Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":April 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
253151 10 危険 アップル - Apple Mac OS X 上で稼働する Safari における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-1120 2010-05-18 16:39 2010-03-25 Show GitHub Exploit DB Packet Storm
253152 6.9 警告 KDE project
サイバートラスト株式会社
レッドハット		 - KDE の KDM における制御ソケットの処理に関する権限昇格の脆弱性 CWE-362
競合状態 		CVE-2010-0436 2010-05-18 16:39 2010-04-13 Show GitHub Exploit DB Packet Storm
253153 1.9 注意 レッドハット - Free Software Foundation Berkeley DB の NSS モジュールにおける情報漏えいの脆弱性 CWE-200
情報漏えい 		CVE-2010-0826 2010-05-18 16:38 2010-04-5 Show GitHub Exploit DB Packet Storm
253154 7.8 危険 日本電気 - CapsSuite Small Edition PatchMeister におけるサービス運用妨害 (DoS) の脆弱性 CWE-DesignError
CVE-2010-1943 2010-05-17 12:03 2010-05-17 Show GitHub Exploit DB Packet Storm
253155 7.8 危険 日本電気 - WebSAM DeploymentManager におけるサービス運用妨害 (DoS) の脆弱性 CWE-DesignError
CVE-2010-1941 2010-05-17 12:02 2010-05-17 Show GitHub Exploit DB Packet Storm
253156 6.4 警告 富士通 - Interstage Application Server におけるリクエスト処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2010-1942 2010-05-17 12:01 2010-05-17 Show GitHub Exploit DB Packet Storm
253157 2.1 注意 オラクル - Oracle Sun Product Suite の Sun Cluster コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0884 2010-05-14 18:43 2010-04-13 Show GitHub Exploit DB Packet Storm
253158 2.1 注意 オラクル - Oracle Sun Product Suite の Sun Cluster コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0883 2010-05-14 18:43 2010-04-13 Show GitHub Exploit DB Packet Storm
253159 2.1 注意 サン・マイクロシステムズ
オラクル		 - Oracle Sun Product Suite の Solaris コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0890 2010-05-14 18:42 2010-04-13 Show GitHub Exploit DB Packet Storm
253160 3.6 注意 サン・マイクロシステムズ
オラクル		 - Oracle Sun Product Suite の Solaris コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0895 2010-05-14 18:42 2010-04-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 1, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2001 4.3 MEDIUM
Network 		- - A weakness has been identified in code-projects Patient Record Management System 1.0. This affects an unknown part of the file /db/hcpms.sql of the component SQL Database Backup File Handler. Executi… CWE-200
CWE-284
Information Exposure
Improper Access Control 		CVE-2026-5960 2026-04-25 03:02 2026-04-10 Show GitHub Exploit DB Packet Storm
2002 7.3 HIGH
Network 		- - A security vulnerability has been detected in code-projects Simple IT Discussion Forum 1.0. This vulnerability affects unknown code of the file /topic-details.php. The manipulation of the argument po… CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-5961 2026-04-25 03:02 2026-04-10 Show GitHub Exploit DB Packet Storm
2003 7.3 HIGH
Network 		- - A security flaw has been discovered in code-projects Simple IT Discussion Forum 1.0. The affected element is an unknown function of the file /crud.php. The manipulation of the argument user_Id result… CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-5985 2026-04-25 03:02 2026-04-10 Show GitHub Exploit DB Packet Storm
2004 5.3 MEDIUM
Network 		- - A weakness has been identified in Zod jsVideoUrlParser up to 0.5.1. The impacted element is the function getTime in the library lib/util.js. This manipulation of the argument timestamp causes ineffic… CWE-400
CWE-1333
 Uncontrolled Resource Consumption
 Inefficient Regular Expression Complexity 		CVE-2026-5986 2026-04-25 03:02 2026-04-10 Show GitHub Exploit DB Packet Storm
2005 4.7 MEDIUM
Network 		- - A security vulnerability has been detected in Sanluan PublicCMS up to 6.202506.d. This affects the function AbstractFreemarkerView.doRender of the file publiccms-parent/publiccms-core/src/main/java/c… CWE-791
CWE-1336
 Incomplete Filtering of Special Elements
 Improper Neutralization of Special Elements Used in a Template Engine 		CVE-2026-5987 2026-04-25 03:02 2026-04-10 Show GitHub Exploit DB Packet Storm
2006 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_set_pipapo: split gc into unlink and reclaim phase Yiming Qian reports Use-after-free in the pipapo set type: Un… CWE-416
 Use After Free 		CVE-2026-23351 2026-04-25 03:02 2026-03-25 Show GitHub Exploit DB Packet Storm
2007 7.8 HIGH
Local 		linux linux_kernel En el kernel de Linux, la siguiente vulnerabilidad ha sido resuelta: netfilter: nft_set_pipapo: dividir la recolección de basura en una fase de desvinculación y una fase de recuperación Yiming Qian… CWE-416
 Use After Free 		CVE-2026-23351 2026-04-25 03:02 2026-03-25 Show GitHub Exploit DB Packet Storm
2008 6.4 MEDIUM
Network 		- - The Webling plugin for WordPress is vulnerable to Stored Cross-Site Scripting in all versions up to, and including, 3.9.0 due to insufficient input sanitization, insufficient output escaping, and mis… CWE-79
Cross-site Scripting 		CVE-2026-1263 2026-04-25 03:01 2026-04-10 Show GitHub Exploit DB Packet Storm
2009 4.3 MEDIUM
Network 		- - The Aruba HiSpeed Cache plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.0.4. This is due to missing nonce verification on the `ahsc_ajax_reset… CWE-352
 Origin Validation Error 		CVE-2026-1924 2026-04-25 03:01 2026-04-10 Show GitHub Exploit DB Packet Storm
2010 5.4 MEDIUM
Network 		- - The WP-Optimize plugin for WordPress is vulnerable to unauthorized access of functionality due to missing capability checks in the `receive_heartbeat()` function in `includes/class-wp-optimize-heartb… CWE-863
 Incorrect Authorization 		CVE-2026-2712 2026-04-25 03:01 2026-04-10 Show GitHub Exploit DB Packet Storm