Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 13, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252811	5	警告	IBM	-	IBM WebSphere Application Server の SOAP with Attachments API for Java (SAAJ) 実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-1322	2011-04-7 15:40	2010-07-29	Show	GitHub Exploit DB Packet Storm

252812	6.5	警告	IBM	-	IBM WebSphere Application Server の AuthCache パージ実装における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-1321	2011-04-7 15:38	2010-10-18	Show	GitHub Exploit DB Packet Storm

252813	5	警告	IBM	-	IBM WebSphere Application Server の com.ibm.ws.jsp.runtime.WASJSPStrBufferImpl におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-1317	2011-04-7 15:35	2010-07-29	Show	GitHub Exploit DB Packet Storm

252814	5	警告	IBM	-	IBM WebSphere Application Server の org.apache.jasper.runtime.JspWriterImpl.response におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-1318	2011-04-7 15:25	2010-09-22	Show	GitHub Exploit DB Packet Storm

252815	5	警告	IBM	-	IBM WebSphere Application Server の Session Initiation Protocol におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-1316	2011-04-7 15:23	2010-09-23	Show	GitHub Exploit DB Packet Storm

252816	5	警告	IBM	-	IBM WebSphere Application Server のメッセージングエンジンにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-1315	2011-04-7 15:21	2010-09-30	Show	GitHub Exploit DB Packet Storm

252817	5	警告	IBM	-	IBM WebSphere Application Server の Service Integration Bus メッセージングエンジンにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-1314	2011-04-7 15:19	2010-08-4	Show	GitHub Exploit DB Packet Storm

252818	4	警告	IBM	-	IBM WebSphere Application Server の管理コンソールコンポーネントにおけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-1312	2011-04-7 15:15	2009-06-11	Show	GitHub Exploit DB Packet Storm

252819	4	警告	サイバートラスト株式会社レッドハット	-	vsftpd の vsf_filename_passes_filter 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-0762	2011-04-7 14:31	2011-03-2	Show	GitHub Exploit DB Packet Storm

252820	6	警告	IBM	-	IBM WebSphere Application Server のセキュリティコンポーネントにおける権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-1311	2011-04-7 14:28	2010-10-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
4641	5.3	MEDIUM Network	-	-	Insertion of Sensitive Information Into Sent Data vulnerability in Pär Thernström Simple History simple-history allows Retrieve Embedded Sensitive Data.This issue affects Simple History: from n/a thr…	CWE-201 Insertion of Sensitive Information Into Sent Data	CVE-2026-39473	2026-04-25 03:08	2026-04-8	Show	GitHub Exploit DB Packet Storm

4642	8.5	HIGH Network	-	-	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Syed Balkhi User Feedback userfeedback-lite allows Blind SQL Injection.This issue affects User Fe…	CWE-89 SQL Injection	CVE-2026-39475	2026-04-25 03:08	2026-04-8	Show	GitHub Exploit DB Packet Storm

4643	4.3	MEDIUM Network	-	-	Missing Authorization vulnerability in Syed Balkhi User Feedback userfeedback-lite allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects User Feedback: from n/a t…	CWE-862 Missing Authorization	CVE-2026-39476	2026-04-25 03:08	2026-04-8	Show	GitHub Exploit DB Packet Storm

4644	4.3	MEDIUM Network	-	-	Missing Authorization vulnerability in Brainstorm Force CartFlows cartflows allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects CartFlows: from n/a through <= 2…	CWE-862 Missing Authorization	CVE-2026-39477	2026-04-25 03:08	2026-04-8	Show	GitHub Exploit DB Packet Storm

4645	7.6	HIGH Network	-	-	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Brainstorm Force OttoKit suretriggers allows Blind SQL Injection.This issue affects OttoKit: from…	CWE-89 SQL Injection	CVE-2026-39479	2026-04-25 03:08	2026-04-8	Show	GitHub Exploit DB Packet Storm

4646	6.5	MEDIUM Network	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in PublishPress Post Expirator post-expirator allows DOM-Based XSS.This issue affects Post Expirator…	CWE-79 Cross-site Scripting	CVE-2026-39482	2026-04-25 03:08	2026-04-8	Show	GitHub Exploit DB Packet Storm

4647	6.5	MEDIUM Network	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Hidekazu Ishikawa VK All in One Expansion Unit vk-all-in-one-expansion-unit allows Stored XSS.Thi…	CWE-79 Cross-site Scripting	CVE-2026-39483	2026-04-25 03:08	2026-04-8	Show	GitHub Exploit DB Packet Storm

4648	4.7	MEDIUM Network	-	-	URL Redirection to Untrusted Site ('Open Redirect') vulnerability in John Darrel Hide My WP Ghost hide-my-wp allows Phishing.This issue affects Hide My WP Ghost: from n/a through < 7.0.00.	CWE-601 Open Redirect	CVE-2026-39484	2026-04-25 03:08	2026-04-8	Show	GitHub Exploit DB Packet Storm

4649	4.3	MEDIUM Network	-	-	Missing Authorization vulnerability in embedplus Youtube Embed Plus youtube-embed-plus allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Youtube Embed Plus: f…	CWE-862 Missing Authorization	CVE-2026-39485	2026-04-25 03:08	2026-04-8	Show	GitHub Exploit DB Packet Storm

4650	7.6	HIGH Network	-	-	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in WP Chill Download Monitor download-monitor allows Blind SQL Injection.This issue affects Download…	CWE-89 SQL Injection	CVE-2026-39486	2026-04-25 03:08	2026-04-8	Show	GitHub Exploit DB Packet Storm