Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":April 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229541 7.5 危険 web3king - Web3news の security/include/_class.security.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4452 2012-12-20 18:02 2006-08-30 Show GitHub Exploit DB Packet Storm
229542 5.1 警告 phpBB - PHPBB の usercp_avatar.php における Web のプロキシとしてサーバが使用される脆弱性 - CVE-2006-4450 2012-12-20 18:02 2006-08-29 Show GitHub Exploit DB Packet Storm
229543 7.2 危険 X.Org Foundation - libX11 などを含む X.Org および XFree86 における権限を取得される脆弱性 - CVE-2006-4447 2012-12-20 18:02 2006-08-29 Show GitHub Exploit DB Packet Storm
229544 7.5 危険 venture nine - Tagger LE における任意の PHP コードを実行される脆弱性 - CVE-2006-4437 2012-12-20 18:02 2006-09-14 Show GitHub Exploit DB Packet Storm
229545 7.5 危険 Zend Technologies Ltd. - Zend Platform におけるディレクトリトラバーサルの脆弱性 - CVE-2006-4432 2012-12-20 18:02 2006-08-28 Show GitHub Exploit DB Packet Storm
229546 7.5 危険 Zend Technologies Ltd. - Zend Platform の Session Clustering Daemon および mod_cluster モジュールにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2006-4431 2012-12-20 18:02 2006-08-28 Show GitHub Exploit DB Packet Storm
229547 4.3 警告 yapig - YaPIG の template/default/thanks_comment.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-4421 2012-12-20 18:02 2006-08-28 Show GitHub Exploit DB Packet Storm
229548 7.5 危険 promanager - ProManager の note.php における SQL インジェクションの脆弱性 - CVE-2006-4419 2012-12-20 18:02 2006-08-28 Show GitHub Exploit DB Packet Storm
229549 4 警告 wikepage - Wikepage Opus の index.php におけるディレクトリトラバーサルの脆弱性 - CVE-2006-4418 2012-12-20 18:02 2006-08-28 Show GitHub Exploit DB Packet Storm
229550 7.5 危険 XOOPS - Xoops の edituser.php における SQL インジェクションの脆弱性 - CVE-2006-4417 2012-12-20 18:02 2006-08-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 30, 2026, 4:58 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
341 7.3 HIGH
Network 		- - A flaw has been found in eiceblue spire-pdf-mcp-server 0.1.1. This impacts the function get_pdf_path of the file src/spire_pdf_mcp/server.py of the component PDF File Handler. Executing a manipulatio… New CWE-22
Path Traversal 		CVE-2026-7315 2026-04-29 10:00 2026-04-29 Show GitHub Exploit DB Packet Storm
342 5.9 MEDIUM
Local 		- - A vulnerability was detected in elie mcp-project 0.1.0. The affected element is the function search_papers of the file research_server.py. The manipulation of the argument topic results in path trave… New CWE-22
Path Traversal 		CVE-2026-7318 2026-04-29 10:00 2026-04-29 Show GitHub Exploit DB Packet Storm
343 5.6 MEDIUM
Network 		- - A security vulnerability has been detected in Xuxueli xxl-job up to 3.3.2. The impacted element is an unknown function of the file xxl-job-admin/src/main/java/com/xxl/job/admin/scheduler/openapi/Open… New CWE-320
CWE-321
 Key Management Errors
 Use of Hard-coded Cryptographic Key 		CVE-2026-7306 2026-04-29 10:00 2026-04-29 Show GitHub Exploit DB Packet Storm
344 7.3 HIGH
Network 		- - A vulnerability has been found in eiliyaabedini aider-mcp up to 667b914301aada695aab0e46d1fb3a7d5e32c8af. Affected is an unknown function of the file aider_mcp.py of the component code_with_ai. The m… New CWE-74
CWE-77
Injection
Command Injection 		CVE-2026-7316 2026-04-29 10:00 2026-04-29 Show GitHub Exploit DB Packet Storm
345 5.0 MEDIUM
Network 		- - A vulnerability was found in Grav CMS up to 1.7.49.5/2.0.0-beta.1. Affected by this vulnerability is the function FileCache::doGet of the file system/src/Grav/Framework/Cache/Adapter/FileCache.php of… New CWE-20
CWE-502
 Improper Input Validation 
 Deserialization of Untrusted Data 		CVE-2026-7317 2026-04-29 10:00 2026-04-29 Show GitHub Exploit DB Packet Storm
346 7.3 HIGH
Network 		- - A flaw has been found in elinsky execution-system-mcp 0.1.0. The impacted element is the function _get_context_file_path of the file src/execution_system_mcp/server.py of the component add_action Too… New CWE-22
Path Traversal 		CVE-2026-7319 2026-04-29 10:00 2026-04-29 Show GitHub Exploit DB Packet Storm
347 - - - Use after free in ANGLE in Google Chrome prior to 147.0.7727.138 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (C… New CWE-416
 Use After Free 		CVE-2026-7359 2026-04-29 08:16 2026-04-29 Show GitHub Exploit DB Packet Storm
348 - - - Use after free in Animation in Google Chrome prior to 147.0.7727.138 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High) New CWE-416
 Use After Free 		CVE-2026-7358 2026-04-29 08:16 2026-04-29 Show GitHub Exploit DB Packet Storm
349 - - - Use after free in GPU in Google Chrome prior to 147.0.7727.138 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. (Chro… New CWE-416
 Use After Free 		CVE-2026-7357 2026-04-29 08:16 2026-04-29 Show GitHub Exploit DB Packet Storm
350 - - - Use after free in Navigation in Google Chrome prior to 147.0.7727.138 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: High) New CWE-416
 Use After Free 		CVE-2026-7356 2026-04-29 08:16 2026-04-29 Show GitHub Exploit DB Packet Storm