Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":April 28, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229201	2.6	注意	CutePHP	-	CuteNews の index.PHP におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-3661	2012-12-20 18:02	2006-07-18	Show	GitHub Exploit DB Packet Storm

229202	5	警告	マイクロソフト	-	Microsoft Internet Explorer 6 におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-3659	2012-12-20 18:02	2006-07-18	Show	GitHub Exploit DB Packet Storm

229203	5	警告	マイクロソフト	-	Microsoft Internet Explorer 6 におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-3658	2012-12-20 18:02	2006-07-18	Show	GitHub Exploit DB Packet Storm

229204	5	警告	マイクロソフト	-	Microsoft Internet Explorer 6 におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-3657	2012-12-20 18:02	2006-07-18	Show	GitHub Exploit DB Packet Storm

229205	2.6	注意	マイクロソフト	-	Microsoft Works Spreadsheet の wksss.exe におけるバッファオーバーフローの脆弱性	-	CVE-2006-3654	2012-12-20 18:02	2006-07-18	Show	GitHub Exploit DB Packet Storm

229206	2.6	注意	マイクロソフト	-	Microsoft Works Spreadsheet の wksss.exe におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-3653	2012-12-20 18:02	2006-07-18	Show	GitHub Exploit DB Packet Storm

229207	7.5	危険	マイクロソフト	-	Microsoft ISA Server におけるファイル拡張子フィルタを回避される脆弱性	-	CVE-2006-3652	2012-12-20 18:02	2006-07-18	Show	GitHub Exploit DB Packet Storm

229208	6.5	警告	ossp	-	OSSP shiela における CVS サーバ上で任意のコマンドを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2006-3633	2012-12-20 18:02	2006-07-26	Show	GitHub Exploit DB Packet Storm

229209	5	警告	flv	-	FLV Player における重要な情報を取得される脆弱性	-	CVE-2006-3625	2012-12-20 18:02	2006-07-18	Show	GitHub Exploit DB Packet Storm

229210	4.3	警告	flv	-	FLV Player におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-3624	2012-12-20 18:02	2006-07-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 29, 2026, 4:51 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
321	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: xfs: scrub: unlock dquot before early return in quota scrub xchk_quota_item can return early after calling xchk_fblock_process_er… Update	NVD-CWE-noinfo	CVE-2026-31556	2026-04-28 05:14	2026-04-25	Show	GitHub Exploit DB Packet Storm

322	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: LoongArch: Fix missing NULL checks for kstrdup() 1. Replace "of_find_node_by_path("/")" with "of_root" to avoid multiple calls to… Update	CWE-476 NULL Pointer Dereference	CVE-2026-31559	2026-04-28 05:13	2026-04-25	Show	GitHub Exploit DB Packet Storm

323	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: wifi: rt2x00usb: fix devres lifetime USB drivers bind to USB interfaces and any device managed resources should have their lifeti… Update	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2026-31672	2026-04-28 05:11	2026-04-25	Show	GitHub Exploit DB Packet Storm

324	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: xfrm_user: fix info leak in build_report() struct xfrm_user_report is a __u8 proto field followed by a struct xfrm_selector which… Update	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2026-31671	2026-04-28 05:11	2026-04-25	Show	GitHub Exploit DB Packet Storm

325	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: net: rfkill: prevent unlimited numbers of rfkill events from being created Userspace can create an unlimited number of rfkill eve… Update	NVD-CWE-noinfo	CVE-2026-31670	2026-04-28 05:10	2026-04-25	Show	GitHub Exploit DB Packet Storm

326	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: xfrm: clear trailing padding in build_polexpire() build_expire() clears the trailing padding bytes of struct xfrm_user_expire aft… Update	NVD-CWE-noinfo	CVE-2026-31664	2026-04-28 04:59	2026-04-25	Show	GitHub Exploit DB Packet Storm

327	9.1	CRITICAL Network	microsoft	asp.net_core	Improper verification of cryptographic signature in ASP.NET Core allows an unauthorized attacker to elevate privileges over a network. Update	CWE-347 Improper Verification of Cryptographic Signature	CVE-2026-40372	2026-04-28 04:57	2026-04-22	Show	GitHub Exploit DB Packet Storm

328	3.7	LOW Network	bacnetstack	bacnet_stack	BACnet Stack is a BACnet open source protocol stack C library for embedded systems. Prior to 1.4.3, decode_signed32() in src/bacnet/bacint.c reconstructs a 32-bit signed integer from four APDU bytes … Update	CWE-758 Reliance on Undefined, Unspecified, or Implementation-Defined Behavior	CVE-2026-40279	2026-04-28 04:49	2026-04-22	Show	GitHub Exploit DB Packet Storm

329	6.8	MEDIUM Network	oauth2_proxy_project	oauth2_proxy	OAuth2 Proxy is a reverse proxy that provides authentication using OAuth2 providers. Prior to 7.15.2, an authorization bypass exists in OAuth2 Proxy as part of the email_domain enforcement option. An… Update	CWE-863 Incorrect Authorization	CVE-2026-40574	2026-04-28 04:49	2026-04-22	Show	GitHub Exploit DB Packet Storm

330	7.5	HIGH Network	ransomlook	ransomlook	RansomLook is a tool to monitor Ransomware groups and markets and extract their victims. Prior to 1.9.0, the API in the affected application improperly filters private location entries in website/web… Update	CWE-200 Information Exposure	CVE-2026-40584	2026-04-28 04:47	2026-04-22	Show	GitHub Exploit DB Packet Storm