Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 4, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
721	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-31594	2026-04-30 11:04	2026-04-24	Show	GitHub Exploit DB Packet Storm

722	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-31595	2026-04-30 11:04	2026-04-24	Show	GitHub Exploit DB Packet Storm

723	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-31596	2026-04-30 11:04	2026-04-24	Show	GitHub Exploit DB Packet Storm

724	7.8	重要 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-31597	2026-04-30 11:04	2026-04-24	Show	GitHub Exploit DB Packet Storm

725	9.8	緊急 Network	Linux	Linux Kernel	LinuxのLinux Kernelにおける境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2026-31607	2026-04-30 11:04	2026-04-24	Show	GitHub Exploit DB Packet Storm

726	9.8	緊急 Network	Linux	Linux Kernel	LinuxのLinux Kernelにおける二重解放に関する脆弱性	CWE-415 二重解放	CVE-2026-31609	2026-04-30 11:04	2026-04-24	Show	GitHub Exploit DB Packet Storm

727	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける有効期限後のメモリの解放の欠如に関する脆弱性	CWE-401 有効期限後のメモリの解放の欠如	CVE-2026-31610	2026-04-30 11:04	2026-04-24	Show	GitHub Exploit DB Packet Storm

728	8.6	重要 Network	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-31611	2026-04-30 11:04	2026-04-24	Show	GitHub Exploit DB Packet Storm

729	7.5	重要 Network	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-31612	2026-04-30 11:04	2026-04-24	Show	GitHub Exploit DB Packet Storm

730	8.1	重要 Network	Linux	Linux Kernel	LinuxのLinux Kernelにおける境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2026-31613	2026-04-30 11:04	2026-04-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 4, 2026, 4:06 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
313431	-	jcink.com	textfilebb	Multiple cross-site scripting (XSS) vulnerabilities in textfileBB 1.0 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) mess and (2) user parameters in messanger.p…	NVD-CWE-Other	CVE-2006-1202	2024-02-14 10:17	2006-03-14	Show	GitHub Exploit DB Packet Storm

313432	-	sergey_korostel	php_upload_center	PHP Upload Center stores password hashes under the web root with insufficient access control, which allows remote attackers to download each password hash via a direct request for the upload/users/[U…	NVD-CWE-Other	CVE-2006-1207	2024-02-14 10:17	2006-03-14	Show	GitHub Exploit DB Packet Storm

313433	-	sergey_korostel	php_upload_center	Sergey Korostel PHP Upload Center allows remote attackers to execute arbitrary PHP code by uploading a file whose name ends in a .php.li extension, which can be accessed from the upload directory.	NVD-CWE-Other	CVE-2006-1208	2024-02-14 10:17	2006-03-14	Show	GitHub Exploit DB Packet Storm

313434	-	bugada_andrea	php_advanced_transfer_manager	PHP Advanced Transfer Manager 1.00 through 1.30 stores sensitive information, including password hashes, under the web root with insufficient access control, which allows remote attackers to download…	NVD-CWE-Other	CVE-2006-1209	2024-02-14 10:17	2006-03-14	Show	GitHub Exploit DB Packet Storm

313435	-	nmdeluxe	nmdeluxe	Cross-site scripting (XSS) vulnerability in news.php in NMDeluxe before 1.0.1 allows remote attackers to inject arbitrary web script or HTML via the nick parameter.	NVD-CWE-Other	CVE-2006-1107	2024-02-14 10:17	2006-03-9	Show	GitHub Exploit DB Packet Storm

313436	-	nmdeluxe	nmdeluxe	SQL injection vulnerability in news.php in NMDeluxe before 1.0.1 allows remote attackers to execute arbitrary SQL commands via the id parameter.	NVD-CWE-Other	CVE-2006-1108	2024-02-14 10:17	2006-03-9	Show	GitHub Exploit DB Packet Storm

313437	-	game-panel	game-panel	Cross-site scripting (XSS) vulnerability in login.php in Game-Panel 2.6.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the message parameter, possibly requiring a UR…	NVD-CWE-Other	CVE-2006-1080	2024-02-14 10:17	2006-03-9	Show	GitHub Exploit DB Packet Storm

313438	-	simplog	simplog	Cross-site scripting (XSS) vulnerability in Daverave Simplog 1.0.2 and earlier allows remote attackers to inject arbitrary web script or HTML via a blog post.	NVD-CWE-Other	CVE-2006-1072	2024-02-14 10:17	2006-03-8	Show	GitHub Exploit DB Packet Storm

313439	-	simplog	simplog	Directory traversal vulnerability in index.php in Daverave Simplog 1.0.2 and earlier allows remote attackers to include or read arbitrary .txt files via the (1) act and (2) blogid parameters.	NVD-CWE-Other	CVE-2006-1073	2024-02-14 10:17	2006-03-8	Show	GitHub Exploit DB Packet Storm

313440	-	intensive_point	iuser_ecommerce	Multiple unspecified vulnerabilities in Intensive Point iUser Ecommerce before 2.2 have unspecified vectors and impact, as addressed by "Urgent secure fixes". NOTE: this might be a duplicate of CVE-…	NVD-CWE-noinfo	CVE-2006-0874	2024-02-14 10:17	2006-02-24	Show	GitHub Exploit DB Packet Storm