Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
241191	7.5	危険	Bioinformatics	-	OrderSys における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-5183	2012-09-21 15:29	2012-09-20	Show	GitHub Exploit DB Packet Storm

241192	4.3	警告	ClickDesk	-	WordPress 用 ClickDesk Live Support - Live Chat におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5181	2012-09-21 15:29	2012-09-20	Show	GitHub Exploit DB Packet Storm

241193	4.3	警告	ZooEffect	-	WordPress 用 ZooEffect プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5180	2012-09-21 15:29	2012-09-20	Show	GitHub Exploit DB Packet Storm

241194	4.3	警告	Skysa	-	WordPress 用 Skysa App Bar Integration プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5179	2012-09-21 15:28	2012-09-20	Show	GitHub Exploit DB Packet Storm

241195	4.3	警告	Infoblox	-	Infoblox NetMRI の netmri/config/userAdmin/login.tdf におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5178	2012-09-21 15:28	2011-10-18	Show	GitHub Exploit DB Packet Storm

241196	4.3	警告	eSyndiCat	-	eSyndiCat Pro の admin/controller.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5177	2012-09-21 15:27	2012-09-20	Show	GitHub Exploit DB Packet Storm

241197	5	警告	WizOne Solutions	-	Drupal 用 Fill PDF モジュールにおける任意の PDF ファイルを書かれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-5007	2012-09-21 15:01	2012-01-4	Show	GitHub Exploit DB Packet Storm

241198	6.8	警告	Database Publishing Consultants	-	Drupal 用 Admin:hover モジュールにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-1631	2012-09-21 15:01	2012-01-11	Show	GitHub Exploit DB Packet Storm

241199	2.1	注意	Nestor Mata Cuthbert	-	Drupal 用 Taxonomy Navigator モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1630	2012-09-21 15:00	2012-01-11	Show	GitHub Exploit DB Packet Storm

241200	2.1	注意	Dmitry Loac	-	Drupal 用 Taxotouch モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1629	2012-09-21 15:00	2012-01-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2051	3.1	LOW Adjacent	-	-	A security vulnerability has been detected in Besen BS20 EV Charging Station up to 20260426. This affects an unknown part of the component BLE/WiFi. Such manipulation leads to authentication bypass b…	CWE-287 CWE-294 Improper Authentication Authentication Bypass by Capture-replay	CVE-2026-9398	2026-05-27 04:57	2026-05-25	Show	GitHub Exploit DB Packet Storm

2052	8.8	HIGH Network	-	-	A vulnerability has been found in Tenda F1202 1.2.0.20(408). Affected is the function fromPPTPUserSetting of the file /goform/PPTPUserSetting. Such manipulation of the argument delno leads to stack-b…	CWE-119 CWE-121 Incorrect Access of Indexable Resource ('Range Error') Stack-based Buffer Overflow	CVE-2026-9428	2026-05-27 04:57	2026-05-25	Show	GitHub Exploit DB Packet Storm

2053	8.8	HIGH Network	-	-	A vulnerability was found in Tenda F1202 1.2.0.20(408). Affected by this vulnerability is the function formWrlExtraSet of the file /goform/WrlExtraSet. Performing a manipulation of the argument delno…	CWE-119 CWE-121 Incorrect Access of Indexable Resource ('Range Error') Stack-based Buffer Overflow	CVE-2026-9429	2026-05-27 04:57	2026-05-25	Show	GitHub Exploit DB Packet Storm

2054	8.8	HIGH Network	-	-	A vulnerability was determined in Tenda F1202 1.2.0.20(408). Affected by this issue is the function formGstDhcpSetSer of the file /goform/GstDhcpSetSerof. Executing a manipulation of the argument dip…	CWE-119 CWE-121 Incorrect Access of Indexable Resource ('Range Error') Stack-based Buffer Overflow	CVE-2026-9430	2026-05-27 04:57	2026-05-25	Show	GitHub Exploit DB Packet Storm

2055	8.8	HIGH Network	-	-	A vulnerability was identified in Tenda F1202 1.2.0.20(408). This affects the function fromPptpUserAdd of the file /goform/PptpUserAdd. The manipulation of the argument opttype leads to stack-based b…	CWE-119 CWE-121 Incorrect Access of Indexable Resource ('Range Error') Stack-based Buffer Overflow	CVE-2026-9431	2026-05-27 04:57	2026-05-25	Show	GitHub Exploit DB Packet Storm

2056	5.3	MEDIUM Network	-	-	A vulnerability was determined in calcom cal.diy up to 4.9.4. Affected by this issue is the function getServerSideProps of the file apps/web/modules/bookings/views/bookings-single-view.getServerSideP…	CWE-200 CWE-284 Information Exposure Improper Access Control	CVE-2026-9349	2026-05-27 04:54	2026-05-24	Show	GitHub Exploit DB Packet Storm

2057	3.5	LOW Network	-	-	A vulnerability was found in vBulletin 6.x. This impacts an unknown function of the component Login. Performing a manipulation results in cross site scripting. It is possible to initiate the attack r…	CWE-79 CWE-94 Cross-site Scripting Code Injection	CVE-2026-9357	2026-05-27 04:54	2026-05-24	Show	GitHub Exploit DB Packet Storm

2058	4.3	MEDIUM Network	-	-	A vulnerability was determined in postcss up to 7.1.1. Affected is the function toString of the file src/selectors/container.js of the component AST Serialization. Executing a manipulation can lead t…	CWE-404 CWE-674 Improper Resource Shutdown or Release Uncontrolled Recursion	CVE-2026-9358	2026-05-27 04:54	2026-05-24	Show	GitHub Exploit DB Packet Storm

2059	5.6	MEDIUM Network	-	-	A security vulnerability has been detected in ItzCrazyKns Vane up to 1.12.1. Affected by this issue is some unknown functionality of the file route.ts of the component API. The manipulation leads to …	CWE-287 CWE-306 Improper Authentication Missing Authentication for Critical Function	CVE-2026-9371	2026-05-27 04:54	2026-05-24	Show	GitHub Exploit DB Packet Storm

2060	3.7	LOW Network	-	-	A weakness has been identified in ulisesbocchio jasypt-spring-boot up to 3.0.5/4.0.4. Affected by this vulnerability is the function getSecretKeySaltGenerator of the file jasypt-spring-boot/src/main/…	CWE-759 CWE-760 Use of a One-Way Hash without a Salt Use of a One-Way Hash with a Predictable Salt	CVE-2026-9370	2026-05-27 04:54	2026-05-24	Show	GitHub Exploit DB Packet Storm