Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251	5.3	警告 Network	Node.js Foundation	Node.js	Node.js FoundationのNode.jsにおける不適切なデフォルトパーミッションに関する脆弱性	CWE-276 不適切なデフォルトパーミッション	CVE-2025-55132	2026-02-5 15:46	2026-01-20	Show	GitHub Exploit DB Packet Storm

252	7.5	重要 Network	OwnTone project	OwnTone	OwnTone projectのOwnToneにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2025-57155	2026-02-5 15:46	2026-01-20	Show	GitHub Exploit DB Packet Storm

253	6.5	警告 Network	Engineering Ingegneria Informatica	knowage	Engineering Ingegneria Informaticaのknowageにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2025-58441	2026-02-5 15:46	2026-01-7	Show	GitHub Exploit DB Packet Storm

254	8.7	重要 Network	Ultimate Fosters	Ultimate POS	Ultimate FostersのUltimate POSにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2025-60503	2026-02-5 15:46	2025-11-3	Show	GitHub Exploit DB Packet Storm

255	5.3	警告 Network	The Go Project	Go	The Go ProjectのGoにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2025-61730	2026-02-5 15:46	2026-01-28	Show	GitHub Exploit DB Packet Storm

256	4.3	警告 Network	webinarpress	webinarpress	WordPress用webinarpressにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2025-62972	2026-02-5 15:45	2025-10-27	Show	GitHub Exploit DB Packet Storm

257	7.5	重要 Network	oneflow	oneflow	oneflowにおけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2025-65886	2026-02-5 15:45	2026-01-28	Show	GitHub Exploit DB Packet Storm

258	6.5	警告 Network	oneflow	oneflow	oneflowにおけるゼロ除算に関する脆弱性	CWE-369 ゼロ除算	CVE-2025-65887	2026-02-5 15:45	2026-01-28	Show	GitHub Exploit DB Packet Storm

259	7.5	重要 Network	oneflow	oneflow	oneflowにおけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2025-65888	2026-02-5 15:45	2026-01-28	Show	GitHub Exploit DB Packet Storm

260	7.5	重要 Network	oneflow	oneflow	oneflowにおけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2025-65889	2026-02-5 15:45	2026-01-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
681	-	-	-	In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: Fix possible invalid memory access after FLR In the case that the first Function Level Reset (FLR) concludes cor… New	-	CVE-2026-31442	2026-04-24 01:17	2026-04-22	Show	GitHub Exploit DB Packet Storm

682	-	-	-	In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: Fix crash when the event log is disabled If reporting errors to the event log is not supported by the hardware, … New	-	CVE-2026-31443	2026-04-24 01:17	2026-04-22	Show	GitHub Exploit DB Packet Storm

683	-	-	-	In the Linux kernel, the following vulnerability has been resolved: ext4: reject mount if bigalloc with s_first_data_block != 0 bigalloc with s_first_data_block != 0 is not supported, reject mounti… New	-	CVE-2026-31447	2026-04-24 01:17	2026-04-22	Show	GitHub Exploit DB Packet Storm

684	-	-	-	In the Linux kernel, the following vulnerability has been resolved: ext4: replace BUG_ON with proper error handling in ext4_read_inline_folio Replace BUG_ON() with proper error handling when inline… New	-	CVE-2026-31451	2026-04-24 01:17	2026-04-22	Show	GitHub Exploit DB Packet Storm

685	-	-	-	In the Linux kernel, the following vulnerability has been resolved: xfs: avoid dereferencing log items after push callbacks After xfsaild_push_item() calls iop_push(), the log item may have been fr… New	-	CVE-2026-31453	2026-04-24 01:17	2026-04-22	Show	GitHub Exploit DB Packet Storm

686	-	-	-	In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free and NULL deref in smb_grant_oplock() smb_grant_oplock() has two issues in the oplock publication sequen… New	-	CVE-2026-31444	2026-04-24 01:17	2026-04-22	Show	GitHub Exploit DB Packet Storm

687	-	-	-	In the Linux kernel, the following vulnerability has been resolved: mm/damon/core: avoid use of half-online-committed context One major usage of damon_call() is online DAMON parameters update. It … New	-	CVE-2026-31445	2026-04-24 01:17	2026-04-22	Show	GitHub Exploit DB Packet Storm

688	-	-	-	In the Linux kernel, the following vulnerability has been resolved: ext4: fix use-after-free in update_super_work when racing with umount Commit b98535d09179 ("ext4: fix bug_on in start_this_handle… New	-	CVE-2026-31446	2026-04-24 01:17	2026-04-22	Show	GitHub Exploit DB Packet Storm

689	-	-	-	In the Linux kernel, the following vulnerability has been resolved: xfs: save ailp before dropping the AIL lock in push callbacks In xfs_inode_item_push() and xfs_qm_dquot_logitem_push(), the AIL l… New	-	CVE-2026-31454	2026-04-24 01:17	2026-04-22	Show	GitHub Exploit DB Packet Storm

690	-	-	-	In the Linux kernel, the following vulnerability has been resolved: mm/damon/sysfs: check contexts->nr in repeat_call_fn damon_sysfs_repeat_call_fn() calls damon_sysfs_upd_tuned_intervals(), damon_… New	-	CVE-2026-31457	2026-04-24 01:17	2026-04-22	Show	GitHub Exploit DB Packet Storm