Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":April 30, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252811	6.8	警告	サイバートラスト株式会社 MUSCLE レッドハット	-	MUSCLE PCSC-Lite の MSGFunctionDemarshall 関数におけるバッファオーバーフロー脆弱性	CWE-119 バッファエラー	CVE-2010-0407	2010-08-10 18:50	2010-06-18	Show	GitHub Exploit DB Packet Storm

252812	2.1	注意	サイバートラスト株式会社 MUSCLE レッドハット	-	MUSCLE PCSC-Lite の MSGFunctionDemarshall 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2009-4901	2010-08-10 18:50	2010-06-18	Show	GitHub Exploit DB Packet Storm

252813	7.6	危険	ヒューレット・パッカード IBM オラクル	-	Oracle Solaris の ToolTalk における脆弱性	CWE-noinfo 情報不足	CVE-2010-0083	2010-08-10 18:50	2010-07-13	Show	GitHub Exploit DB Packet Storm

252814	7.8	危険	サイバートラスト株式会社 Avahi レッドハット	-	Avahi の originates_from_local_legacy_unicast_socket 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2009-0758	2010-08-10 18:49	2009-03-3	Show	GitHub Exploit DB Packet Storm

252815	6.8	警告	サン・マイクロシステムズ 68k.org	-	audiofile の msadpcm.c におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-5824	2010-08-10 18:49	2009-01-2	Show	GitHub Exploit DB Packet Storm

252816	2.4	注意	オラクル	-	Oracle Sun Java System Application Server および Oracle GlassFish Enterprise Server の GUI における脆弱性	CWE-noinfo 情報不足	CVE-2010-2397	2010-08-9 16:49	2010-07-13	Show	GitHub Exploit DB Packet Storm

252817	3	注意	オラクル	-	Oracle Solaris Studio における脆弱性	CWE-noinfo 情報不足	CVE-2010-2374	2010-08-9 16:49	2010-07-13	Show	GitHub Exploit DB Packet Storm

252818	4.3	警告	オラクル	-	Oracle OpenSSO Enterprise における脆弱性	CWE-noinfo 情報不足	CVE-2009-3762	2010-08-9 16:49	2010-07-13	Show	GitHub Exploit DB Packet Storm

252819	4.3	警告	オラクル	-	Oracle OpenSSO Enterprise の OpenSSO コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-3764	2010-08-9 16:48	2010-07-13	Show	GitHub Exploit DB Packet Storm

252820	4.3	警告	オラクル	-	Oracle OpenSSO Enterprise の Access Manager / OpenSSO コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-3763	2010-08-9 16:48	2010-07-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 30, 2026, 4:58 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1811	7.3	HIGH Network	-	-	A security vulnerability has been detected in decolua 9router up to 0.3.47. The impacted element is an unknown function of the file /api of the component Administrative API Endpoint. The manipulation…	CWE-285 CWE-639 Improper Authorization Authorization Bypass Through User-Controlled Key	CVE-2026-5842	2026-04-25 03:03	2026-04-9	Show	GitHub Exploit DB Packet Storm

1812	4.3	MEDIUM Network	-	-	A vulnerability has been found in code-projects Movie Ticketing System 1.0. Impacted is an unknown function of the file /db/moviedb.sql of the component SQL Database Backup File Handler. Such manipul…	CWE-200 CWE-284 Information Exposure Improper Access Control	CVE-2026-5847	2026-04-25 03:03	2026-04-9	Show	GitHub Exploit DB Packet Storm

1813	4.7	MEDIUM Network	-	-	A vulnerability was found in jeecgboot JimuReport up to 2.3.0. The affected element is the function DriverManager.getConnection of the file /drag/onlDragDataSource/testConnection of the component Dat…	CWE-74 CWE-94 Injection Code Injection	CVE-2026-5848	2026-04-25 03:03	2026-04-9	Show	GitHub Exploit DB Packet Storm

1814	7.6	HIGH Network	freescout	freescout	FreeScout is a free help desk and shared inbox built with PHP's Laravel framework. Prior to 1.8.212, FreeScout does not take the limit_user_customer_visibility parameter into account when merging cus…	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2026-39384	2026-04-25 03:03	2026-04-8	Show	GitHub Exploit DB Packet Storm

1815	5.3	MEDIUM Network	-	-	The Online Scheduling and Appointment Booking System – Bookly plugin for WordPress is vulnerable to price manipulation via the 'tips' parameter in all versions up to, and including, 27.0. This is due…	CWE-472 External Control of Assumed-Immutable Web Parameter	CVE-2026-2519	2026-04-25 03:02	2026-04-9	Show	GitHub Exploit DB Packet Storm

1816	6.4	MEDIUM Network	-	-	The List category posts plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'catlist' shortcode in all versions up to, and including, 0.94.0 due to insufficient input s…	CWE-79 Cross-site Scripting	CVE-2026-3005	2026-04-25 03:02	2026-04-9	Show	GitHub Exploit DB Packet Storm

1817	6.6	MEDIUM Network	-	-	A security flaw has been discovered in GL.iNet GL-RM1, GL-RM10, GL-RM10RC and GL-RM1PE 1.8.1. Affected by this issue is some unknown functionality of the component Factory Reset Handler. Performing a…	CWE-287 Improper Authentication	CVE-2026-5959	2026-04-25 03:02	2026-04-10	Show	GitHub Exploit DB Packet Storm

1818	4.3	MEDIUM Network	-	-	A weakness has been identified in code-projects Patient Record Management System 1.0. This affects an unknown part of the file /db/hcpms.sql of the component SQL Database Backup File Handler. Executi…	CWE-200 CWE-284 Information Exposure Improper Access Control	CVE-2026-5960	2026-04-25 03:02	2026-04-10	Show	GitHub Exploit DB Packet Storm

1819	7.3	HIGH Network	-	-	A security vulnerability has been detected in code-projects Simple IT Discussion Forum 1.0. This vulnerability affects unknown code of the file /topic-details.php. The manipulation of the argument po…	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-5961	2026-04-25 03:02	2026-04-10	Show	GitHub Exploit DB Packet Storm

1820	7.3	HIGH Network	-	-	A security flaw has been discovered in code-projects Simple IT Discussion Forum 1.0. The affected element is an unknown function of the file /crud.php. The manipulation of the argument user_Id result…	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-5985	2026-04-25 03:02	2026-04-10	Show	GitHub Exploit DB Packet Storm