Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4021	7.8	重要 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおけるリソースのロックに関する脆弱性	CWE-667 不適切なロック	CVE-2026-31667	2026-04-30 12:31	2026-04-24	Show	GitHub Exploit DB Packet Storm

4022	9.8	緊急 Network	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-31668	2026-04-30 12:31	2026-04-24	Show	GitHub Exploit DB Packet Storm

4023	9.8	緊急 Network	Linux	Linux Kernel	LinuxのLinux Kernelにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-31669	2026-04-30 12:31	2026-04-24	Show	GitHub Exploit DB Packet Storm

4024	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-31670	2026-04-30 12:31	2026-04-24	Show	GitHub Exploit DB Packet Storm

4025	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける有効期限後のメモリの解放の欠如に関する脆弱性	CWE-401 有効期限後のメモリの解放の欠如	CVE-2026-31671	2026-04-30 12:31	2026-04-24	Show	GitHub Exploit DB Packet Storm

4026	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける有効期限後のメモリの解放の欠如に関する脆弱性	CWE-401 有効期限後のメモリの解放の欠如	CVE-2026-31672	2026-04-30 12:31	2026-04-24	Show	GitHub Exploit DB Packet Storm

4027	8.1	重要 Network	xibosignage	xibo	xibosignageのxiboにおける複数の脆弱性	CWE-184 CWE-89	CVE-2026-31952	2026-04-30 12:31	2026-04-24	Show	GitHub Exploit DB Packet Storm

4028	5.4	警告 Network	xibosignage	xibo	xibosignageのxiboにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-31953	2026-04-30 12:31	2026-04-24	Show	GitHub Exploit DB Packet Storm

4029	4.9	警告 Network	xibosignage	xibo	xibosignageのxiboにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-31955	2026-04-30 12:31	2026-04-24	Show	GitHub Exploit DB Packet Storm

4030	4.3	警告 Network	xibosignage	xibo	xibosignageのxiboにおけるユーザ制御の鍵による認証回避に関する脆弱性	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-31956	2026-04-30 12:31	2026-04-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
346311	-	talentsoft	web\+_shop	Cross-site scripting (XSS) vulnerability in webplus.exe in TalentSoft Web+Shop 5.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the deptname parameter, possibly invo…	NVD-CWE-Other	CVE-2006-1682	2017-07-20 10:30	2006-04-11	Show	GitHub Exploit DB Packet Storm

346312	-	apt	apt-webshop-system	Multiple SQL injection vulnerabilities in modules.php in APT-webshop-system 4.0 PRO, 3.0 BASIC, and 3.0 LIGHT allow remote attackers to execute arbitrary SQL commands via the (1) group, (2) seite, an…	NVD-CWE-Other	CVE-2006-1685	2017-07-20 10:30	2006-04-11	Show	GitHub Exploit DB Packet Storm

346313	-	manic_web	mwnewsletter	Cross-site scripting (XSS) vulnerability in subscribe.php in MWNewsletter 1.0.0b allows remote attackers to inject arbitrary web script or HTML via the user_name parameter.	NVD-CWE-Other	CVE-2006-1690	2017-07-20 10:30	2006-04-11	Show	GitHub Exploit DB Packet Storm

346314	-	manic_web	mwnewsletter	SQL injection vulnerability in MWNewsletter 1.0.0b allows remote attackers to execute arbitrary SQL commands via the user_name parameter to unsubscribe.php.	NVD-CWE-Other	CVE-2006-1691	2017-07-20 10:30	2006-04-11	Show	GitHub Exploit DB Packet Storm

346315	-	globalscape	secure_ftp_server	Unspecified vulnerability in GlobalSCAPE Secure FTP Server before 3.1.4 Build 01.10.2006 allows attackers to cause a denial of service (application crash) via a "custom command" with a long argument.	NVD-CWE-Other	CVE-2006-1693	2017-07-20 10:30	2006-04-11	Show	GitHub Exploit DB Packet Storm

346316	-	globalscape	secure_ftp_server	This issue is addressed in Secure FTP Server 3.1.4 Build 01.10.2006.	NVD-CWE-Other	CVE-2006-1693	2017-07-20 10:30	2006-04-11	Show	GitHub Exploit DB Packet Storm

346317	-	fbida	fbida	The fbgs script in the fbi package 2.01-1.4, when the TMPDIR environment variable is not defined, allows local users to overwrite arbitrary files via a symlink attack on temporary files in /var/tmp/f…	NVD-CWE-Other	CVE-2006-1695	2017-07-20 10:30	2006-04-11	Show	GitHub Exploit DB Packet Storm

346318	-	gallery_project	gallery	Cross-site scripting (XSS) vulnerability in Gallery before 1.5.3 allows remote attackers to inject arbitrary web script or HTML via unknown attack vectors.	NVD-CWE-Other	CVE-2006-1696	2017-07-20 10:30	2006-04-11	Show	GitHub Exploit DB Packet Storm

346319	-	matt_wright	matt_wright_guestbook	Cross-site scripting (XSS) vulnerability in Matt Wright Guestbook 2.3.1 allows remote attackers to execute arbitrary web script or HTML via the (1) url, (2) city, (3) state, or (4) country parameters…	NVD-CWE-Other	CVE-2006-1698	2017-07-20 10:30	2006-04-11	Show	GitHub Exploit DB Packet Storm

346320	-	aweb	banner_generator	Cross-site scripting (XSS) vulnerability in index.php in Aweb Banner Generator 3.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the banner parameter in view mode.	NVD-CWE-Other	CVE-2006-1699	2017-07-20 10:30	2006-04-11	Show	GitHub Exploit DB Packet Storm