Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 8, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
237041	6.8	警告	マイクロソフト	-	Microsoft Word 2007 の wwlib.dll におけるバッファオーバーフローの脆弱性	-	CVE-2007-1910	2012-09-25 16:47	2007-04-10	Show	GitHub Exploit DB Packet Storm

237042	6.8	警告	php121	-	PHP121 Instant Messenger の php121db.php における PHP ファイルインクルージョンの脆弱性	-	CVE-2007-1908	2012-09-25 16:47	2007-04-10	Show	GitHub Exploit DB Packet Storm

237043	6.8	警告	pathos	-	Pathos CMS の warn.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1907	2012-09-25 16:47	2007-04-10	Show	GitHub Exploit DB Packet Storm

237044	5.8	警告	jetbox	-	Jetbox CMS の formmail.php におけるスパムを送信される脆弱性	-	CVE-2007-1898	2012-09-25 16:47	2007-05-16	Show	GitHub Exploit DB Packet Storm

237045	7.5	危険	The PHP Group	-	PHP の msg_receive 関数における整数オーバーフローの脆弱性	-	CVE-2007-1890	2012-09-25 16:47	2007-03-31	Show	GitHub Exploit DB Packet Storm

237046	7.5	危険	The PHP Group	-	PHP の Zend Memory Manager における整数符号エラーの脆弱性	-	CVE-2007-1889	2012-09-25 16:47	2007-03-31	Show	GitHub Exploit DB Packet Storm

237047	7.5	危険	The PHP Group	-	SQLite の src/encode.c におけるバッファオーバーフローの脆弱性	-	CVE-2007-1888	2012-09-25 16:47	2007-03-31	Show	GitHub Exploit DB Packet Storm

237048	6.8	警告	The PHP Group	-	PHP における整数オーバーフローの脆弱性	-	CVE-2007-1886	2012-09-25 16:47	2007-03-31	Show	GitHub Exploit DB Packet Storm

237049	7.5	危険	The PHP Group	-	PHP の str_replace 関数における整数オーバーフローの脆弱性	-	CVE-2007-1885	2012-09-25 16:47	2007-04-5	Show	GitHub Exploit DB Packet Storm

237050	6.8	警告	The PHP Group	-	PHP の printf 関数ファミリにおける整数符号エラーの脆弱性	-	CVE-2007-1884	2012-09-25 16:47	2007-04-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
21	5.4	MEDIUM Network	-	-	A Cross-Site Scripting (XSS) vulnerability was found in PHPGurukal Hospital Management System v4.0 in the /hospital/hms/edit-profile.php page. This flaw allows an authenticated attacker (patient) to … New	CWE-79 Cross-site Scripting	CVE-2026-36388	2026-05-8 03:45	2026-05-8	Show	GitHub Exploit DB Packet Storm

22	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: scsi: target: tcm_loop: Drain commands in target_reset handler tcm_loop_target_reset() violates the SCSI EH contract: it returns … Update	CWE-772 Missing Release of Resource after Effective Lifetime	CVE-2026-43054	2026-05-8 03:28	2026-05-2	Show	GitHub Exploit DB Packet Storm

23	4.7	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: xfs: close crash window in attr dabtree inactivation When inactivating an inode with node-format extended attributes, xfs_attr3_n… Update	CWE-367 Time-of-check Time-of-use (TOCTOU) Race Condition	CVE-2026-43053	2026-05-8 03:24	2026-05-2	Show	GitHub Exploit DB Packet Storm

24	7.0	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: atm: lec: fix use-after-free in sock_def_readable() A race condition exists between lec_atm_close() setting priv->lecd to NULL an… Update	CWE-416 Use After Free	CVE-2026-43050	2026-05-8 03:21	2026-05-2	Show	GitHub Exploit DB Packet Storm

25	7.1	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: check tdls flag in ieee80211_tdls_oper When NL80211_TDLS_ENABLE_LINK is called, the code only checks if the stati… Update	NVD-CWE-noinfo	CVE-2026-43052	2026-05-8 03:19	2026-05-2	Show	GitHub Exploit DB Packet Storm

26	-		-	-	In the Linux kernel, the following vulnerability has been resolved: dm: clear cloned request bio pointer when last clone bio completes Stale rq->bio values have been observed to cause double-initia… New	-	CVE-2026-43278	2026-05-8 03:16	2026-05-6	Show	GitHub Exploit DB Packet Storm

27	8.1	HIGH Adjacent	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: HID: wacom: fix out-of-bounds read in wacom_intuos_bt_irq The wacom_intuos_bt_irq() function processes Bluetooth HID reports with… Update	CWE-125 Out-of-bounds Read	CVE-2026-43051	2026-05-8 03:00	2026-05-2	Show	GitHub Exploit DB Packet Storm

28	9.8	CRITICAL Network	paloaltonetworks	pan-os	A buffer overflow vulnerability in the User-ID™ Authentication Portal (aka Captive Portal) service of Palo Alto Networks PAN-OS software allows an unauthenticated attacker to execute arbitrary code w… New	CWE-787 Out-of-bounds Write	CVE-2026-0300	2026-05-8 02:46	2026-05-7	Show	GitHub Exploit DB Packet Storm

29	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: vt: discard stale unicode buffer on alt screen exit after resize When enter_alt_screen() saves vc_uni_lines into vc_saved_uni_lin… Update	CWE-125 Out-of-bounds Read	CVE-2026-31742	2026-05-8 02:42	2026-05-2	Show	GitHub Exploit DB Packet Storm

30	9.1	CRITICAL Network	torproject	tor	Tor before 0.4.9.7 has an out-of-bounds read when an END, a TRUNCATE, or a TRUNCATED cell lacks a reason in its payload, aka TROVE-2026-011. New	CWE-684 Incorrect Provision of Specified Functionality	CVE-2026-44597	2026-05-8 02:34	2026-05-7	Show	GitHub Exploit DB Packet Storm