Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
223851	4.3	警告	refbase	-	refbase におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-6400	2012-12-20 19:10	2009-03-5	Show	GitHub Exploit DB Packet Storm

223852	10	危険	psi-im	-	PSI Jabber クライアントにおける整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2008-6393	2012-12-20 19:10	2009-03-3	Show	GitHub Exploit DB Packet Storm

223853	4.3	警告	w3matter	-	W3matter RevSense の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-6385	2012-12-20 19:10	2009-03-2	Show	GitHub Exploit DB Packet Storm

223854	7.5	危険	phpbb-seo	-	Multi SEO phpBB の include/global.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-6377	2012-12-20 19:10	2009-03-2	Show	GitHub Exploit DB Packet Storm

223855	8.5	危険	socialgroupie	-	Social Groupie の Photos/create_album.php における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2008-6367	2012-12-20 19:10	2009-03-2	Show	GitHub Exploit DB Packet Storm

223856	4.3	警告	phpf1	-	Max's Guestbook の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-6359	2012-12-20 19:10	2009-03-2	Show	GitHub Exploit DB Packet Storm

223857	7.5	危険	socialgroupie	-	Social Groupie の group_index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6358	2012-12-20 19:10	2009-03-2	Show	GitHub Exploit DB Packet Storm

223858	5	警告	the net guys	-	The Net Guys ASPired2Protect におけるユーザ名などを含むデータベースをダウンロードされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-6355	2012-12-20 19:10	2009-03-2	Show	GitHub Exploit DB Packet Storm

223859	5	警告	the net guys	-	The Net Guys ASPired2poll におけるユーザ名などを含むデータベースをダウンロードされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-6354	2012-12-20 19:10	2009-03-2	Show	GitHub Exploit DB Packet Storm

223860	7.5	危険	xpoze	-	Xpoze Pro の home.html における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6352	2012-12-20 19:10	2009-03-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 16, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1911	6.4	MEDIUM Network	-	-	The UsersWP plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to and including 1.2.60. This is due to insufficient input sanitization of user-supplied URL fields and im… New	CWE-79 Cross-site Scripting	CVE-2026-5742	2026-04-14 00:02	2026-04-9	Show	GitHub Exploit DB Packet Storm

1912	4.7	MEDIUM Network	-	-	A vulnerability was determined in PHPGurukul News Portal Project 4.1. This vulnerability affects unknown code of the file /admin/add-subadmins.php. This manipulation of the argument sadminusername ca… New	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-5838	2026-04-14 00:02	2026-04-9	Show	GitHub Exploit DB Packet Storm

1913	4.7	MEDIUM Network	-	-	A vulnerability was identified in PHPGurukul News Portal Project 4.1. This issue affects some unknown processing of the file /admin/add-subcategory.php. Such manipulation of the argument sucatdescrip… New	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-5839	2026-04-14 00:02	2026-04-9	Show	GitHub Exploit DB Packet Storm

1914	4.7	MEDIUM Network	-	-	A security flaw has been discovered in PHPGurukul News Portal Project 4.1. Impacted is an unknown function of the file /admin/check_availability.php. Performing a manipulation of the argument Usernam… New	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-5840	2026-04-14 00:02	2026-04-9	Show	GitHub Exploit DB Packet Storm

1915	7.3	HIGH Network	-	-	A weakness has been identified in Tenda i3 1.0.0.6(2204). The affected element is the function R7WebsSecurityHandler of the component HTTP Handler. Executing a manipulation can lead to path traversal… New	CWE-22 Path Traversal	CVE-2026-5841	2026-04-14 00:02	2026-04-9	Show	GitHub Exploit DB Packet Storm

1916	7.3	HIGH Network	-	-	A security vulnerability has been detected in decolua 9router up to 0.3.47. The impacted element is an unknown function of the file /api of the component Administrative API Endpoint. The manipulation… New	CWE-285 CWE-639 Improper Authorization Authorization Bypass Through User-Controlled Key	CVE-2026-5842	2026-04-14 00:02	2026-04-9	Show	GitHub Exploit DB Packet Storm

1917	7.2	HIGH Network	-	-	A vulnerability was found in D-Link DIR-882 1.01B02. Impacted is the function sprintf of the file prog.cgi of the component HNAP1 SetNetworkSettings Handler. The manipulation of the argument IPAddres… New	CWE-77 CWE-78 Command Injection OS Command	CVE-2026-5844	2026-04-14 00:02	2026-04-9	Show	GitHub Exploit DB Packet Storm

1918	4.3	MEDIUM Network	-	-	A vulnerability has been found in code-projects Movie Ticketing System 1.0. Impacted is an unknown function of the file /db/moviedb.sql of the component SQL Database Backup File Handler. Such manipul… New	CWE-200 CWE-284 Information Exposure Improper Access Control	CVE-2026-5847	2026-04-14 00:02	2026-04-9	Show	GitHub Exploit DB Packet Storm

1919	4.7	MEDIUM Network	-	-	A vulnerability was found in jeecgboot JimuReport up to 2.3.0. The affected element is the function DriverManager.getConnection of the file /drag/onlDragDataSource/testConnection of the component Dat… New	CWE-74 CWE-94 Injection Code Injection	CVE-2026-5848	2026-04-14 00:02	2026-04-9	Show	GitHub Exploit DB Packet Storm

1920	7.3	HIGH Network	-	-	A vulnerability was determined in Tenda i12 1.0.0.11(3862). The impacted element is an unknown function of the component HTTP Handler. Executing a manipulation can lead to path traversal. The attack … New	CWE-22 Path Traversal	CVE-2026-5849	2026-04-14 00:02	2026-04-9	Show	GitHub Exploit DB Packet Storm