Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 12, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252431	6.1	警告	FON	-	La Fonera+ におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2011-1326	2011-05-11 12:02	2011-05-11	Show	GitHub Exploit DB Packet Storm

252432	7.2	危険	シマンテック	-	Windows のヘルプ機能を使用するアプリケーションにおける権限昇格が可能になる問題	CWE-264 認可・権限・アクセス制御	CVE-2002-1540 CVE-2005-2017	2011-05-11 12:01	2011-05-11	Show	GitHub Exploit DB Packet Storm

252433	5	警告	オラクル	-	Oracle Database Server の Network Foundation コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2011-0806	2011-05-11 11:00	2011-04-19	Show	GitHub Exploit DB Packet Storm

252434	4.3	警告	オラクル	-	Oracle Database Server の UIX コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2011-0805	2011-05-11 10:58	2011-04-19	Show	GitHub Exploit DB Packet Storm

252435	3.6	注意	オラクル	-	Oracle Database Server の Database Vault コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2011-0804	2011-05-11 10:58	2011-04-19	Show	GitHub Exploit DB Packet Storm

252436	6.5	警告	オラクル	-	Oracle Database Server の Oracle Warehouse Builder コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2011-0799	2011-05-11 10:57	2011-04-19	Show	GitHub Exploit DB Packet Storm

252437	3.6	注意	オラクル	-	Oracle Database Server の Database Vault コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2011-0793	2011-05-11 10:55	2011-04-19	Show	GitHub Exploit DB Packet Storm

252438	6.5	警告	オラクル	-	Oracle Database Server の Oracle Warehouse Builder コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2011-0792	2011-05-11 10:54	2011-04-19	Show	GitHub Exploit DB Packet Storm

252439	5.5	警告	オラクル	-	複数の Oracle 製品の Application Service Level Management コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2011-0787	2011-05-11 10:53	2011-04-19	Show	GitHub Exploit DB Packet Storm

252440	4.3	警告	オラクル	-	複数の Oracle 製品の Oracle Help コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2011-0785	2011-05-11 10:52	2011-04-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
4291	6.4	MEDIUM Network	-	-	The Ultimate FAQ Accordion plugin for WordPress is vulnerable to Stored Cross-Site Scripting via FAQ content in all versions up to, and including, 2.4.7. This is due to the plugin calling html_entity…	CWE-79 Cross-site Scripting	CVE-2026-4336	2026-04-25 03:03	2026-04-9	Show	GitHub Exploit DB Packet Storm

4292	4.7	MEDIUM Network	-	-	A security flaw has been discovered in PHPGurukul News Portal Project 4.1. Impacted is an unknown function of the file /admin/check_availability.php. Performing a manipulation of the argument Usernam…	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-5840	2026-04-25 03:03	2026-04-9	Show	GitHub Exploit DB Packet Storm

4293	7.3	HIGH Network	-	-	A security vulnerability has been detected in decolua 9router up to 0.3.47. The impacted element is an unknown function of the file /api of the component Administrative API Endpoint. The manipulation…	CWE-285 CWE-639 Improper Authorization Authorization Bypass Through User-Controlled Key	CVE-2026-5842	2026-04-25 03:03	2026-04-9	Show	GitHub Exploit DB Packet Storm

4294	4.3	MEDIUM Network	-	-	A vulnerability has been found in code-projects Movie Ticketing System 1.0. Impacted is an unknown function of the file /db/moviedb.sql of the component SQL Database Backup File Handler. Such manipul…	CWE-200 CWE-284 Information Exposure Improper Access Control	CVE-2026-5847	2026-04-25 03:03	2026-04-9	Show	GitHub Exploit DB Packet Storm

4295	4.7	MEDIUM Network	-	-	A vulnerability was found in jeecgboot JimuReport up to 2.3.0. The affected element is the function DriverManager.getConnection of the file /drag/onlDragDataSource/testConnection of the component Dat…	CWE-74 CWE-94 Injection Code Injection	CVE-2026-5848	2026-04-25 03:03	2026-04-9	Show	GitHub Exploit DB Packet Storm

4296	7.6	HIGH Network	freescout	freescout	FreeScout is a free help desk and shared inbox built with PHP's Laravel framework. Prior to 1.8.212, FreeScout does not take the limit_user_customer_visibility parameter into account when merging cus…	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2026-39384	2026-04-25 03:03	2026-04-8	Show	GitHub Exploit DB Packet Storm

4297	5.3	MEDIUM Network	-	-	The Online Scheduling and Appointment Booking System – Bookly plugin for WordPress is vulnerable to price manipulation via the 'tips' parameter in all versions up to, and including, 27.0. This is due…	CWE-472 External Control of Assumed-Immutable Web Parameter	CVE-2026-2519	2026-04-25 03:02	2026-04-9	Show	GitHub Exploit DB Packet Storm

4298	6.4	MEDIUM Network	-	-	The List category posts plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'catlist' shortcode in all versions up to, and including, 0.94.0 due to insufficient input s…	CWE-79 Cross-site Scripting	CVE-2026-3005	2026-04-25 03:02	2026-04-9	Show	GitHub Exploit DB Packet Storm

4299	6.6	MEDIUM Network	-	-	A security flaw has been discovered in GL.iNet GL-RM1, GL-RM10, GL-RM10RC and GL-RM1PE 1.8.1. Affected by this issue is some unknown functionality of the component Factory Reset Handler. Performing a…	CWE-287 Improper Authentication	CVE-2026-5959	2026-04-25 03:02	2026-04-10	Show	GitHub Exploit DB Packet Storm

4300	4.3	MEDIUM Network	-	-	A weakness has been identified in code-projects Patient Record Management System 1.0. This affects an unknown part of the file /db/hcpms.sql of the component SQL Database Backup File Handler. Executi…	CWE-200 CWE-284 Information Exposure Improper Access Control	CVE-2026-5960	2026-04-25 03:02	2026-04-10	Show	GitHub Exploit DB Packet Storm