Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":April 29, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
250691	6.8	警告	BlackBerry	-	BlackBerry Enterprise Server の PDF Distiller コンポーネントにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-2602	2011-03-30 14:09	2010-12-14	Show	GitHub Exploit DB Packet Storm

250692	7.6	危険	BlackBerry	-	複数の BlackBerry 製品の PDF Distiller におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-2601	2011-03-30 14:00	2010-10-13	Show	GitHub Exploit DB Packet Storm

250693	9.3	危険	アドビシステムズレッドハットオラクル	-	Adobe Flash Player における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-0608	2011-03-30 13:36	2011-02-8	Show	GitHub Exploit DB Packet Storm

250694	9.3	危険	アドビシステムズレッドハットオラクル	-	Adobe Flash Player における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-0607	2011-03-30 13:35	2011-02-8	Show	GitHub Exploit DB Packet Storm

250695	9.3	危険	アドビシステムズレッドハットオラクル	-	Adobe Flash Player における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-0578	2011-03-30 13:34	2011-02-8	Show	GitHub Exploit DB Packet Storm

250696	9.3	危険	アドビシステムズレッドハットオラクル	-	Adobe Flash Player における任意のコードを実行される脆弱性	CWE-Other その他	CVE-2011-0577	2011-03-30 13:33	2011-02-8	Show	GitHub Exploit DB Packet Storm

250697	9.3	危険	アドビシステムズレッドハットオラクル	-	Adobe Flash Player における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-0574	2011-03-30 13:32	2011-02-8	Show	GitHub Exploit DB Packet Storm

250698	9.3	危険	アドビシステムズレッドハットオラクル	-	Adobe Flash Player における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-0573	2011-03-30 13:31	2011-02-8	Show	GitHub Exploit DB Packet Storm

250699	9.3	危険	アドビシステムズレッドハットオラクル	-	Adobe Flash Player における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-0572	2011-03-30 12:16	2011-02-8	Show	GitHub Exploit DB Packet Storm

250700	9.3	危険	アドビシステムズレッドハットオラクル	-	Adobe Flash Player における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-0571	2011-03-30 12:15	2011-02-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 29, 2026, 4:51 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
111	5.4	MEDIUM Network	-	-	The Check & Log Email WordPress plugin before 2.0.13 does not properly handle email replacement, which could allow unauthenticated users to perform Stored XSS attacks when the email encoder setting … New	-	CVE-2026-5306	2026-04-29 00:16	2026-04-28	Show	GitHub Exploit DB Packet Storm

112	3.7	LOW Network	-	-	The raw message of every server-side AuthenticationException is returned to the unauthenticated remote caller in the gRPC status description. This allows an attacker to obtain information about the a… New	CWE-209 Information Exposure Through an Error Message	CVE-2026-40969	2026-04-29 00:16	2026-04-29	Show	GitHub Exploit DB Packet Storm

113	4.2	MEDIUM Network	-	-	When an authenticated user is denied access to a gRPC method, their authenticated identity remains bound to the gRPC worker thread and can be inherited by a subsequent unauthenticated request on the … New	CWE-653 Improper Isolation or Compartmentalization	CVE-2026-40968	2026-04-29 00:16	2026-04-29	Show	GitHub Exploit DB Packet Storm

114	-		-	-	GNU nano creates the user’s ~/.local directory with overly permissive permissions when the directory does not exist yet. On first use of features requiring Cross-Desktop Group (XDG) data storage, nan… New	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2026-40556	2026-04-29 00:16	2026-04-29	Show	GitHub Exploit DB Packet Storm

115	7.8	HIGH Local	-	-	A flaw was found in the X.Org X server's XKB key types request validation. A local attacker could send a specially crafted request to the X server, leading to an out-of-bounds memory access vulnerabi… Update	CWE-125 Out-of-bounds Read	CVE-2026-34003	2026-04-29 00:16	2026-04-24	Show	GitHub Exploit DB Packet Storm

116	7.8	HIGH Local	-	-	A flaw was found in the X.Org X server. This use-after-free vulnerability occurs in the XSYNC fence triggering logic, specifically within the miSyncTriggerFence() function. An attacker with access to… Update	CWE-825 Expired Pointer Dereference	CVE-2026-34001	2026-04-29 00:16	2026-04-24	Show	GitHub Exploit DB Packet Storm

117	7.8	HIGH Local	-	-	A flaw was found in the X.Org X server. This integer underflow vulnerability, specifically in the XKB compatibility map handling, allows an attacker with local or remote X11 server access to trigger … Update	CWE-191 Integer Underflow (Wrap or Wraparound)	CVE-2026-33999	2026-04-29 00:16	2026-04-24	Show	GitHub Exploit DB Packet Storm

118	7.5	HIGH Network	-	-	A null pointer dereference vulnerability exists in the RTSP service of the MERCURY MIPC252W 1.0.5 Build 230306 Rel.79931n. During the processing of a SETUP request for the path rtsp://<IP>:554/stream… New	CWE-476 NULL Pointer Dereference	CVE-2026-31256	2026-04-29 00:16	2026-04-28	Show	GitHub Exploit DB Packet Storm

119	5.4	MEDIUM Network	tenda	ac18_firmware	A command injection vulnerability exists in Tenda AC18 V15.03.05.05_multi. The vulnerability is located in the /goform/SetSambaCfg interface, where improper handling of the guestuser parameter allows… New	CWE-77 Command Injection	CVE-2026-31255	2026-04-29 00:16	2026-04-28	Show	GitHub Exploit DB Packet Storm

120	6.1	MEDIUM Network	-	-	A reflected cross-site scripting (XSS) vulnerability exists in WebFileSys version before 2.32.0 and fixed in v.2.32.0. User-controlled input is reflected into HTML and JavaScript contexts without pro… New	CWE-79 Cross-site Scripting	CVE-2026-29971	2026-04-29 00:16	2026-04-28	Show	GitHub Exploit DB Packet Storm