Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 3, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
250421 4.3 警告 Eclime - Eclime の login.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4852 2011-09-30 14:15 2011-09-27 Show GitHub Exploit DB Packet Storm
250422 7.5 危険 Zoho Corporation - ManageEngine EventLog Analyzer の Syslog サーバにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-4840 2011-09-30 14:13 2011-09-27 Show GitHub Exploit DB Packet Storm
250423 4.3 警告 Zoho Corporation - ManageEngine EventLog Analyzer におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4841 2011-09-30 14:13 2011-09-27 Show GitHub Exploit DB Packet Storm
250424 4.3 警告 AXScripts - AXScripts AxsLinks の addlink.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4848 2011-09-30 14:11 2011-09-27 Show GitHub Exploit DB Packet Storm
250425 7.5 危険 MH Products - MH Products MHP Downloadshop の view_item.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4847 2011-09-30 14:11 2011-09-27 Show GitHub Exploit DB Packet Storm
250426 7.5 危険 MH Products - MH Products Pay Pal Shop Digital の view_item.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4846 2011-09-30 14:11 2011-09-27 Show GitHub Exploit DB Packet Storm
250427 7.5 危険 MH Products - MH Products Projekt Shop における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4845 2011-09-30 14:10 2011-09-27 Show GitHub Exploit DB Packet Storm
250428 7.5 危険 MH Products - MH Products Easy Online Shop の content.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4844 2011-09-30 14:10 2011-09-27 Show GitHub Exploit DB Packet Storm
250429 7.5 危険 PHP Web Scripts - PHP Web Scripts Ad Manager Pro の website-page.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4843 2011-09-30 14:09 2011-09-27 Show GitHub Exploit DB Packet Storm
250430 7.5 危険 MH Products - MHP DownloadScript の admin/login.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4842 2011-09-30 14:09 2011-09-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 3, 2026, 4:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
851 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: PCI: endpoint: pci-epf-vntb: Remove duplicate resource teardown epf_ntb_epc_destroy() duplicates the teardown that the caller is … NVD-CWE-noinfo
CVE-2026-31594 2026-04-29 23:27 2026-04-25 Show GitHub Exploit DB Packet Storm
852 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: PCI: endpoint: pci-epf-vntb: Stop cmd_handler work in epf_ntb_epc_cleanup Disable the delayed work before clearing BAR mappings a… NVD-CWE-noinfo
CVE-2026-31595 2026-04-29 23:22 2026-04-25 Show GitHub Exploit DB Packet Storm
853 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: ocfs2: handle invalid dinode in ocfs2_group_extend [BUG] kernel BUG at fs/ocfs2/resize.c:308! Oops: invalid opcode: 0000 [#1] SMP… NVD-CWE-noinfo
CVE-2026-31596 2026-04-29 23:18 2026-04-25 Show GitHub Exploit DB Packet Storm
854 7.8 HIGH
Local 		- - A flaw was found in the X.Org X server's XKB key types request validation. A local attacker could send a specially crafted request to the X server, leading to an out-of-bounds memory access vulnerabi… CWE-125
Out-of-bounds Read 		CVE-2026-34003 2026-04-29 23:16 2026-04-24 Show GitHub Exploit DB Packet Storm
855 7.8 HIGH
Local 		- - A flaw was found in the X.Org X server. This use-after-free vulnerability occurs in the XSYNC fence triggering logic, specifically within the miSyncTriggerFence() function. An attacker with access to… CWE-825
 Expired Pointer Dereference 		CVE-2026-34001 2026-04-29 23:16 2026-04-24 Show GitHub Exploit DB Packet Storm
856 7.8 HIGH
Local 		- - A flaw was found in the X.Org X server. This integer underflow vulnerability, specifically in the XKB compatibility map handling, allows an attacker with local or remote X11 server access to trigger … CWE-191
 Integer Underflow (Wrap or Wraparound) 		CVE-2026-33999 2026-04-29 23:16 2026-04-24 Show GitHub Exploit DB Packet Storm
857 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix use-after-free in ocfs2_fault() when VM_FAULT_RETRY filemap_fault() may drop the mmap_lock before returning VM_FAULT_R… CWE-416
 Use After Free 		CVE-2026-31597 2026-04-29 23:15 2026-04-25 Show GitHub Exploit DB Packet Storm
858 5.3 MEDIUM
Adjacent 		opentelemetry opentelemetry OpenTelemetry dotnet is a dotnet telemetry framework. From 1.13.1 to before 1.15.2, When exporting telemetry over gRPC using the OpenTelemetry Protocol (OTLP), the exporter may parse a server-provide… CWE-789
 Memory Allocation with Excessive Size Value 		CVE-2026-40891 2026-04-29 23:15 2026-04-24 Show GitHub Exploit DB Packet Storm
859 5.4 MEDIUM
Network 		openclaw openclaw OpenClaw before 2026.3.31 fails to terminate active WebSocket sessions when rotating device tokens. Attackers with previously compromised credentials can maintain unauthorized access through existing… CWE-613
 Insufficient Session Expiration 		CVE-2026-41356 2026-04-29 23:08 2026-04-24 Show GitHub Exploit DB Packet Storm
860 7.1 HIGH
Network 		openclaw openclaw OpenClaw before 2026.3.28 contains an SSRF guard bypass vulnerability that fails to block four IPv6 special-use ranges. Attackers can exploit this by crafting URLs targeting internal or non-routable … CWE-184
CWE-918
 Incomplete Blacklist
Server-Side Request Forgery (SSRF)  		CVE-2026-41361 2026-04-29 23:08 2026-04-24 Show GitHub Exploit DB Packet Storm