Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 20, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3001	7.8	重要 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2026-31528	2026-04-30 11:06	2026-04-22	Show	GitHub Exploit DB Packet Storm

3002	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける有効期限後のメモリの解放の欠如に関する脆弱性	CWE-401 有効期限後のメモリの解放の欠如	CVE-2026-31529	2026-04-30 11:06	2026-04-22	Show	GitHub Exploit DB Packet Storm

3003	7.8	重要 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-31530	2026-04-30 11:06	2026-04-22	Show	GitHub Exploit DB Packet Storm

3004	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-31531	2026-04-30 11:06	2026-04-23	Show	GitHub Exploit DB Packet Storm

3005	7.8	重要 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-31532	2026-04-30 11:05	2026-04-23	Show	GitHub Exploit DB Packet Storm

3006	9.8	緊急 Network	Linux	Linux Kernel	LinuxのLinux Kernelにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-31533	2026-04-30 11:05	2026-04-23	Show	GitHub Exploit DB Packet Storm

3007	4.7	警告 Local	Linux	Linux Kernel	LinuxのLinux KernelにおけるTime-of-check Time-of-use (TOCTOU) 競合状態の脆弱性	CWE-367 Time-of-check Time-of-use (TOCTOU) 競合状態	CVE-2026-31535	2026-04-30 11:05	2026-04-24	Show	GitHub Exploit DB Packet Storm

3008	9.8	緊急 Network	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-31536	2026-04-30 11:05	2026-04-24	Show	GitHub Exploit DB Packet Storm

3009	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-31537	2026-04-30 11:05	2026-04-24	Show	GitHub Exploit DB Packet Storm

3010	7.5	重要 Network	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-Other その他	CVE-2026-31538	2026-04-30 11:05	2026-04-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
316251	9.8	CRITICAL Network	vivotek	sd9364_firmware	UNSUPPORTED WHEN ASSIGNED A vulnerability was found in Vivotek SD9364 VVTK-0103f. It has been declared as critical. This vulnerability affects the function read of the component httpd. The mani…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2024-7441	2024-08-8 02:15	2024-08-4	Show	GitHub Exploit DB Packet Storm

316252	-		mozilla	firefox	Mozilla Firefox 1.0.7 and 1.5.0.1 allows remote attackers to cause a denial of service (crash) via an HTML tag with a large number of script action handlers such as onload and onmouseover, which trig…	NVD-CWE-Other	CVE-2006-1273	2024-08-8 02:15	2006-03-19	Show	GitHub Exploit DB Packet Storm

316253	-		digital_builder	nz_ecommerce	Cross-site scripting (XSS) vulnerability in index.php in NZ Ecommerce allows remote attackers to inject arbitrary web script or HTML via the action parameter. NOTE: the vendor has disputed this issu…	NVD-CWE-Other	CVE-2006-1096	2024-08-8 02:15	2006-03-9	Show	GitHub Exploit DB Packet Storm

316254	-		digital_builder	nz_ecommerce	Multiple SQL injection vulnerabilities in NZ Ecommerce allow remote attackers to execute arbitrary SQL commands via the (1) informationID or (2) ParentCategory parameter to index.php. NOTE: the vendo…	NVD-CWE-Other	CVE-2006-1098	2024-08-8 02:15	2006-03-9	Show	GitHub Exploit DB Packet Storm

316255	-		kwik-pay	kwik-pay_payroll	Kwik-Pay Payroll 4.2.20, and possibly other versions, stores the KwikPay.mdb database file with insecure permissions, which allows local users to obtain sensitive information such as employment and p…	NVD-CWE-Other	CVE-2006-1050	2024-08-8 02:15	2006-03-8	Show	GitHub Exploit DB Packet Storm

316256	-		virtual_communication_services	vpmi_enterprise	SQL injection vulnerability in VCS Virtual Program Management Intranet (VPMi) Enterprise 3.3 allows remote attackers to execute arbitrary SQL commands via the UpdateID0 parameter to Service_Requests.…	CWE-89 SQL Injection	CVE-2006-0897	2024-08-8 02:15	2006-02-25	Show	GitHub Exploit DB Packet Storm

316257	-		dotproject	dotproject	dotProject 2.0.1 and earlier allows remote attackers to obtain sensitive information via direct requests with an invalid baseDir to certain PHP scripts in the db directory, which reveal the path in a…	NVD-CWE-Other	CVE-2006-0754	2024-08-8 02:15	2006-02-18	Show	GitHub Exploit DB Packet Storm

316258	-		dotproject	dotproject	Multiple PHP remote file include vulnerabilities in dotProject 2.0.1 and earlier, when register_globals is enabled, allow remote attackers to execute arbitrary commands via the baseDir parameter in (…	NVD-CWE-Other	CVE-2006-0755	2024-08-8 02:15	2006-02-18	Show	GitHub Exploit DB Packet Storm

316259	-		dotproject	dotproject	dotProject 2.0.1 and earlier leaves (1) phpinfo.php and (2) check.php accessible under the /docs/ directory after installation, which allows remote attackers to obtain sensitive configuration informa…	NVD-CWE-Other	CVE-2006-0756	2024-08-8 02:15	2006-02-18	Show	GitHub Exploit DB Packet Storm

316260	-		wordpress	wordpress	Cross-site scripting (XSS) vulnerability in WordPress 2.0.0 allows remote attackers to inject arbitrary web script or HTML via scriptable attributes such as (1) onfocus and (2) onblur in the "author'…	NVD-CWE-Other	CVE-2006-0733	2024-08-8 02:15	2006-02-16	Show	GitHub Exploit DB Packet Storm