Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":April 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228821 6.8 警告 sunbelt - SKPF におけるトロイの木馬 iphlpapi.dll を提供される脆弱性 - CVE-2007-0081 2012-12-20 18:19 2007-01-5 Show GitHub Exploit DB Packet Storm
228822 7.8 危険 rblog - rblog におけるデータベースをダウンロードされる脆弱性 - CVE-2007-0079 2012-12-20 18:19 2007-01-5 Show GitHub Exploit DB Packet Storm
228823 10 危険 VMware - EMC VMware Workstation などの DHCP サーバにおける整数アンダーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2007-0063 2012-12-20 18:19 2007-09-21 Show GitHub Exploit DB Packet Storm
228824 10 危険 VMware - EMC VMware Workstation などの SC dhcpd および DHCP サーバにおける整数オーバーフローの脆弱性 CWE-119
CWE-189
CVE-2007-0062 2012-12-20 18:19 2007-09-21 Show GitHub Exploit DB Packet Storm
228825 10 危険 VMware - EMC VMware Workstation などの DHCP サーバにおける任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2007-0061 2012-12-20 18:19 2007-09-21 Show GitHub Exploit DB Packet Storm
228826 7.5 危険 vizayn haber - Vizayn Haber の haberdetay.asp における SQL インジェクションの脆弱性 - CVE-2007-0052 2012-12-20 18:19 2007-01-4 Show GitHub Exploit DB Packet Storm
228827 6.8 警告 VideoLAN - VideoLAN VLC の CDDA プラグイなどにおけるフォーマットストリングの脆弱性 CWE-134
書式文字列の問題 		CVE-2007-0017 2012-12-20 18:19 2007-01-2 Show GitHub Exploit DB Packet Storm
228828 4.4 警告 サン・マイクロシステムズ - ChainKey Java Code Protection における Java クラスファイルをデコンパイルされる脆弱性 CWE-310
暗号の問題 		CVE-2007-0014 2012-12-20 18:19 2007-01-16 Show GitHub Exploit DB Packet Storm
228829 7.8 危険 Canonical - Ubuntu 上で稼動する Linux Kernel の skge ドライバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2006-7229 2012-12-20 18:19 2007-11-14 Show GitHub Exploit DB Packet Storm
228830 7.8 危険 SAP - SAP SAPLPD におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-7220 2012-12-20 18:19 2007-07-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 30, 2026, 4:58 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
811 5.1 MEDIUM
Local 		- - uriparser before 1.0.1 has numeric truncation in text range comparison, if an application accepts URIs with a length in gigabytes. New CWE-197
 Numeric Truncation Error 		CVE-2026-42371 2026-04-28 03:57 2026-04-27 Show GitHub Exploit DB Packet Storm
812 - - - OPPO Wallet APP contains a trusted domain validation flaw that allows attackers to bypass protected interface access restrictions, which may lead to account token hijacking and sensitive information … New CWE-346
 Origin Validation Error 		CVE-2026-22077 2026-04-28 03:57 2026-04-27 Show GitHub Exploit DB Packet Storm
813 - - - An improper handling of the length parameter inconsistency vulnerability has been identified in Moxa’s Secure Router. Because of improper validation of length parameters in the HTTPS management inter… New CWE-130
 Improper Handling of Length Parameter Inconsistency 		CVE-2026-3868 2026-04-28 03:57 2026-04-27 Show GitHub Exploit DB Packet Storm
814 8.8 HIGH
Network 		- - A security flaw has been discovered in Tenda HG3 2.0 300003070. This vulnerability affects the function formgponConf of the file /boaform/admin/formgponConf. The manipulation of the argument fmgpon_l… New CWE-77
CWE-78
Command Injection
OS Command  		CVE-2026-7096 2026-04-28 03:57 2026-04-27 Show GitHub Exploit DB Packet Storm
815 8.8 HIGH
Network 		- - A weakness has been identified in Tenda F456 1.0.0.5. This issue affects the function fromwebExcptypemanFilter of the file /goform/webExcptypemanFilter of the component httpd. This manipulation of th… New CWE-119
CWE-120
Incorrect Access of Indexable Resource ('Range Error') 
Classic Buffer Overflow 		CVE-2026-7097 2026-04-28 03:57 2026-04-27 Show GitHub Exploit DB Packet Storm
816 9.8 CRITICAL
Network 		- - Apache MINA's AbstractIoBuffer.resolveClass() contains two branches, one of them (for static classes or primitive types) does not check the class at all, bypassing the classname allowlist and allowin… New CWE-502
 Deserialization of Untrusted Data 		CVE-2026-41635 2026-04-28 03:57 2026-04-27 Show GitHub Exploit DB Packet Storm
817 9.8 CRITICAL
Network 		- - The fix for CVE-2024-52046 in Apache MINA AbstractIoBuffer.getObject() was incomplete. The classname allowlist of classes allowed to be deserialized was applied too late after a static initializer in… New CWE-502
 Deserialization of Untrusted Data 		CVE-2026-41409 2026-04-28 03:57 2026-04-27 Show GitHub Exploit DB Packet Storm
818 8.8 HIGH
Network 		- - A vulnerability was detected in Tenda HG3 2.0. The impacted element is an unknown function of the file /boaform/formCountrystr. The manipulation of the argument countrystr results in os command injec… New CWE-77
CWE-78
Command Injection
OS Command  		CVE-2026-7119 2026-04-28 03:57 2026-04-27 Show GitHub Exploit DB Packet Storm
819 - - - Authenticated user can bypass authorization in Ribblr - Crochet & Knitting iOS application New CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2025-15626 2026-04-28 03:57 2026-04-27 Show GitHub Exploit DB Packet Storm
820 - - - Allocation of Resources Without Limits or Throttling vulnerability in elixir-plug plug_cowboy allows unauthenticated remote denial of service via atom table exhaustion. Plug.Cowboy.Conn.conn/1 in li… New CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2026-32688 2026-04-28 03:57 2026-04-27 Show GitHub Exploit DB Packet Storm