Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":April 30, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
253201	4.3	警告	オラクル	-	Oracle Fusion Middleware の Portal コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0086	2010-05-12 15:18	2010-04-13	Show	GitHub Exploit DB Packet Storm

253202	5	警告	オラクル	-	Oracle Fusion Middleware の Portal コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0856	2010-05-12 15:18	2010-04-13	Show	GitHub Exploit DB Packet Storm

253203	5	警告	オラクル	-	Oracle Fusion Middleware の Oracle Internet Directory コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0872	2010-05-12 15:18	2010-04-13	Show	GitHub Exploit DB Packet Storm

253204	2.1	注意	オラクル	-	Oracle Database の Audit コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0854	2010-05-12 15:18	2010-04-13	Show	GitHub Exploit DB Packet Storm

253205	3.6	注意	オラクル	-	Oracle Database の Change Data Capture コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0870	2010-05-12 15:18	2010-04-13	Show	GitHub Exploit DB Packet Storm

253206	4	警告	オラクル	-	Oracle Database の XML DB コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0851	2010-05-12 15:17	2010-04-13	Show	GitHub Exploit DB Packet Storm

253207	4	警告	オラクル	-	Oracle Database の JavaVM コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0867	2010-05-12 15:17	2010-04-13	Show	GitHub Exploit DB Packet Storm

253208	5.5	警告	オラクル	-	Oracle Database の XML DB コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0852	2010-05-12 15:17	2010-04-13	Show	GitHub Exploit DB Packet Storm

253209	6.5	警告	オラクル	-	Oracle Database の JavaVM コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0866	2010-05-12 15:17	2010-04-13	Show	GitHub Exploit DB Packet Storm

253210	7.1	危険	オラクル	-	Oracle Database の Core RDBMS コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0860	2010-05-12 15:16	2010-04-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 30, 2026, 4:58 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2411	4.3	MEDIUM Network	-	-	Se encontró una vulnerabilidad en dameng100 muucmf 1.9.5.20260309. El elemento afectado es una función desconocida del archivo /admin/config/list.html. La manipulación del argumento Name resulta en c…	CWE-79 CWE-94 Cross-site Scripting Code Injection	CVE-2026-4847	2026-04-25 01:35	2026-03-26	Show	GitHub Exploit DB Packet Storm

2412	4.3	MEDIUM Network	-	-	A vulnerability was determined in dameng100 muucmf 1.9.5.20260309. This affects an unknown function of the file /admin/extend/list.html. Executing a manipulation of the argument Name can lead to cros…	CWE-79 CWE-94 Cross-site Scripting Code Injection	CVE-2026-4848	2026-04-25 01:35	2026-03-26	Show	GitHub Exploit DB Packet Storm

2413	4.3	MEDIUM Network	-	-	Una vulnerabilidad fue determinada en dameng100 muucmf 1.9.5.20260309. Esto afecta una función desconocida del archivo /admin/extend/list.html. Ejecutar una manipulación del argumento Name puede llev…	CWE-79 CWE-94 Cross-site Scripting Code Injection	CVE-2026-4848	2026-04-25 01:35	2026-03-26	Show	GitHub Exploit DB Packet Storm

2414	7.3	HIGH Network	-	-	A security flaw has been discovered in 648540858 wvp-GB28181-pro up to 2.7.4. This affects the function GenericFastJsonRedisSerializer of the file src/main/java/com/genersoft/iot/vmp/conf/redis/Redis…	CWE-20 CWE-502 Improper Input Validation Deserialization of Untrusted Data	CVE-2026-4860	2026-04-25 01:35	2026-03-26	Show	GitHub Exploit DB Packet Storm

2415	8.8	HIGH Network	-	-	A security vulnerability has been detected in UTT HiPER 1250GW up to 3.2.7-210907-180535. This issue affects the function strcpy of the file /goform/formConfigDnsFilterGlobal of the component Paramet…	CWE-119 CWE-120 Incorrect Access of Indexable Resource ('Range Error') Classic Buffer Overflow	CVE-2026-4862	2026-04-25 01:35	2026-03-26	Show	GitHub Exploit DB Packet Storm

2416	7.3	HIGH Network	-	-	Una falla de seguridad ha sido descubierta en 648540858 wvp-GB28181-pro hasta 2.7.4. Esto afecta a la función GenericFastJsonRedisSerializer del archivo src/main/java/com/genersoft/iot/vmp/conf/redis…	CWE-20 CWE-502 Improper Input Validation Deserialization of Untrusted Data	CVE-2026-4860	2026-04-25 01:35	2026-03-26	Show	GitHub Exploit DB Packet Storm

2417	8.8	HIGH Network	-	-	Una vulnerabilidad de seguridad ha sido detectada en UTT HiPER 1250GW hasta 3.2.7-210907-180535. Este problema afecta a la función strcpy del archivo /goform/formConfigDnsFilterGlobal del componente …	CWE-119 CWE-120 Incorrect Access of Indexable Resource ('Range Error') Classic Buffer Overflow	CVE-2026-4862	2026-04-25 01:35	2026-03-26	Show	GitHub Exploit DB Packet Storm

2418	4.7	MEDIUM Network	-	-	A vulnerability was determined in itsourcecode Free Hotel Reservation System 1.0. The affected element is an unknown function of the file /admin/mod_amenities/index.php?view=add. This manipulation of…	CWE-284 CWE-434 Improper Access Control Unrestricted Upload of File with Dangerous Type	CVE-2026-4875	2026-04-25 01:35	2026-03-26	Show	GitHub Exploit DB Packet Storm

2419	4.7	MEDIUM Network	-	-	Se determinó una vulnerabilidad en itsourcecode Free Hotel Reservation System 1.0. El elemento afectado es una función desconocida del archivo /admin/mod_amenities/index.PHP?view=add. Esta manipulaci…	CWE-284 CWE-434 Improper Access Control Unrestricted Upload of File with Dangerous Type	CVE-2026-4875	2026-04-25 01:35	2026-03-26	Show	GitHub Exploit DB Packet Storm

2420	4.3	MEDIUM Network	-	-	The Conditional Menus plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.2.6. This is due to missing nonce validation on the 'save_options' funct…	CWE-352 Origin Validation Error	CVE-2026-1032	2026-04-25 01:35	2026-03-26	Show	GitHub Exploit DB Packet Storm