Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
223731	7.5	危険	PHPNUKE	-	PHP-Nuke 用の Sarkilar モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6779	2012-12-20 19:10	2009-05-1	Show	GitHub Exploit DB Packet Storm

223732	7.5	危険	scripts-for-sites	-	SFS EZ Auction の viewfaqs.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6778	2012-12-20 19:10	2009-05-1	Show	GitHub Exploit DB Packet Storm

223733	7.5	危険	scripts-for-sites	-	SFS EZ Hot or Not の viewcomments.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6776	2012-12-20 19:10	2009-05-1	Show	GitHub Exploit DB Packet Storm

223734	6.8	警告	shopsystem-forum	-	K&S Shopsoftware の admin/editor/images.php における任意の PHP コードを実行される脆弱性	CWE-Other その他	CVE-2008-6768	2012-12-20 19:10	2009-04-29	Show	GitHub Exploit DB Packet Storm

223735	10	危険	WordPress.org	-	WordPress の wp-admin/upgrade.php におけるアプリケーションをアップグレードされる脆弱性	CWE-noinfo 情報不足	CVE-2008-6767	2012-12-20 19:10	2009-04-28	Show	GitHub Exploit DB Packet Storm

223736	5	警告	viart	-	ViArt Shop の cart_save.php におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2008-6766	2012-12-20 19:10	2009-04-28	Show	GitHub Exploit DB Packet Storm

223737	5	警告	viart	-	ViArt Shop における任意のショッピングカートの中身にアクセスされる脆弱性	CWE-noinfo 情報不足	CVE-2008-6765	2012-12-20 19:10	2009-04-28	Show	GitHub Exploit DB Packet Storm

223738	4.3	警告	WordPress.org	-	WordPress の wp-admin/upgrade.php におけるオープンリダイレクトの脆弱性	CWE-59 リンク解釈の問題	CVE-2008-6762	2012-12-20 19:10	2009-04-28	Show	GitHub Exploit DB Packet Storm

223739	4.3	警告	viart	-	ViArt Shop における重要な情報を取得される脆弱性	CWE-59 リンク解釈の問題	CVE-2008-6760	2012-12-20 19:10	2009-04-28	Show	GitHub Exploit DB Packet Storm

223740	4.3	警告	viart	-	ViArt Shop における重要な情報を取得される脆弱性	CWE-59 リンク解釈の問題	CVE-2008-6759	2012-12-20 19:10	2009-04-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 18, 2026, 4:11 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1511	6.5	MEDIUM Adjacent	alfa siemens arista cisco intel	awus036h_firmware scalance_w1748-1_firmware scalance_w1750d_firmware scalance_w1788-1_firmware scalance_w1788-2_firmware scalance_w1788-2ia_firmware scalance_w721-1_firmware scal…	Se detectó un problema en el controlador ALFA de Windows 10 versión 6.1316.1209 para AWUS036H. Las implementaciones WEP, WPA, WPA2 y WPA3 aceptan tramas de texto plano en una red Wi-Fi protegida. Un …	CWE-327 Use of a Broken or Risky Cryptographic Algorithm	CVE-2020-26140	2026-04-14 18:16	2021-05-12	Show	GitHub Exploit DB Packet Storm

1512	5.3	MEDIUM Adjacent	netbsd debian arista cisco intel	netbsd debian_linux c-100_firmware c-110_firmware c-120_firmware c-130_firmware c-200_firmware c-230_firmware c-235_firmware c-250_firmware c-260_firmware c-65_firmwa…	An issue was discovered in the kernel in NetBSD 7.1. An Access Point (AP) forwards EAPOL frames to other clients even though the sender has not yet successfully authenticated to the AP. This might be…	CWE-287 Improper Authentication	CVE-2020-26139	2026-04-14 18:16	2021-05-12	Show	GitHub Exploit DB Packet Storm

1513	5.3	MEDIUM Adjacent	netbsd debian arista cisco intel	netbsd debian_linux c-100_firmware c-110_firmware c-120_firmware c-130_firmware c-200_firmware c-230_firmware c-235_firmware c-250_firmware c-260_firmware c-65_firmwa…	Se detectó un problema en el kernel en NetBSD versión 7.1. Un punto de acceso (AP) reenvía tramas EAPOL a otros clientes aunque el remitente aún no se haya autenticado con éxito en el AP. Esto podría…	CWE-287 Improper Authentication	CVE-2020-26139	2026-04-14 18:16	2021-05-12	Show	GitHub Exploit DB Packet Storm

1514	3.5	LOW Adjacent	ieee linux microsoft debian siemens arista cisco intel	ieee_802.11 mac80211 windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 debian_linux scal…	The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that the A-MSDU flag in the plaintext QoS header field is authentica…	CWE-327 Use of a Broken or Risky Cryptographic Algorithm	CVE-2020-24588	2026-04-14 18:16	2021-05-12	Show	GitHub Exploit DB Packet Storm

1515	3.5	LOW Adjacent	ieee linux microsoft debian siemens arista cisco intel	ieee_802.11 mac80211 windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 debian_linux scal…	El estándar 802.11 que sustenta a Wi-Fi Protected Access (WPA, WPA2, y WPA3) y Wired Equivalent Privacy (WEP) no requiere que el flag A-MSDU en el campo de encabezado QoS de texto plano esté autentic…	CWE-327 Use of a Broken or Risky Cryptographic Algorithm	CVE-2020-24588	2026-04-14 18:16	2021-05-12	Show	GitHub Exploit DB Packet Storm

1516	6.5	MEDIUM Network	-	-	The The Germanized for WooCommerce plugin for WordPress is vulnerable to arbitrary shortcode execution via 'account_holder' parameter in all versions up to, and including, 3.20.5. This is due to the …	CWE-94 Code Injection	CVE-2026-2582	2026-04-14 16:16	2026-04-14	Show	GitHub Exploit DB Packet Storm

1517	7.2	HIGH Network	-	-	The Smart Post Show – Post Grid, Post Carousel & Slider, and List Category Posts plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 3.0.12 via deserializ…	CWE-502 Deserialization of Untrusted Data	CVE-2026-3017	2026-04-14 15:16	2026-04-14	Show	GitHub Exploit DB Packet Storm

1518	4.4	MEDIUM Network	-	-	The WholeSale Products Dynamic Pricing Management WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 1.2 due to ins…	CWE-79 Cross-site Scripting	CVE-2026-4479	2026-04-14 13:17	2026-04-14	Show	GitHub Exploit DB Packet Storm

1519	6.4	MEDIUM Network	-	-	The ShopLentor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the woolentor_quickview_button shortcode's button_text attribute in all versions up to, and including, 3.3.5. This…	CWE-79 Cross-site Scripting	CVE-2026-4059	2026-04-14 13:17	2026-04-14	Show	GitHub Exploit DB Packet Storm

1520	6.4	MEDIUM Network	-	-	The Surbma \| Booking.com Shortcode plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's `surbma-bookingcom` shortcode in all versions up to, and including, 2.1 due to in…	CWE-79 Cross-site Scripting	CVE-2026-1607	2026-04-14 13:17	2026-04-14	Show	GitHub Exploit DB Packet Storm