Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
250761 3.5 注意 OTRS プロジェクト - OTRS におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-5055 2012-03-27 18:42 2011-03-18 Show GitHub Exploit DB Packet Storm
250762 7.5 危険 Smarty - Smarty におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-5054 2012-03-27 18:42 2011-02-3 Show GitHub Exploit DB Packet Storm
250763 7.5 危険 Smarty - Smarty における任意の PHP コードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2009-5053 2012-03-27 18:42 2011-02-3 Show GitHub Exploit DB Packet Storm
250764 10 危険 Smarty - Smarty における詳細不明の脆弱性 CWE-noinfo
情報不足 		CVE-2009-5052 2012-03-27 18:42 2011-02-3 Show GitHub Exploit DB Packet Storm
250765 5 警告 Hastymail - Hastymail2 におけるクッキーを取り込まれる脆弱性 CWE-16
環境設定 		CVE-2009-5051 2012-03-27 18:42 2011-01-18 Show GitHub Exploit DB Packet Storm
250766 5 警告 ViewVC - ViewVC における cvsdb row_limit 設定を迂回される脆弱性 CWE-399
リソース管理の問題 		CVE-2009-5024 2012-03-27 18:42 2011-05-23 Show GitHub Exploit DB Packet Storm
250767 6.8 警告 catb - gif2png における任意のコマンドを実行される脆弱性 CWE-119
バッファエラー 		CVE-2009-5018 2012-03-27 18:42 2011-01-14 Show GitHub Exploit DB Packet Storm
250768 4 警告 IBM - IBM Lotus Notes Traveler の traveler.exe におけるサービス運用妨害 (DoS) の脆弱性 CWE-DesignError
CVE-2009-5036 2012-03-27 18:42 2010-12-16 Show GitHub Exploit DB Packet Storm
250769 4.3 警告 IBM - IBM Lotus Notes Traveler の Nokia クライアントにおける他人への電子メールを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2009-5035 2012-03-27 18:42 2010-12-16 Show GitHub Exploit DB Packet Storm
250770 4 警告 IBM - IBM Lotus Notes Traveler におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-5034 2012-03-27 18:42 2010-12-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
3021 4.3 MEDIUM
Network 		- - The Forms Rb plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 1.1.9. This is due to the plugin not properly verifying that a user is authorized to perf… CWE-862
 Missing Authorization 		CVE-2026-7050 2026-05-12 23:03 2026-05-12 Show GitHub Exploit DB Packet Storm
3022 6.1 MEDIUM
Network 		- - The AzonPost plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the `editpos_hidden` parameter in all versions up to, and including, 1.3. This is due to insufficient input sanit… CWE-79
Cross-site Scripting 		CVE-2026-7437 2026-05-12 23:03 2026-05-12 Show GitHub Exploit DB Packet Storm
3023 6.1 MEDIUM
Network 		- - The WP Google Maps Integration plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the `page` parameter in all versions up to, and including, 1.2. This is due to insufficient inp… CWE-79
Cross-site Scripting 		CVE-2026-7464 2026-05-12 23:03 2026-05-12 Show GitHub Exploit DB Packet Storm
3024 6.1 MEDIUM
Network 		- - The Tm – WordPress Redirection plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.2. This is due to missing or incorrect nonce validation on a fu… CWE-352
 Origin Validation Error 		CVE-2026-7561 2026-05-12 23:03 2026-05-12 Show GitHub Exploit DB Packet Storm
3025 4.3 MEDIUM
Network 		- - The WP-Redirection plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to and including 1.0.3. This is due to the absence of a nonce field in the admin settings form a… CWE-352
 Origin Validation Error 		CVE-2026-7562 2026-05-12 23:03 2026-05-12 Show GitHub Exploit DB Packet Storm
3026 4.3 MEDIUM
Network 		- - The Zawgyi Embed plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.1.1. This is due to missing or incorrect nonce validation on the zawgyi_admin… CWE-352
 Origin Validation Error 		CVE-2026-7616 2026-05-12 23:03 2026-05-12 Show GitHub Exploit DB Packet Storm
3027 6.4 MEDIUM
Network 		- - The Advanced Social Media Icons plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the `social` shortcode in all versions up to, and including, 1.2. This is due to insufficient inp… CWE-79
Cross-site Scripting 		CVE-2026-7659 2026-05-12 23:03 2026-05-12 Show GitHub Exploit DB Packet Storm
3028 6.4 MEDIUM
Network 		- - The Bootstrap Shortcode plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the `box` shortcode in all versions up to, and including, 1.0. This is due to insufficient input sanitiza… CWE-79
Cross-site Scripting 		CVE-2026-7661 2026-05-12 23:03 2026-05-12 Show GitHub Exploit DB Packet Storm
3029 5.3 MEDIUM
Network 		- - The Slek Gateway for WooCommerce plugin for WordPress is vulnerable to Information Exposure in version 1.0. This is due to the wsb_handle_slek_payment_redirect() function placing the merchant's slek_… CWE-200
Information Exposure 		CVE-2026-7626 2026-05-12 23:03 2026-05-12 Show GitHub Exploit DB Packet Storm
3030 4.3 MEDIUM
Network 		- - The Motors – Car Dealership & Classified Listings plugin for WordPress is vulnerable to Payment Bypass via insecure user meta update in all versions up to, and including, 1.4.103 This is due to the s… CWE-862
 Missing Authorization 		CVE-2026-1934 2026-05-12 23:03 2026-05-12 Show GitHub Exploit DB Packet Storm