Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
223841	7.5	危険	phpkf	-	phpKF の forum_duzen.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6443	2012-12-20 19:10	2009-03-9	Show	GitHub Exploit DB Packet Storm

223842	5.8	警告	sina	-	Sina Inc. DLoader Class ActiveX コントロールにおける任意のファイルを上書きされる脆弱性	CWE-Other その他	CVE-2008-6442	2012-12-20 19:10	2009-03-9	Show	GitHub Exploit DB Packet Storm

223843	4.3	警告	phpsqlitecms	-	phpSQLiteCMS におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-6435	2012-12-20 19:10	2009-03-6	Show	GitHub Exploit DB Packet Storm

223844	7.5	危険	psychostats	-	PsychoStats における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6422	2012-12-20 19:10	2009-03-6	Show	GitHub Exploit DB Packet Storm

223845	7.5	危険	socialsitegenerator	-	Social Site Generator の social_game_play.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-6421	2012-12-20 19:10	2009-03-6	Show	GitHub Exploit DB Packet Storm

223846	5	警告	socialsitegenerator	-	Social Site Generator における任意のファイルを読まれる脆弱性	CWE-200 情報漏えい	CVE-2008-6420	2012-12-20 19:10	2009-03-6	Show	GitHub Exploit DB Packet Storm

223847	7.5	危険	socialsitegenerator	-	Social Site Generator における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6419	2012-12-20 19:10	2009-03-6	Show	GitHub Exploit DB Packet Storm

223848	7.5	危険	torrenttrader	-	TorrentTrader の scrape.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6418	2012-12-20 19:10	2009-03-6	Show	GitHub Exploit DB Packet Storm

223849	10	危険	Youngzsoft	-	YoungZSoft CCProxy におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-6415	2012-12-20 19:10	2009-03-6	Show	GitHub Exploit DB Packet Storm

223850	7.5	危険	vignette	-	Vignette Content Management における管理者権限を取得される脆弱性	CWE-noinfo 情報不足	CVE-2008-6412	2012-12-20 19:10	2009-03-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 20, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1151	5.3	MEDIUM Network	-	-	Missing Authorization vulnerability in Nelio Software Nelio AB Testing nelio-ab-testing allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Nelio AB Testing: fr…	CWE-862 Missing Authorization	CVE-2026-40742	2026-04-16 01:16	2026-04-15	Show	GitHub Exploit DB Packet Storm

1152	5.3	MEDIUM Network	-	-	Authorization Bypass Through User-Controlled Key vulnerability in VillaTheme COMPE compe-woo-compare-products allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affect…	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2026-40737	2026-04-16 01:16	2026-04-15	Show	GitHub Exploit DB Packet Storm

1153	4.3	MEDIUM Network	-	-	Missing Authorization vulnerability in BlockArt Magazine Blocks magazine-blocks allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Magazine Blocks: from n/a th…	CWE-862 Missing Authorization	CVE-2026-40728	2026-04-16 01:16	2026-04-15	Show	GitHub Exploit DB Packet Storm

1154	4.3	MEDIUM Network	-	-	Cross-Site Request Forgery (CSRF) vulnerability in DeluxeThemes Userpro allows Cross Site Request Forgery.This issue affects Userpro: from n/a before 5.1.11.	CWE-352 Origin Validation Error	CVE-2025-53444	2026-04-16 01:16	2026-04-16	Show	GitHub Exploit DB Packet Storm

1155	6.1	MEDIUM Network	-	-	Adobe Connect versions 2025.3, 12.10 and earlier are affected by a reflected Cross-Site Scripting (XSS) vulnerability. If an attacker is able to convince a victim to visit a URL referencing a vulnera…	CWE-79 Cross-site Scripting	CVE-2026-21331	2026-04-16 01:14	2026-04-15	Show	GitHub Exploit DB Packet Storm

1156	9.3	CRITICAL Network	-	-	Adobe Connect versions 2025.3, 12.10 and earlier are affected by a reflected Cross-Site Scripting (XSS) vulnerability. If an attacker is able to convince a victim to visit a URL referencing a vulnera…	CWE-79 Cross-site Scripting	CVE-2026-27243	2026-04-16 01:14	2026-04-15	Show	GitHub Exploit DB Packet Storm

1157	9.3	CRITICAL Network	-	-	Adobe Connect versions 2025.3, 12.10 and earlier are affected by a reflected Cross-Site Scripting (XSS) vulnerability. If an attacker is able to convince a victim to visit a URL referencing a vulnera…	CWE-79 Cross-site Scripting	CVE-2026-27245	2026-04-16 01:14	2026-04-15	Show	GitHub Exploit DB Packet Storm

1158	9.3	CRITICAL Network	-	-	Adobe Connect versions 2025.3, 12.10 and earlier are affected by a DOM-based Cross-Site Scripting (XSS) vulnerability. An attacker could exploit this issue by manipulating the DOM environment to exec…	CWE-79 Cross-site Scripting	CVE-2026-27246	2026-04-16 01:14	2026-04-15	Show	GitHub Exploit DB Packet Storm

1159	9.6	CRITICAL Network	-	-	Adobe Connect versions 2025.3, 12.10 and earlier are affected by a Deserialization of Untrusted Data vulnerability that could result in arbitrary code execution in the context of the current user. Ex…	CWE-502 Deserialization of Untrusted Data	CVE-2026-27303	2026-04-16 01:14	2026-04-15	Show	GitHub Exploit DB Packet Storm

1160	6.1	MEDIUM Network	-	-	Adobe Connect versions 2025.3, 12.10 and earlier are affected by a reflected Cross-Site Scripting (XSS) vulnerability. If an attacker is able to convince a victim to visit a URL referencing a vulnera…	CWE-79 Cross-site Scripting	CVE-2026-34614	2026-04-16 01:14	2026-04-15	Show	GitHub Exploit DB Packet Storm