Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":April 30, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
214021	4.3	警告	Open-Xchange	-	Open-Xchange AppSuite の backend におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-5234	2014-09-19 16:36	2014-08-25	Show	GitHub Exploit DB Packet Storm

214022	4.3	警告	Marcel Bokhorst	-	WordPress 用 Mini Mail Dashboard Widget プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2583	2014-09-19 16:35	2012-08-8	Show	GitHub Exploit DB Packet Storm

214023	4.3	警告	OrangeHRM	-	OrangeHRM におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1507	2014-09-19 16:33	2012-04-24	Show	GitHub Exploit DB Packet Storm

214024	6.5	警告	OrangeHRM	-	OrangeHRM の lib/models/benefits/Hsp.php の updateStatus 関数における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-1506	2014-09-19 16:32	2012-04-24	Show	GitHub Exploit DB Packet Storm

214025	5	警告	Schneider Electric	-	Schneider Electric StruxureWare SCADA Expert ClearSCADA におけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5413	2014-09-19 14:16	2014-09-16	Show	GitHub Exploit DB Packet Storm

214026	5	警告	Schneider Electric	-	Schneider Electric StruxureWare SCADA Expert ClearSCADA におけるデータベースレコードを読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-5412	2014-09-19 14:16	2014-09-16	Show	GitHub Exploit DB Packet Storm

214027	3.5	注意	Schneider Electric	-	Schneider Electric StruxureWare SCADA Expert ClearSCADA におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-5411	2014-09-19 14:15	2014-09-16	Show	GitHub Exploit DB Packet Storm

214028	4.3	警告	IBM	-	IBM Security QRadar SIEM における重要な平文情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2014-4826	2014-09-19 14:15	2014-09-15	Show	GitHub Exploit DB Packet Storm

214029	6.5	警告	IBM	-	IBM Security QRadar SIEM における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-4824	2014-09-19 14:14	2014-09-15	Show	GitHub Exploit DB Packet Storm

214030	4.3	警告	IBM	-	IBM Integration Bus Manufacturing Pack におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4820	2014-09-19 14:14	2014-09-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 30, 2026, 4:58 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
251	7.3	HIGH Network	-	-	A weakness has been identified in SourceCodester Pharmacy Sales and Inventory System 1.0. The affected element is an unknown function of the file /ajax.php?action=save_receiving. Executing a manipula… New	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-7088	2026-04-29 10:00	2026-04-27	Show	GitHub Exploit DB Packet Storm

252	4.3	MEDIUM Network	-	-	A security vulnerability has been detected in code-projects Home Service System 1.0. The impacted element is an unknown function of the file /booking.php of the component Appointment Booking. The man… New	CWE-79 CWE-94 Cross-site Scripting Code Injection	CVE-2026-7089	2026-04-29 10:00	2026-04-27	Show	GitHub Exploit DB Packet Storm

253	2.4	LOW Network	-	-	A vulnerability was detected in code-projects Chat System 1.0. This affects an unknown function of the file /admin/send_message.php of the component Chat Interface. The manipulation of the argument m… New	CWE-79 CWE-94 Cross-site Scripting Code Injection	CVE-2026-7090	2026-04-29 10:00	2026-04-27	Show	GitHub Exploit DB Packet Storm

254	6.3	MEDIUM Network	-	-	A flaw has been found in code-projects Invoice System in Laravel 1.0. This impacts an unknown function of the file /user of the component User Management Handler. This manipulation causes improper au… New	CWE-266 CWE-285 Incorrect Privilege Assignment Improper Authorization	CVE-2026-7091	2026-04-29 10:00	2026-04-27	Show	GitHub Exploit DB Packet Storm

255	6.3	MEDIUM Network	-	-	A vulnerability has been found in code-projects Invoice System in Laravel 1.0. Affected is an unknown function of the file /profile/ of the component Profile Handler. Such manipulation of the argumen… New	CWE-266 CWE-285 Incorrect Privilege Assignment Improper Authorization	CVE-2026-7092	2026-04-29 10:00	2026-04-27	Show	GitHub Exploit DB Packet Storm

256	6.3	MEDIUM Network	-	-	A vulnerability was found in code-projects Invoice System in Laravel 1.0. Affected by this vulnerability is an unknown functionality of the file /invoice/ of the component Invoice Endpoint. Performin… New	CWE-266 CWE-285 Incorrect Privilege Assignment Improper Authorization	CVE-2026-7093	2026-04-29 10:00	2026-04-27	Show	GitHub Exploit DB Packet Storm

257	4.3	MEDIUM Network	-	-	A vulnerability was identified in code-projects Employee Management System 1.0. This affects an unknown part of the file 370project/edit.php. The manipulation of the argument ID leads to cross site s… New	CWE-79 CWE-94 Cross-site Scripting Code Injection	CVE-2026-7095	2026-04-29 10:00	2026-04-27	Show	GitHub Exploit DB Packet Storm

258	7.3	HIGH Network	-	-	A vulnerability was determined in ShadowCloneLabs GlutamateMCPServers up to e2de73280b01e5d943593dd1aa2c01c5b9112f78. Affected by this issue is some unknown functionality of the file src/puppeteer/in… New	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-7094	2026-04-29 10:00	2026-04-27	Show	GitHub Exploit DB Packet Storm

259	3.7	LOW Network	-	-	A vulnerability was determined in code-projects Chat System 1.0. Affected is an unknown function of the file update_user.php of the component MD5 Hash Handler. This manipulation of the argument Passw… New	CWE-327 CWE-328 Use of a Broken or Risky Cryptographic Algorithm Use of Weak Hash	CVE-2026-7103	2026-04-29 10:00	2026-04-27	Show	GitHub Exploit DB Packet Storm

260	6.3	MEDIUM Network	-	-	A weakness has been identified in code-projects Invoice System in Laravel 1.0. The impacted element is an unknown function of the file /company. This manipulation of the argument logo causes unrestri… New	CWE-284 CWE-434 Improper Access Control Unrestricted Upload of File with Dangerous Type	CVE-2026-7107	2026-04-29 10:00	2026-04-27	Show	GitHub Exploit DB Packet Storm