Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":April 29, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229531	10	危険	マイクロソフトアドビシステムズ Google	-	Adobe Flash Player におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-5274	2012-12-7 16:01	2012-11-6	Show	GitHub Exploit DB Packet Storm

229532	4.9	警告	シトリックス・システムズ	-	Xen におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2012-3433	2012-12-7 15:56	2012-08-9	Show	GitHub Exploit DB Packet Storm

229533	6	警告	Lars Hjemli	-	cgit の syntax-highlighting.sh における任意のコマンドを実行される脆弱性	CWE-Other その他	CVE-2012-4548	2012-12-7 15:52	2012-10-28	Show	GitHub Exploit DB Packet Storm

229534	4.3	警告	The phpMyAdmin Project	-	phpMyAdmin におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-5368	2012-12-7 15:42	2012-10-12	Show	GitHub Exploit DB Packet Storm

229535	3.5	注意	The phpMyAdmin Project	-	phpMyAdmin におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-5339	2012-12-7 15:41	2012-10-12	Show	GitHub Exploit DB Packet Storm

229536	6.8	警告	レッドハット	-	IcedTea-Web の IcedTeaScriptablePluginObject.cc における重要な情報を取得される脆弱性	CWE-189 数値処理の問題	CVE-2012-4540	2012-12-7 15:40	2012-11-7	Show	GitHub Exploit DB Packet Storm

229537	5.6	警告	シトリックス・システムズ	-	Xen および Citrix XenServer におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2012-3498	2012-12-7 15:38	2012-09-5	Show	GitHub Exploit DB Packet Storm

229538	6.1	警告	シトリックス・システムズ	-	Xen および Citrix XenServer におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2012-3495	2012-12-7 15:37	2012-09-5	Show	GitHub Exploit DB Packet Storm

229539	4.7	警告	シトリックス・システムズ	-	Xen および Citrix XenServer におけるサービス運用妨害 (DoS) の脆弱性	CWE-16 環境設定	CVE-2012-3496	2012-12-7 15:34	2012-09-5	Show	GitHub Exploit DB Packet Storm

229540	2.1	注意	シトリックス・システムズ	-	Xen および Citrix XenServer におけるサービス運用妨害 (ホストクラッシュ) の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-3494	2012-12-7 15:32	2012-09-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 29, 2026, 4:51 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
171	2.4	LOW Network	-	-	A vulnerability was found in SourceCodester Pharmacy Sales and Inventory System 1.0. Affected is an unknown function of the file /index.php?page=product. Performing a manipulation of the argument ID … New	CWE-79 CWE-94 Cross-site Scripting Code Injection	CVE-2026-7269	2026-04-28 22:19	2026-04-28	Show	GitHub Exploit DB Packet Storm

172	-		-	-	P4 Server versions prior to 2026.1 are configured with insecure default settings that, when exposed to untrusted networks, allow unauthenticated attackers to create arbitrary user accounts, enumerate… Update	CWE-1188 Insecure Default Initialization of Resource	CVE-2026-6043	2026-04-28 22:19	2026-04-24	Show	GitHub Exploit DB Packet Storm

173	-		-	-	An authorization vulnerability in MphRx's Minerva V3.6.0, specifically in the '/minerva/moUser/update' endpoint, could allow an authenticated user with user modification privileges to escalate their … New	CWE-285 Improper Authorization	CVE-2026-5781	2026-04-28 22:19	2026-04-28	Show	GitHub Exploit DB Packet Storm

174	-		-	-	An insecure direct object reference (IDOR) vulnerability in MphRx's Minerva V3.6.0, specifically in the endpoint '/minerva/moUser/show/'. If this vulnerability is successfully exploited, an authentic… New	CWE-284 Improper Access Control	CVE-2026-5780	2026-04-28 22:19	2026-04-28	Show	GitHub Exploit DB Packet Storm

175	-		-	-	An insecure direct object reference (IDOR) vulnerability in MphRx's Minerva V3.6.0, specifically in the '/minerva/user/updateUserProfile' endpoint. This allows an authenticated user to modify the inf… New	CWE-284 Improper Access Control	CVE-2026-5779	2026-04-28 22:19	2026-04-28	Show	GitHub Exploit DB Packet Storm

176	8.8	HIGH Network	-	-	The ConsulRegistry in the camel-consul component (class org.apache.camel.component.consul.ConsulRegistry and its inner ConsulRegistryUtils.deserialize method) read Java-serialized values from the Con… New	CWE-502 Deserialization of Untrusted Data	CVE-2026-27172	2026-04-28 22:18	2026-04-27	Show	GitHub Exploit DB Packet Storm

177	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: spi: spi-fsl-lpspi: fix teardown order issue (UAF) There is a teardown order issue in the driver. The SPI controller is registere… Update	CWE-416 Use After Free	CVE-2026-31485	2026-04-28 22:12	2026-04-22	Show	GitHub Exploit DB Packet Storm

178	7.1	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: hwmon: (pmbus/core) Protect regulator operations with mutex The regulator operations pmbus_regulator_get_voltage(), pmbus_regulat… Update	CWE-667 Improper Locking	CVE-2026-31486	2026-04-28 22:06	2026-04-22	Show	GitHub Exploit DB Packet Storm

179	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: spi: use generic driver_override infrastructure When a driver is probed through __driver_attach(), the bus' match() callback is c… Update	CWE-667 Improper Locking	CVE-2026-31487	2026-04-28 22:05	2026-04-22	Show	GitHub Exploit DB Packet Storm

180	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Do not skip unrelated mode changes in DSC validation Starting with commit 17ce8a6907f7 ("drm/amd/display: Add ds… Update	CWE-416 Use After Free	CVE-2026-31488	2026-04-28 21:58	2026-04-22	Show	GitHub Exploit DB Packet Storm