Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 11, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252031	7.5	危険	Google	-	Google Chrome にて使用される Google V8 におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2011-2348	2011-07-15 10:10	2011-06-28	Show	GitHub Exploit DB Packet Storm

252032	7.5	危険	Google	-	Google Chrome におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-2349	2011-07-15 10:09	2011-06-28	Show	GitHub Exploit DB Packet Storm

252033	7.5	危険	Google	-	Google Chrome の HTML パーサにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2011-2350	2011-07-15 10:08	2011-06-28	Show	GitHub Exploit DB Packet Storm

252034	7.5	危険	Google	-	Google Chrome におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-2351	2011-07-15 10:07	2011-06-28	Show	GitHub Exploit DB Packet Storm

252035	-	-	Cactusoft International FZ-LLC & Cactusoft Ltd.	-	Parodia にブラインド SQL インジェクションの脆弱性	-	-	2011-07-14 09:51	2011-06-28	Show	GitHub Exploit DB Packet Storm

252036	-	-	Zoho Corporation	-	ManageEngine ServiceDesk Plus にディレクトリトラバーサルの脆弱性	-	-	2011-07-14 09:50	2011-06-28	Show	GitHub Exploit DB Packet Storm

252037	6.1	警告	Linux レッドハット	-	Linux kernel のソケットの実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-4805	2011-07-14 09:40	2010-08-1	Show	GitHub Exploit DB Packet Storm

252038	5	警告	Mozilla Foundation	-	Mozilla の Firefox および SeaMonkey における XPInstall の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-2370	2011-07-13 10:09	2011-06-21	Show	GitHub Exploit DB Packet Storm

252039	4.3	警告	Mozilla Foundation	-	Mozilla Firefox および SeaMonkey におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-2369	2011-07-13 10:08	2011-06-21	Show	GitHub Exploit DB Packet Storm

252040	4.3	警告	Mozilla Foundation	-	Mozilla Firefox などで使用される Mozilla Gecko における任意のイメージの近似コピーを取得される脆弱性	CWE-20 不適切な入力確認	CVE-2011-2366	2011-07-13 10:06	2011-06-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
3891	7.6	HIGH Network	-	-	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in RealMag777 FOX woocommerce-currency-switcher allows Blind SQL Injection.This issue affects FOX: f…	CWE-89 SQL Injection	CVE-2026-39497	2026-04-25 03:08	2026-04-8	Show	GitHub Exploit DB Packet Storm

3892	6.5	MEDIUM Network	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Themesflat themesflat-addons-for-elementor themesflat-addons-for-elementor allows Stored XSS.This…	CWE-79 Cross-site Scripting	CVE-2026-39500	2026-04-25 03:08	2026-04-8	Show	GitHub Exploit DB Packet Storm

3893	5.3	MEDIUM Network	-	-	Missing Authorization vulnerability in RealMag777 FOX woocommerce-currency-switcher allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects FOX: from n/a through <=…	CWE-862 Missing Authorization	CVE-2026-39501	2026-04-25 03:08	2026-04-8	Show	GitHub Exploit DB Packet Storm

3894	5.4	MEDIUM Network	-	-	Missing Authorization vulnerability in InstaWP InstaWP Connect instawp-connect allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects InstaWP Connect: from n/a thr…	CWE-862 Missing Authorization	CVE-2026-39504	2026-04-25 03:08	2026-04-8	Show	GitHub Exploit DB Packet Storm

3895	5.3	MEDIUM Network	-	-	Missing Authorization vulnerability in Craig Hewitt Seriously Simple Podcasting seriously-simple-podcasting allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects …	CWE-862 Missing Authorization	CVE-2026-39505	2026-04-25 03:08	2026-04-8	Show	GitHub Exploit DB Packet Storm

3896	4.3	MEDIUM Network	-	-	Missing Authorization vulnerability in Jordy Meow AI Engine (Pro) ai-engine-pro allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects AI Engine (Pro): from n/a th…	CWE-862 Missing Authorization	CVE-2026-39506	2026-04-25 03:08	2026-04-8	Show	GitHub Exploit DB Packet Storm

3897	6.5	MEDIUM Network	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Josh Kohlbach Advanced Coupons for WooCommerce Coupons advanced-coupons-for-woocommerce-free allo…	CWE-79 Cross-site Scripting	CVE-2026-39508	2026-04-25 03:08	2026-04-8	Show	GitHub Exploit DB Packet Storm

3898	5.3	MEDIUM Network	-	-	Missing Authorization vulnerability in wpWax Directorist directorist allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Directorist: from n/a through <= 8.5.10.	CWE-862 Missing Authorization	CVE-2026-39509	2026-04-25 03:08	2026-04-8	Show	GitHub Exploit DB Packet Storm

3899	2.7	LOW Network	-	-	Authorization Bypass Through User-Controlled Key vulnerability in WP Chill Image Photo Gallery Final Tiles Grid final-tiles-grid-gallery-lite allows Exploiting Incorrectly Configured Access Control S…	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2026-39510	2026-04-25 03:08	2026-04-8	Show	GitHub Exploit DB Packet Storm

3900	5.3	MEDIUM Network	-	-	Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in POSIMYTH Nexter Blocks the-plus-addons-for-block-editor allows Retrieve Embedded Sensitive Data.This issue …	CWE-497 Exposure of Sensitive System Information to an Unauthorized Control Sphere	CVE-2026-39516	2026-04-25 03:08	2026-04-8	Show	GitHub Exploit DB Packet Storm