Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 4:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
243621 4.9 警告 ヒューレット・パッカード - OpenVMS for Integrity Servers の PAS$RTL.EXE におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-2998 2012-09-25 16:47 2007-06-4 Show GitHub Exploit DB Packet Storm
243622 4.3 警告 omegasoft - OMEGA INSEL の OmegaMw7.asp におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2993 2012-09-25 16:47 2007-06-4 Show GitHub Exploit DB Packet Storm
243623 7.5 危険 omegasoft - OMEGA INSEL の OmegaMw7.asp における SQL インジェクションの脆弱性 - CVE-2007-2992 2012-09-25 16:47 2007-06-4 Show GitHub Exploit DB Packet Storm
243624 7.5 危険 inoutscripts - Inout Meta Search Engine の特定の admin スクリプトにおける任意の PHP コードを挿入される脆弱性 - CVE-2007-2988 2012-09-25 16:47 2007-06-1 Show GitHub Exploit DB Packet Storm
243625 7.5 危険 nexen - AdminBot MX の lib/live_status.lib.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2986 2012-09-25 16:47 2007-06-1 Show GitHub Exploit DB Packet Storm
243626 10 危険 pheap - Pheap における認証を回避される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2007-2985 2012-09-25 16:47 2007-06-1 Show GitHub Exploit DB Packet Storm
243627 6.8 警告 media technology group - CDPass.dll におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2007-2984 2012-09-25 16:47 2007-06-1 Show GitHub Exploit DB Packet Storm
243628 9.3 危険 LEAD Technologies, Inc. - LEAD Technologies の LEADTOOLS におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2007-2981 2012-09-25 16:47 2007-05-31 Show GitHub Exploit DB Packet Storm
243629 6.8 警告 LEAD Technologies, Inc. - LEADTOOLS LEAD Raster ISIS Object におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2007-2980 2012-09-25 16:47 2007-05-31 Show GitHub Exploit DB Packet Storm
243630 7.5 危険 Ignite Realtime - Ignite Realtime Openfire の admin コンソールにおける任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2007-2975 2012-09-25 16:47 2007-05-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
3001 9.3 CRITICAL
Network
- - Unauthenticated SQL Injection in Simply Schedule Appointments <= 1.6.9.27 versions. CWE-89
SQL Injection
CVE-2026-39493 2026-06-16 06:24 2026-06-16 Show GitHub Exploit DB Packet Storm
3002 7.2 HIGH
Network
- - Shop manager PHP Object Injection in YayMail <= 4.3.3 versions. CWE-502
 Deserialization of Untrusted Data
CVE-2026-39498 2026-06-16 06:24 2026-06-16 Show GitHub Exploit DB Packet Storm
3003 7.2 HIGH
Network
- - Shop manager PHP Object Injection in Advanced Product Fields (Product Addons) for WooCommerce <= 1.6.19 versions. CWE-502
 Deserialization of Untrusted Data
CVE-2026-39499 2026-06-16 06:24 2026-06-16 Show GitHub Exploit DB Packet Storm
3004 9.3 CRITICAL
Network
- - Unauthenticated SQL Injection in Form Maker by 10Web <= 1.15.38 versions. CWE-89
SQL Injection
CVE-2026-39502 2026-06-16 06:24 2026-06-16 Show GitHub Exploit DB Packet Storm
3005 7.5 HIGH
Network
- - Unauthenticated Broken Access Control in Easy Digital Downloads <= 3.6.5 versions. CWE-862
 Missing Authorization
CVE-2026-39503 2026-06-16 06:24 2026-06-16 Show GitHub Exploit DB Packet Storm
3006 7.1 HIGH
Network
- - Unauthenticated Cross Site Scripting (XSS) in Social Slider Feed <= 2.3.2 versions. CWE-79
Cross-site Scripting
CVE-2026-39507 2026-06-16 06:24 2026-06-16 Show GitHub Exploit DB Packet Storm
3007 9.3 CRITICAL
Network
- - Unauthenticated SQL Injection in WP Photo Album Plus <= 9.1.08.001 versions. CWE-89
SQL Injection
CVE-2026-39511 2026-06-16 06:24 2026-06-16 Show GitHub Exploit DB Packet Storm
3008 9.3 CRITICAL
Network
- - Unauthenticated SQL Injection in GeoDirectory <= 2.8.152 versions. CWE-89
SQL Injection
CVE-2026-39512 2026-06-16 06:24 2026-06-16 Show GitHub Exploit DB Packet Storm
3009 7.5 HIGH
Network
- - Unauthenticated Broken Access Control in Easy Appointments <= 3.12.21 versions. CWE-862
 Missing Authorization
CVE-2026-39513 2026-06-16 06:24 2026-06-16 Show GitHub Exploit DB Packet Storm
3010 7.1 HIGH
Network
- - Unauthenticated Cross Site Scripting (XSS) in Paid Member Subscriptions <= 2.17.3 versions. CWE-79
Cross-site Scripting
CVE-2026-39514 2026-06-16 06:24 2026-06-16 Show GitHub Exploit DB Packet Storm