Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":April 30, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
202211	6.8	警告	Mozilla Foundation	-	Windows 上で稼動する Mozilla Firefox の libvpx におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2016-1972	2016-03-22 10:23	2016-03-8	Show	GitHub Exploit DB Packet Storm

202212	6.8	警告	Mozilla Foundation	-	Windows 上で稼動する Mozilla Firefox の WebRTC の実装の I420VideoFrame::CreateFrame 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2016-1971	2016-03-22 10:23	2016-03-8	Show	GitHub Exploit DB Packet Storm

202213	6.8	警告	Mozilla Foundation	-	Windows 上で稼動する Mozilla Firefox の WebRTC の実装の srtp_unprotect 関数における整数アンダーフローの脆弱性	CWE-119 バッファエラー	CVE-2016-1970	2016-03-22 10:23	2016-03-8	Show	GitHub Exploit DB Packet Storm

202214	5.5	警告	シスコシステムズ	-	Cisco Prime Infrastructure における任意のファイルを読まれる脆弱性	CWE-119 バッファエラー	CVE-2016-1358	2016-03-18 18:22	2016-03-3	Show	GitHub Exploit DB Packet Storm

202215	9	危険	シスコシステムズ	-	Cisco Application Control Engine の Device Manager GUI における RBAC 制限を回避される脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2016-1297	2016-03-18 18:22	2016-02-24	Show	GitHub Exploit DB Packet Storm

202216	7.8	危険	シスコシステムズ	-	複数の Cisco Nexus デバイスおよび Unified Computing System 上で稼動する Cisco NX-OS におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2015-0718	2016-03-18 18:22	2015-01-7	Show	GitHub Exploit DB Packet Storm

202217	5	警告	Swann	-	Swann SRNVW-470LCD および SWNVW-470CAM デバイスのファームウェアにおけるライブ映像を閲覧される脆弱性	CWE-Other その他	CVE-2015-8287	2016-03-18 17:54	2015-11-19	Show	GitHub Exploit DB Packet Storm

202218	3.5	注意	IBM	-	IBM Maximo Asset Management におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-0262	2016-03-18 15:51	2016-02-26	Show	GitHub Exploit DB Packet Storm

202219	4	警告	IBM	-	IBM Maximo Asset Management におけるアクセス制限を回避される脆弱性	CWE-Other その他	CVE-2016-0222	2016-03-18 15:51	2016-02-26	Show	GitHub Exploit DB Packet Storm

202220	4.3	警告	IBM	-	IBM WebSphere Commerce におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2016-0208	2016-03-18 15:51	2016-03-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 30, 2026, 4:58 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
11	4.7	MEDIUM Network	-	-	A vulnerability was determined in SourceCodester Pizzafy Ecommerce System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/view_order.php of the component GET Parame… New	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-7394	2026-04-30 03:16	2026-04-30	Show	GitHub Exploit DB Packet Storm

12	8.0	HIGH Network	-	-	This vulnerability impacts all versions of IdentityIQ and allows an authenticated identity that is the requestor or assignee of a work item to edit the definition of a role without having an assigned… New	CWE-863 Incorrect Authorization	CVE-2026-5712	2026-04-30 03:16	2026-04-30	Show	GitHub Exploit DB Packet Storm

13	8.6	HIGH Network	-	-	A flaw was found in OVN (Open Virtual Network). A remote attacker, by sending crafted DHCPv6 (Dynamic Host Configuration Protocol for IPv6) SOLICIT packets with an inflated Client ID length, could ca… Update	CWE-130 Improper Handling of Length Parameter Inconsistency	CVE-2026-5367	2026-04-30 03:16	2026-04-24	Show	GitHub Exploit DB Packet Storm

14	4.4	MEDIUM Local	-	-	Wazuh is a free and open source platform used for threat prevention, detection, and response. From version 1.0.0 to before version 4.14.4, a heap-based out-of-bounds WRITE occurs in GetAlertData, res… New	CWE-124 CWE-191 Buffer Underflow Integer Underflow (Wrap or Wraparound)	CVE-2026-26204	2026-04-30 03:16	2026-04-30	Show	GitHub Exploit DB Packet Storm

15	-		-	-	DocsGPT is a GPT-powered chat for documentation. From version 0.15.0 to before version 0.16.0, an attacker accessing both the official DocsGPT website or any local and public deployment, can craft a … New	CWE-77 Command Injection	CVE-2026-26015	2026-04-30 03:16	2026-04-30	Show	GitHub Exploit DB Packet Storm

16	6.5	MEDIUM Network	vmware	spring_ai	In Spring AI, a malicious PDF file can be crafted that triggers the allocation of unreasonable amounts of memory when handled by `ForkPDFLayoutTextStripper`. Affected versions: Spring AI: 1.0.0 - 1.… New	CWE-400 Uncontrolled Resource Consumption	CVE-2026-40980	2026-04-30 03:15	2026-04-28	Show	GitHub Exploit DB Packet Storm

17	7.1	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: smb: client: fix off-by-8 bounds check in check_wsl_eas() The bounds check uses (u8 *)ea + nlen + 1 + vlen as the end of the EA n… Update	CWE-125 Out-of-bounds Read	CVE-2026-31614	2026-04-30 03:03	2026-04-25	Show	GitHub Exploit DB Packet Storm

18	8.8	HIGH Network	tenda	f456_firmware	A security vulnerability has been detected in Tenda F456 1.0.0.5. Impacted is the function fromDhcpListClient of the file /goform/DhcpListClient of the component httpd. Such manipulation of the argum… New	CWE-119 CWE-120 Incorrect Access of Indexable Resource ('Range Error') Classic Buffer Overflow	CVE-2026-7098	2026-04-30 02:55	2026-04-27	Show	GitHub Exploit DB Packet Storm

19	8.8	HIGH Network	tenda	f456_firmware	A vulnerability was detected in Tenda F456 1.0.0.5. The affected element is the function formQuickIndex of the file /goform/QuickIndex of the component httpd. Performing a manipulation of the argumen… New	CWE-119 CWE-120 Incorrect Access of Indexable Resource ('Range Error') Classic Buffer Overflow	CVE-2026-7099	2026-04-30 02:44	2026-04-27	Show	GitHub Exploit DB Packet Storm

20	8.8	HIGH Network	tenda	f456_firmware	A flaw has been found in Tenda F456 1.0.0.5. The impacted element is the function fromNatlimitof of the file /goform/Natlimit of the component httpd. Executing a manipulation can lead to buffer overf… New	CWE-119 CWE-120 Incorrect Access of Indexable Resource ('Range Error') Classic Buffer Overflow	CVE-2026-7100	2026-04-30 02:43	2026-04-27	Show	GitHub Exploit DB Packet Storm