Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
233671 6.4 警告 LIGHTTPD - lighttpd の http_auth.c におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-3946 2012-09-25 16:47 2007-07-23 Show GitHub Exploit DB Packet Storm
233672 4.3 警告 jasmine - Jasmine CMS の profile.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-3941 2012-09-25 16:47 2007-07-20 Show GitHub Exploit DB Packet Storm
233673 7.5 危険 MAXDev - MD-Pro の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-3938 2012-09-25 16:47 2007-07-20 Show GitHub Exploit DB Packet Storm
233674 7.5 危険 Joomla! - Joomla! 用の Expose RC35 における任意の PHP コードを実行される脆弱性 - CVE-2007-3932 2012-09-25 16:47 2007-07-20 Show GitHub Exploit DB Packet Storm
233675 4.3 警告 Andreas Gohr
マイクロソフト		 - Microsoft Internet Explorer などにおけるクロスサイトスクリプティング攻撃を実行される脆弱性 - CVE-2007-3930 2012-09-25 16:47 2007-07-20 Show GitHub Exploit DB Packet Storm
233676 9.3 危険 Opera Software ASA - Opera の BitTorrent サポートにおける任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2007-3929 2012-09-25 16:47 2007-07-20 Show GitHub Exploit DB Packet Storm
233677 10 危険 Ipswitch, Inc. - Ipswitch IMail Server 2006 におけるバッファオーバーフローの脆弱性 - CVE-2007-3927 2012-09-25 16:47 2007-07-20 Show GitHub Exploit DB Packet Storm
233678 7.8 危険 Ipswitch, Inc. - Ipswitch IMail Server 2006 におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-3926 2012-09-25 16:47 2007-07-20 Show GitHub Exploit DB Packet Storm
233679 6.5 警告 Ipswitch, Inc. - Ipswitch IMail Server 2006 の imapd32.exe におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-3925 2012-09-25 16:47 2007-07-20 Show GitHub Exploit DB Packet Storm
233680 9.3 危険 マイクロソフト
ネットスケープ		 - Microsoft Internet Explorer における任意のコマンドを実行される脆弱性 - CVE-2007-3924 2012-09-25 16:47 2007-07-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 23, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1981 5.3 MEDIUM
Network 		- - Missing Authorization vulnerability in nmerii NM Gift Registry and Wishlist Lite nm-gift-registry-and-wishlist-lite allows Exploiting Incorrectly Configured Access Control Security Levels.This issue … CWE-862
 Missing Authorization 		CVE-2026-39588 2026-04-14 04:16 2026-04-8 Show GitHub Exploit DB Packet Storm
1982 5.3 MEDIUM
Network 		- - Missing Authorization vulnerability in Arraytics Booktics booktics allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Booktics: from n/a through <= 1.0.16. CWE-862
 Missing Authorization 		CVE-2026-39585 2026-04-14 04:16 2026-04-8 Show GitHub Exploit DB Packet Storm
1983 5.3 MEDIUM
Network 		- - Missing Authorization vulnerability in BoldGrid Client Invoicing by Sprout Invoices sprout-invoices allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Client I… CWE-862
 Missing Authorization 		CVE-2026-39562 2026-04-14 04:16 2026-04-8 Show GitHub Exploit DB Packet Storm
1984 5.3 MEDIUM
Network 		- - Missing Authorization vulnerability in fullworks Display Eventbrite Events widget-for-eventbrite-api allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Display… CWE-862
 Missing Authorization 		CVE-2026-39535 2026-04-14 04:16 2026-04-8 Show GitHub Exploit DB Packet Storm
1985 5.3 MEDIUM
Network 		- - Missing Authorization vulnerability in weDevs weDocs wedocs allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects weDocs: from n/a through <= 2.1.18. CWE-862
 Missing Authorization 		CVE-2026-39520 2026-04-14 04:16 2026-04-8 Show GitHub Exploit DB Packet Storm
1986 5.3 MEDIUM
Network 		- - Missing Authorization vulnerability in wpWax Directorist directorist allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Directorist: from n/a through <= 8.5.10. CWE-862
 Missing Authorization 		CVE-2026-39509 2026-04-14 04:16 2026-04-8 Show GitHub Exploit DB Packet Storm
1987 4.3 MEDIUM
Network 		- - Missing Authorization vulnerability in Jordy Meow AI Engine (Pro) ai-engine-pro allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects AI Engine (Pro): from n/a th… CWE-862
 Missing Authorization 		CVE-2026-39506 2026-04-14 04:16 2026-04-8 Show GitHub Exploit DB Packet Storm
1988 5.4 MEDIUM
Network 		- - Missing Authorization vulnerability in InstaWP InstaWP Connect instawp-connect allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects InstaWP Connect: from n/a thr… CWE-862
 Missing Authorization 		CVE-2026-39504 2026-04-14 04:16 2026-04-8 Show GitHub Exploit DB Packet Storm
1989 6.3 MEDIUM
Network 		- - Missing Authorization vulnerability in SureCart SureCart surecart allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects SureCart: from n/a through <= 4.0.2. CWE-862
 Missing Authorization 		CVE-2026-39488 2026-04-14 04:16 2026-04-8 Show GitHub Exploit DB Packet Storm
1990 4.3 MEDIUM
Network 		- - Missing Authorization vulnerability in Brainstorm Force CartFlows cartflows allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects CartFlows: from n/a through <= 2… CWE-862
 Missing Authorization 		CVE-2026-39477 2026-04-14 04:16 2026-04-8 Show GitHub Exploit DB Packet Storm