Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 2, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
301	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける有効期限後のメモリの解放の欠如に関する脆弱性 New	CWE-401 有効期限後のメモリの解放の欠如	CVE-2026-31654	2026-04-30 12:32	2026-04-24	Show	GitHub Exploit DB Packet Storm

302	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性 New	CWE-noinfo 情報不足	CVE-2026-31655	2026-04-30 12:32	2026-04-24	Show	GitHub Exploit DB Packet Storm

303	7.8	重要 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける整数アンダーフローの脆弱性 New	CWE-191 整数アンダーフロー	CVE-2026-31656	2026-04-30 12:32	2026-04-24	Show	GitHub Exploit DB Packet Storm

304	9.8	緊急 Network	Linux	Linux Kernel	LinuxのLinux KernelにおけるNULL ポインタデリファレンスに関する脆弱性 New	CWE-476 NULL ポインタデリファレンス	CVE-2026-31657	2026-04-30 12:32	2026-04-24	Show	GitHub Exploit DB Packet Storm

305	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける有効期限後のメモリの解放の欠如に関する脆弱性 New	CWE-401 有効期限後のメモリの解放の欠如	CVE-2026-31658	2026-04-30 12:32	2026-04-24	Show	GitHub Exploit DB Packet Storm

306	9.8	緊急 Network	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性 New	CWE-noinfo 情報不足	CVE-2026-31659	2026-04-30 12:32	2026-04-24	Show	GitHub Exploit DB Packet Storm

307	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性 New	CWE-Other その他	CVE-2026-31660	2026-04-30 12:31	2026-04-24	Show	GitHub Exploit DB Packet Storm

308	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性 New	CWE-noinfo 情報不足	CVE-2026-31661	2026-04-30 12:31	2026-04-24	Show	GitHub Exploit DB Packet Storm

309	7.5	重要 Network	Linux	Linux Kernel	LinuxのLinux Kernelにおける整数アンダーフローの脆弱性 New	CWE-191 整数アンダーフロー	CVE-2026-31662	2026-04-30 12:31	2026-04-24	Show	GitHub Exploit DB Packet Storm

310	7.8	重要 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性 New	CWE-noinfo 情報不足	CVE-2026-31663	2026-04-30 12:31	2026-04-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 3, 2026, 4:06 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
313391	-	jcink.com	textfilebb	Multiple cross-site scripting (XSS) vulnerabilities in textfileBB 1.0 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) mess and (2) user parameters in messanger.p…	NVD-CWE-Other	CVE-2006-1202	2024-02-14 10:17	2006-03-14	Show	GitHub Exploit DB Packet Storm

313392	-	sergey_korostel	php_upload_center	PHP Upload Center stores password hashes under the web root with insufficient access control, which allows remote attackers to download each password hash via a direct request for the upload/users/[U…	NVD-CWE-Other	CVE-2006-1207	2024-02-14 10:17	2006-03-14	Show	GitHub Exploit DB Packet Storm

313393	-	sergey_korostel	php_upload_center	Sergey Korostel PHP Upload Center allows remote attackers to execute arbitrary PHP code by uploading a file whose name ends in a .php.li extension, which can be accessed from the upload directory.	NVD-CWE-Other	CVE-2006-1208	2024-02-14 10:17	2006-03-14	Show	GitHub Exploit DB Packet Storm

313394	-	bugada_andrea	php_advanced_transfer_manager	PHP Advanced Transfer Manager 1.00 through 1.30 stores sensitive information, including password hashes, under the web root with insufficient access control, which allows remote attackers to download…	NVD-CWE-Other	CVE-2006-1209	2024-02-14 10:17	2006-03-14	Show	GitHub Exploit DB Packet Storm

313395	-	nmdeluxe	nmdeluxe	Cross-site scripting (XSS) vulnerability in news.php in NMDeluxe before 1.0.1 allows remote attackers to inject arbitrary web script or HTML via the nick parameter.	NVD-CWE-Other	CVE-2006-1107	2024-02-14 10:17	2006-03-9	Show	GitHub Exploit DB Packet Storm

313396	-	nmdeluxe	nmdeluxe	SQL injection vulnerability in news.php in NMDeluxe before 1.0.1 allows remote attackers to execute arbitrary SQL commands via the id parameter.	NVD-CWE-Other	CVE-2006-1108	2024-02-14 10:17	2006-03-9	Show	GitHub Exploit DB Packet Storm

313397	-	game-panel	game-panel	Cross-site scripting (XSS) vulnerability in login.php in Game-Panel 2.6.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the message parameter, possibly requiring a UR…	NVD-CWE-Other	CVE-2006-1080	2024-02-14 10:17	2006-03-9	Show	GitHub Exploit DB Packet Storm

313398	-	simplog	simplog	Cross-site scripting (XSS) vulnerability in Daverave Simplog 1.0.2 and earlier allows remote attackers to inject arbitrary web script or HTML via a blog post.	NVD-CWE-Other	CVE-2006-1072	2024-02-14 10:17	2006-03-8	Show	GitHub Exploit DB Packet Storm

313399	-	simplog	simplog	Directory traversal vulnerability in index.php in Daverave Simplog 1.0.2 and earlier allows remote attackers to include or read arbitrary .txt files via the (1) act and (2) blogid parameters.	NVD-CWE-Other	CVE-2006-1073	2024-02-14 10:17	2006-03-8	Show	GitHub Exploit DB Packet Storm

313400	-	intensive_point	iuser_ecommerce	Multiple unspecified vulnerabilities in Intensive Point iUser Ecommerce before 2.2 have unspecified vectors and impact, as addressed by "Urgent secure fixes". NOTE: this might be a duplicate of CVE-…	NVD-CWE-noinfo	CVE-2006-0874	2024-02-14 10:17	2006-02-24	Show	GitHub Exploit DB Packet Storm