Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 5, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
220301 4.3 警告 アップル - Apple Mac OS X の Smart Card Services におけるサービス運用妨害 (DoS) の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-5190 2013-10-31 18:03 2013-10-22 Show GitHub Exploit DB Packet Storm
220302 2.1 注意 アップル - Apple Mac OS X の syslog の実装における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-5191 2013-10-31 18:02 2013-10-22 Show GitHub Exploit DB Packet Storm
220303 5 警告 アップル - Apple Mac OS X の CFNetwork におけるリモートの Web サーバを追跡される脆弱性 CWE-16
環境設定 		CVE-2013-5167 2013-10-31 18:02 2013-10-22 Show GitHub Exploit DB Packet Storm
220304 4.9 警告 アップル - Apple Mac OS X の USB ハブコントローラにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-5192 2013-10-31 18:02 2013-10-22 Show GitHub Exploit DB Packet Storm
220305 4.9 警告 アップル - Apple Mac OS X の Bluetooth USB ホストコントローラにおけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2013-5166 2013-10-31 18:02 2013-10-22 Show GitHub Exploit DB Packet Storm
220306 5 警告 Wireshark - Wireshark の GTPv2 解析機能におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-3555 2013-10-31 18:02 2013-03-17 Show GitHub Exploit DB Packet Storm
220307 4.3 警告 アップル - Apple Mac OS X のメールの自動設定機能における重要な情報を取得される脆弱性 CWE-310
暗号の問題 		CVE-2013-5181 2013-10-31 18:02 2013-10-22 Show GitHub Exploit DB Packet Storm
220308 4.3 警告 アップル - Apple Mac OS X の OpenLDAP の ldapsearch コマンドラインプログラムにおける重要な情報を取得される脆弱性 CWE-310
暗号の問題 		CVE-2013-5185 2013-10-31 18:01 2013-10-22 Show GitHub Exploit DB Packet Storm
220309 6.8 警告 アップル - Apple Mac OS X の Console における任意のアプリケーションを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2013-5168 2013-10-31 18:01 2013-10-22 Show GitHub Exploit DB Packet Storm
220310 5.7 警告 アップル - Apple Mac OS X のカーネルにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2013-5184 2013-10-31 18:01 2013-10-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 5, 2026, 4:51 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
341 5.5 MEDIUM
Adjacent 		- - A vulnerability was detected in TRENDnet TEW-821DAP up to 1.12B01. The affected element is the function tools_diagnostic. The manipulation results in os command injection. The exploit is now public a… CWE-77
CWE-78
Command Injection
OS Command  		CVE-2026-7608 2026-05-2 18:16 2026-05-2 Show GitHub Exploit DB Packet Storm
342 7.2 HIGH
Network 		- - The Brizy – Page Builder plugin for WordPress is vulnerable to Unauthenticated Stored Cross-Site Scripting in all versions up to, and including, 2.8.11 This is due to a combination of missing nonce v… CWE-79
Cross-site Scripting 		CVE-2026-5324 2026-05-2 18:16 2026-05-2 Show GitHub Exploit DB Packet Storm
343 5.3 MEDIUM
Network 		- - The Royal Addons for Elementor plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the `wpr_update_form_action_meta` AJAX action in all versio… CWE-862
 Missing Authorization 		CVE-2026-4024 2026-05-2 18:16 2026-05-2 Show GitHub Exploit DB Packet Storm
344 7.5 HIGH
Network 		- - The ARMember – Membership Plugin, Content Restriction, Member Levels, User Profile & User signup plugin for WordPress is vulnerable to time-based blind SQL Injection via the 'orderby' parameter in al… CWE-89
SQL Injection 		CVE-2026-7649 2026-05-2 17:16 2026-05-2 Show GitHub Exploit DB Packet Storm
345 8.8 HIGH
Network 		- - A security vulnerability has been detected in TRENDnet TEW-821DAP 1.12B01. Impacted is the function auto_update_firmware of the component Firmware Udpate. The manipulation of the argument str leads t… CWE-119
CWE-120
Incorrect Access of Indexable Resource ('Range Error') 
Classic Buffer Overflow 		CVE-2026-7607 2026-05-2 17:16 2026-05-2 Show GitHub Exploit DB Packet Storm
346 3.7 LOW
Network 		- - A weakness has been identified in TRENDnet TEW-821DAP 1.12B01. This issue affects the function find_hwid/new_gui_update_firmware of the component Firmware Update Handler. Executing a manipulation of … CWE-345
 Insufficient Verification of Data Authenticity 		CVE-2026-7606 2026-05-2 17:16 2026-05-2 Show GitHub Exploit DB Packet Storm
347 6.5 MEDIUM
Network 		- - The Geo Mashup plugin for WordPress is vulnerable to time-based blind SQL Injection via the 'geo_mashup_null_fields' parameter in all versions up to, and including, 1.13.19 due to insufficient escapi… CWE-89
SQL Injection 		CVE-2026-6457 2026-05-2 17:16 2026-05-2 Show GitHub Exploit DB Packet Storm
348 5.3 MEDIUM
Network 		- - The Booking for Appointments and Events Calendar – Amelia plugin for WordPress is vulnerable to Improper Authorization in all versions up to, and including, 2.1.2. This is due to a logical short-circ… CWE-285
Improper Authorization 		CVE-2026-6449 2026-05-2 17:16 2026-05-2 Show GitHub Exploit DB Packet Storm
349 7.2 HIGH
Network 		- - The Royal Elementor Addons plugin for WordPress is vulnerable to Server-Side Request Forgery in versions up to, and including, 1.7.1057. This is due to insufficient validation of user-supplied URLs i… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-6229 2026-05-2 17:16 2026-05-2 Show GitHub Exploit DB Packet Storm
350 5.3 MEDIUM
Network 		- - The FundPress – WordPress Donation Plugin for WordPress is vulnerable to authorization bypass in versions up to and including 2.0.8. This is due to missing authorization and nonce verification in the… CWE-862
 Missing Authorization 		CVE-2026-4650 2026-05-2 17:16 2026-05-2 Show GitHub Exploit DB Packet Storm