Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":April 30, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252681	5	警告	アップル ClamAV	-	ClamAV の libclamav/mspack.c における qtm_decompress 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-1311	2010-09-8 15:52	2010-04-8	Show	GitHub Exploit DB Packet Storm

252682	5	警告	アップル	-	Apple Mac OS X の CFNetwork における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-1800	2010-09-8 15:51	2010-08-25	Show	GitHub Exploit DB Packet Storm

252683	6.8	警告	アップル	-	Apple Mac OS X の Apple Type Services におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-1808	2010-09-8 15:51	2010-08-25	Show	GitHub Exploit DB Packet Storm

252684	6.2	警告	サイバートラスト株式会社 Todd C. Miller ターボリナックスレッドハット	-	sudo の secure path 機能における権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-1646	2010-09-8 15:50	2010-06-7	Show	GitHub Exploit DB Packet Storm

252685	6.9	警告	サイバートラスト株式会社 Todd C. Miller ターボリナックスレッドハット	-	sudo における任意のコマンドを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-1163	2010-09-8 15:50	2010-04-16	Show	GitHub Exploit DB Packet Storm

252686	10	危険	ESET アップル ClamAV ソースネクスト	-	複数のアンチウィルス製品に脆弱性	CWE-noinfo 情報不足	CVE-2010-0098	2010-09-8 15:50	2010-04-13	Show	GitHub Exploit DB Packet Storm

252687	7.5	危険	The PHP Group アップル	-	PHP の safe_mode 実装におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-1129	2010-09-8 15:49	2010-03-26	Show	GitHub Exploit DB Packet Storm

252688	4.4	警告	サイバートラスト株式会社 Todd C. Miller ターボリナックスレッドハット	-	sudo における権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0427	2010-09-8 15:49	2010-02-25	Show	GitHub Exploit DB Packet Storm

252689	6.6	警告	サイバートラスト株式会社レッドハット	-	QEMU-KVM の subpage MMIO initialization 機能における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-2784	2010-09-7 15:51	2010-08-19	Show	GitHub Exploit DB Packet Storm

252690	6.6	警告	サイバートラスト株式会社レッドハット	-	QEMU-KVM のゲスト QXL ドライバポインタにおける権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2010-0431	2010-09-7 15:50	2010-08-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 30, 2026, 4:58 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1641	5.3	MEDIUM Network	-	-	Missing Authorization vulnerability in nmerii NM Gift Registry and Wishlist Lite nm-gift-registry-and-wishlist-lite allows Exploiting Incorrectly Configured Access Control Security Levels.This issue …	CWE-862 Missing Authorization	CVE-2026-39588	2026-04-25 03:07	2026-04-8	Show	GitHub Exploit DB Packet Storm

1642	4.3	MEDIUM Network	-	-	Missing Authorization vulnerability in Andy Ha DEPART depart-deposit-and-part-payment-for-woo allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects DEPART: from n…	CWE-862 Missing Authorization	CVE-2026-39592	2026-04-25 03:07	2026-04-8	Show	GitHub Exploit DB Packet Storm

1643	-		-	-	Missing Authorization vulnerability in Rustaurius Order Tracking order-tracking allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Order Tracking: from n/a thr…	CWE-862 Missing Authorization	CVE-2026-39602	2026-04-25 03:07	2026-04-8	Show	GitHub Exploit DB Packet Storm

1644	5.4	MEDIUM Network	-	-	Cross-Site Request Forgery (CSRF) vulnerability in ThemeGoods Grand Photography grandphotography allows Cross Site Request Forgery.This issue affects Grand Photography: from n/a through <= 5.7.8.	CWE-352 Origin Validation Error	CVE-2026-39603	2026-04-25 03:07	2026-04-8	Show	GitHub Exploit DB Packet Storm

1645	5.9	MEDIUM Network	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in zookatron MyBookTable Bookstore mybooktable allows Stored XSS.This issue affects MyBookTable Book…	CWE-79 Cross-site Scripting	CVE-2026-39604	2026-04-25 03:06	2026-04-8	Show	GitHub Exploit DB Packet Storm

1646	5.3	MEDIUM Network	-	-	Missing Authorization vulnerability in Obadiah Super Custom Login super-custom-login allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Super Custom Login: fro…	CWE-862 Missing Authorization	CVE-2026-39605	2026-04-25 03:06	2026-04-8	Show	GitHub Exploit DB Packet Storm

1647	5.3	MEDIUM Network	-	-	Missing Authorization vulnerability in Foysal Imran BizReview bizreview allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects BizReview: from n/a through <= 1.5.1…	CWE-862 Missing Authorization	CVE-2026-39606	2026-04-25 03:06	2026-04-8	Show	GitHub Exploit DB Packet Storm

1648	5.4	MEDIUM Network	-	-	Missing Authorization vulnerability in Wpbens Filter Plus filter-plus allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Filter Plus: from n/a through <= 1.1.1…	CWE-862 Missing Authorization	CVE-2026-39607	2026-04-25 03:06	2026-04-8	Show	GitHub Exploit DB Packet Storm

1649	5.3	MEDIUM Network	-	-	Missing Authorization vulnerability in iPOSPays iPOSpays Gateways WC ipospays-gateways-wc allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects iPOSpays Gateways …	CWE-862 Missing Authorization	CVE-2026-39608	2026-04-25 03:06	2026-04-8	Show	GitHub Exploit DB Packet Storm

1650	5.3	MEDIUM Network	-	-	Missing Authorization vulnerability in Wava.co Wava Payment wava-payment allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Wava Payment: from n/a through <= 0…	CWE-862 Missing Authorization	CVE-2026-39609	2026-04-25 03:06	2026-04-8	Show	GitHub Exploit DB Packet Storm