Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
240161 6.8 警告 mkportal - MKPortal の admin.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-0191 2012-09-25 15:36 2007-01-12 Show GitHub Exploit DB Packet Storm
240162 7.5 危険 PHP Web Scripts - Easy Banner Pro の info.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-0178 2012-09-25 15:36 2007-01-10 Show GitHub Exploit DB Packet Storm
240163 5.1 警告 MediaWiki - MediaWiki の AJAX モジュールにおけるクロスサイトスクリプティングの脆弱性 - CVE-2007-0177 2012-09-25 15:36 2007-01-10 Show GitHub Exploit DB Packet Storm
240164 6.8 警告 l2j - L2J Statistik Script の index.php におけるディレクトリトラバーサルの脆弱性 - CVE-2007-0173 2012-09-25 15:36 2007-01-10 Show GitHub Exploit DB Packet Storm
240165 7.5 危険 locazo - LocazoList の main.asp における SQL インジェクションの脆弱性 - CVE-2007-0129 2012-09-25 15:36 2007-01-9 Show GitHub Exploit DB Packet Storm
240166 9.3 危険 Opera Software ASA - Opera の Javascript SVG サポートにおける任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2007-0127 2012-09-25 15:36 2007-01-8 Show GitHub Exploit DB Packet Storm
240167 9.3 危険 Opera Software ASA - Opera におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-0126 2012-09-25 15:36 2007-01-8 Show GitHub Exploit DB Packet Storm
240168 5 警告 カスペルスキー - Kaspersky Lab Antivurus Engine におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-0125 2012-09-25 15:36 2007-01-8 Show GitHub Exploit DB Packet Storm
240169 6.8 警告 michael romedahl - RI Blog の search.asp におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-0121 2012-09-25 15:36 2007-01-8 Show GitHub Exploit DB Packet Storm
240170 6.8 警告 packeteer - Packeteer PacketShaper PacketWise におけるバッファオーバーフローの脆弱性 - CVE-2007-0113 2012-09-25 15:36 2007-01-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1481 7.1 HIGH
Network 		- - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in phbernard Favicon favicon-by-realfavicongenerator allows Reflected XSS.This issue affects Favicon… CWE-79
Cross-site Scripting 		CVE-2026-42754 2026-05-27 23:50 2026-05-27 Show GitHub Exploit DB Packet Storm
1482 9.3 CRITICAL
Network 		- - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in RealMag777 TableOn posts-table-filterable allows Blind SQL Injection.This issue affects TableOn: … CWE-89
SQL Injection 		CVE-2026-42755 2026-05-27 23:50 2026-05-27 Show GitHub Exploit DB Packet Storm
1483 9.9 CRITICAL
Network 		- - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Ludwig You QuickWebP – Compress / Optimize Images & Convert WebP | SEO Friendly quickwebp all… CWE-22
Path Traversal 		CVE-2026-42756 2026-05-27 23:50 2026-05-27 Show GitHub Exploit DB Packet Storm
1484 9.9 CRITICAL
Network 		- - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Saleswonder Team: Tobias WebinarIgnition webinar-ignition allows Path Traversal.This issue affects Webi… CWE-22
Path Traversal 		CVE-2026-42757 2026-05-27 23:50 2026-05-27 Show GitHub Exploit DB Packet Storm
1485 9.8 CRITICAL
Network 		- - Incorrect Privilege Assignment vulnerability in Saleswonder Team: Tobias WebinarIgnition webinar-ignition allows Privilege Escalation.This issue affects WebinarIgnition: from n/a through < 4.08.253. CWE-266
 Incorrect Privilege Assignment 		CVE-2026-42758 2026-05-27 23:50 2026-05-27 Show GitHub Exploit DB Packet Storm
1486 7.1 HIGH
Network 		- - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Timo Affiliate Super Assistent amazonsimpleadmin allows Stored XSS.This issue affects Affiliate S… CWE-79
Cross-site Scripting 		CVE-2026-42759 2026-05-27 23:50 2026-05-27 Show GitHub Exploit DB Packet Storm
1487 7.5 HIGH
Network 		- - Authentication Bypass Using an Alternate Path or Channel vulnerability in revmakx Backup and Staging by WP Time Capsule wp-time-capsule allows Password Recovery Exploitation.This issue affects Backup… CWE-288
Authentication Bypass Using an Alternate Path or Channel 		CVE-2026-42760 2026-05-27 23:50 2026-05-27 Show GitHub Exploit DB Packet Storm
1488 9.3 CRITICAL
Network 		- - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in RealMag777 Active Products Tables for WooCommerce profit-products-tables-for-woocommerce allows B… CWE-89
SQL Injection 		CVE-2026-42761 2026-05-27 23:50 2026-05-27 Show GitHub Exploit DB Packet Storm
1489 7.1 HIGH
Network 		- - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in e4jvikwp VikBooking Hotel Booking Engine & PMS vikbooking allows DOM-Based XSS.This issue affects… CWE-79
Cross-site Scripting 		CVE-2026-42762 2026-05-27 23:50 2026-05-27 Show GitHub Exploit DB Packet Storm
1490 4.3 MEDIUM
Network 		- - Missing Authorization vulnerability in WebToffee Product Import Export for WooCommerce allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Product Import Expo… CWE-862
 Missing Authorization 		CVE-2026-48971 2026-05-27 23:50 2026-05-27 Show GitHub Exploit DB Packet Storm