Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 7, 2026, 2:09 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
224771	7.5	危険	phpscripte24	-	Hi Web Wiesbaden Live Shopping Multi Portal System の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-1924	2012-12-20 19:29	2010-05-12	Show	GitHub Exploit DB Packet Storm

224772	7.5	危険	phpscripte24	-	Hi Web Wiesbaden Web Social Network Freunde Community System の user.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-1923	2012-12-20 19:29	2010-05-12	Show	GitHub Exploit DB Packet Storm

224773	7.5	危険	xinha s9y	-	Serendipity で使用されている Xinha WYSIWYG エディタにおけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-1916	2012-12-20 19:29	2010-05-12	Show	GitHub Exploit DB Packet Storm

224774	4.3	警告	tufat	-	FlashCard の cPlayer.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1872	2012-12-20 19:29	2010-05-12	Show	GitHub Exploit DB Packet Storm

224775	6.8	警告	レッドハット	-	Red Hat Linux 用の JBoss Enterprise Application Platform で使用されている jboss-seam2 における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-1871	2012-12-20 19:29	2010-07-27	Show	GitHub Exploit DB Packet Storm

224776	6.8	警告	realitymedias	-	RepairShop2 の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-1857	2012-12-20 19:29	2010-05-7	Show	GitHub Exploit DB Packet Storm

224777	2.6	注意	realitymedias	-	RepairShop2 の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1856	2012-12-20 19:29	2010-05-7	Show	GitHub Exploit DB Packet Storm

224778	7.5	危険	phpscripte24	-	Pay Per Watch & Bid Auktions System の auktion.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-1855	2012-12-20 19:29	2010-05-7	Show	GitHub Exploit DB Packet Storm

224779	4.3	警告	phpscripte24	-	Pay Per Watch & Bid Auktions System の auktion.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1854	2012-12-20 19:29	2010-05-7	Show	GitHub Exploit DB Packet Storm

224780	6.8	警告	Transmission Project	-	Transmission の libtransmission/magnet.c におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-1853	2012-12-20 19:29	2010-05-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
941	-		-	-	A critical IDOR vulnerability has been discovered in Comet Backup affecting all versions from 20.11.0 to 26.1.1 and 26.2.1. The vulnerability allows a tenant administrator to impersonate any end-user…	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2026-29200	2026-05-4 16:16	2026-05-4	Show	GitHub Exploit DB Packet Storm

942	-		-	-	phpBB before 3.3.16 is vulnerable to Host Header Injection that can lead to password rest link poisoning. When force_server_vars is disabled, the servers hostname may be extracted from the HTTP Host …	CWE-640 Weak Password Recovery Mechanism for Forgotten Password	CVE-2026-29199	2026-05-4 16:15	2026-05-4	Show	GitHub Exploit DB Packet Storm

943	6.5	MEDIUM Network	-	-	A flaw was found in gnutls. This vulnerability occurs because gnutls performs case-sensitive comparisons of `nameConstraints` labels, specifically for `dNSName` (DNS) or `rfc822Name` (email) constrai…	CWE-178 Improper Handling of Case Sensitivity	CVE-2026-3833	2026-05-4 05:16	2026-05-1	Show	GitHub Exploit DB Packet Storm

944	3.7	LOW Network	-	-	A flaw was found in gnutls. A remote attacker could exploit this vulnerability by presenting a specially crafted Online Certificate Status Protocol (OCSP) response during a TLS handshake. Due to a lo…	CWE-179 Incorrect Behavior Order: Early Validation	CVE-2026-3832	2026-05-4 05:16	2026-05-1	Show	GitHub Exploit DB Packet Storm

945	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: net: mana: fix use-after-free in add_adev() error path If auxiliary_device_add() fails, add_adev() jumps to add_fail and calls au…	-	CVE-2026-43056	2026-05-3 16:16	2026-05-2	Show	GitHub Exploit DB Packet Storm

946	7.5	HIGH Network	-	-	In the Linux kernel, the following vulnerability has been resolved: scsi: target: file: Use kzalloc_flex for aio_cmd The target_core_file doesn't initialize the aio_cmd->iocb for the ki_write_strea…	-	CVE-2026-43055	2026-05-3 16:16	2026-05-2	Show	GitHub Exploit DB Packet Storm

947	8.1	HIGH Adjacent	-	-	In the Linux kernel, the following vulnerability has been resolved: HID: wacom: fix out-of-bounds read in wacom_intuos_bt_irq The wacom_intuos_bt_irq() function processes Bluetooth HID reports with…	-	CVE-2026-43051	2026-05-3 16:16	2026-05-2	Show	GitHub Exploit DB Packet Storm

948	8.8	HIGH Adjacent	-	-	In the Linux kernel, the following vulnerability has been resolved: HID: core: Mitigate potential OOB by removing bogus memset() The memset() in hid_report_raw_event() has the good intention of cle…	-	CVE-2026-43048	2026-05-3 16:16	2026-05-2	Show	GitHub Exploit DB Packet Storm

949	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: HID: multitouch: Check to ensure report responses match the request It is possible for a malicious (or clumsy) device to respond …	-	CVE-2026-43047	2026-05-3 16:16	2026-05-2	Show	GitHub Exploit DB Packet Storm

950	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: crypto: caam - fix DMA corruption on long hmac keys When a key longer than block size is supplied, it is copied and then hashed i…	-	CVE-2026-43044	2026-05-3 16:16	2026-05-2	Show	GitHub Exploit DB Packet Storm