The ConsulRegistry in the camel-consul component (class org.apache.camel.component.consul.ConsulRegistry and its inner ConsulRegistryUtils.deserialize method) read Java-serialized values from the Con… CWE-502
 Deserialization of Untrusted Data 		CVE-2026-27172 2026-04-28 22:18 2026-04-27 Show GitHub Exploit DB Packet Storm
2000 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: spi: spi-fsl-lpspi: fix teardown order issue (UAF) There is a teardown order issue in the driver. The SPI controller is registere… CWE-416
 Use After Free 		CVE-2026-31485 2026-04-28 22:12 2026-04-22 Show GitHub Exploit DB Packet Storm