Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
251191 6.9 警告 アップル
サイバートラスト株式会社
The Perl Foundation
レッドハット
- Perl の rmtree 関数における任意のファイルを削除される脆弱性 CWE-362
競合状態
CVE-2008-5303 2010-06-30 18:16 2008-12-1 Show GitHub Exploit DB Packet Storm
251192 6.9 警告 アップル
サイバートラスト株式会社
The Perl Foundation
レッドハット
- Perl の rmtree 関数における任意の setuid バイナリを作成される脆弱性 CWE-362
競合状態
CVE-2008-5302 2010-06-30 18:16 2008-12-1 Show GitHub Exploit DB Packet Storm
251193 9.3 危険 アップル - Apple Safari の WebKit における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題
CVE-2010-1419 2010-06-29 16:59 2010-06-10 Show GitHub Exploit DB Packet Storm
251194 9.3 危険 アップル - Apple Safari の WebKit における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題
CVE-2010-1412 2010-06-25 18:51 2010-06-10 Show GitHub Exploit DB Packet Storm
251195 9.3 危険 アップル - Apple Safari の WebKit における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題
CVE-2010-1749 2010-06-24 15:38 2010-06-10 Show GitHub Exploit DB Packet Storm
251196 7.8 危険 日立 - JP1/ServerConductor/Deployment Manager における不正にシャットダウンまたはリブートを実行する脆弱性 CWE-noinfo
情報不足
- 2010-06-22 17:28 2010-06-4 Show GitHub Exploit DB Packet Storm
251197 6.8 警告 pon software - Explzh におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2010-2434 2010-06-22 14:01 2010-06-22 Show GitHub Exploit DB Packet Storm
251198 4.3 警告 アップル - Apple Safari の WebKit における任意のファイルを読まれる脆弱性 CWE-200
情報漏えい
CVE-2010-1388 2010-06-21 16:56 2010-06-10 Show GitHub Exploit DB Packet Storm
251199 9.3 危険 アップル - Apple Safari における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題
CVE-2010-1750 2010-06-18 18:21 2010-06-10 Show GitHub Exploit DB Packet Storm
251200 9.3 危険 アップル - Apple Safari における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題
CVE-2010-1385 2010-06-18 18:20 2010-06-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2381 7.5 HIGH
Network
huawei harmonyos
emui
Permission bypass vulnerability in the LBS module. Impact: Successful exploitation of this vulnerability may affect availability. CWE-270
 Privilege Context Switching Error
CVE-2026-34853 2026-04-16 13:52 2026-04-13 Show GitHub Exploit DB Packet Storm
2382 7.5 HIGH
Network
huawei harmonyos UAF vulnerability in the communication module. Impact: Successful exploitation of this vulnerability may affect availability. CWE-362
Race Condition
CVE-2026-34856 2026-04-16 13:47 2026-04-13 Show GitHub Exploit DB Packet Storm
2383 6.5 MEDIUM
Network
huawei harmonyos Access control vulnerability in the memo module. Impact: Successful exploitation of this vulnerability will affect availability and confidentiality. CWE-284
Improper Access Control
CVE-2026-34860 2026-04-16 13:45 2026-04-13 Show GitHub Exploit DB Packet Storm
2384 6.4 MEDIUM
Network
- - The Vantage theme for WordPress is vulnerable to Stored Cross-Site Scripting via Gallery block text content in versions up to, and including, 1.20.32 due to insufficient output escaping in the galler… CWE-79
Cross-site Scripting
CVE-2026-5070 2026-04-16 13:17 2026-04-16 Show GitHub Exploit DB Packet Storm
2385 6.1 MEDIUM
Network
- - The CodeColorer plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'class' parameter in 'cc' comment shortcode in versions up to, and including, 0.10.1 due to insufficient inpu… CWE-79
Cross-site Scripting
CVE-2026-4032 2026-04-16 13:17 2026-04-16 Show GitHub Exploit DB Packet Storm
2386 6.4 MEDIUM
Network
- - The WP Docs plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'wpdocs_options[icon_size]' parameter in all versions up to, and including, 2.2.9 due to insufficient input sanit… CWE-79
Cross-site Scripting
CVE-2026-3878 2026-04-16 13:17 2026-04-16 Show GitHub Exploit DB Packet Storm
2387 6.4 MEDIUM
Network
- - The WP Shortcodes Plugin — Shortcodes Ultimate plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'su_box' shortcode in all versions up to, and including, 7.4.9 due to… CWE-79
Cross-site Scripting
CVE-2026-3885 2026-04-16 12:16 2026-04-16 Show GitHub Exploit DB Packet Storm
2388 6.4 MEDIUM
Network
- - The WP YouTube Lyte plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'lyte' shortcode in all versions up to, and including, 1.7.29 due to insufficient input sanitiza… CWE-79
Cross-site Scripting
CVE-2026-3299 2026-04-16 11:16 2026-04-16 Show GitHub Exploit DB Packet Storm
2389 6.3 MEDIUM
Network
geosolutionsgroup geonode GeoNode versions 4.4.5 and 5.0.2 (and prior within their respective releases) contain a server-side request forgery vulnerability in the service registration endpoint that allows authenticated attack… CWE-918
Server-Side Request Forgery (SSRF) 
CVE-2026-39922 2026-04-16 10:16 2026-04-11 Show GitHub Exploit DB Packet Storm
2390 6.3 MEDIUM
Network
geosolutionsgroup geonode GeoNode versions 4.0 before 4.4.5 and 5.0 before 5.0.2 contain a server-side request forgery vulnerability that allows authenticated users with document upload permissions to trigger arbitrary outbou… CWE-918
Server-Side Request Forgery (SSRF) 
CVE-2026-39921 2026-04-16 10:16 2026-04-11 Show GitHub Exploit DB Packet Storm