Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 14, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
253361 6.8 警告 Lomtec - Lomtec ActiveWeb Professional 3.0 CMS における任意のファイルをアップロードおよび実行可能な脆弱性 CWE-Other
その他 		CVE-2011-0678 2011-02-28 16:25 2011-01-26 Show GitHub Exploit DB Packet Storm
253362 4.9 警告 サイバートラスト株式会社
VMware
Xen プロジェクト
レッドハット		 - Xen の arch/ia64/xen/faults.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2010-2070 2011-02-28 14:55 2010-06-16 Show GitHub Exploit DB Packet Storm
253363 7.1 危険 サイバートラスト株式会社
VMware
Linux
レッドハット		 - Linux kernel の Bluetooth ソケットにおけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2010-1084 2011-02-28 14:54 2010-04-6 Show GitHub Exploit DB Packet Storm
253364 5 警告 Eyrie
VMware
レッドハット		 - pam_krb5 における有効なユーザ名を列挙される脆弱性 CWE-287
不適切な認証 		CVE-2009-1384 2011-02-28 14:51 2009-05-28 Show GitHub Exploit DB Packet Storm
253365 4.4 警告 サイバートラスト株式会社
VMware
レッドハット		 - Red Hat Enterprise Linux の pam_krb5 における権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-3825 2011-02-28 14:48 2008-10-2 Show GitHub Exploit DB Packet Storm
253366 6.8 警告 Haxx
アップル
VMware
サイバートラスト株式会社
レッドハット		 - libcurl の content_encoding.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0734 2011-02-28 14:41 2010-02-9 Show GitHub Exploit DB Packet Storm
253367 4.3 警告 VMware
OpenSSL Project		 - OpenSSL クライアントの ssl3_get_key_exchange 関数における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2010-2939 2011-02-28 14:39 2010-08-17 Show GitHub Exploit DB Packet Storm
253368 10 危険 アップル
サイバートラスト株式会社
VMware
サン・マイクロシステムズ
レッドハット		 - 複数の Oracle 製品 の Java Deployment Toolkit コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0886 2011-02-28 14:16 2010-04-15 Show GitHub Exploit DB Packet Storm
253369 8.3 危険 インターネットイニシアティブ - SEIL シリーズにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-0454 2011-02-28 12:08 2011-02-28 Show GitHub Exploit DB Packet Storm
253370 6.8 警告 Google - OpenCORE の Huffman デコーディング機能における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2009-0475 2011-02-25 14:13 2009-02-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 14, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
4821 7.3 HIGH
Network 		- - A vulnerability was identified in idachev mcp-javadc up to 1.2.4. Impacted is an unknown function of the component HTTP Interface. Such manipulation of the argument jarFilePath leads to os command in… CWE-77
CWE-78
Command Injection
OS Command  		CVE-2026-5802 2026-04-25 03:05 2026-04-9 Show GitHub Exploit DB Packet Storm
4822 8.1 HIGH
Network 		- - The MW WP Form plugin for WordPress is vulnerable to Arbitrary File Move/Read in all versions up to and including 5.1.1. This is due to insufficient validation of the $name parameter (upload field ke… CWE-22
Path Traversal 		CVE-2026-5436 2026-04-25 03:05 2026-04-9 Show GitHub Exploit DB Packet Storm
4823 6.4 MEDIUM
Network 		- - The Extensions for Leaflet Map plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'elevation-track' shortcode in all versions up to, and including, 4.14. This is due to insuffi… CWE-79
Cross-site Scripting 		CVE-2026-5451 2026-04-25 03:04 2026-04-9 Show GitHub Exploit DB Packet Storm
4824 7.3 HIGH
Network 		- - A weakness has been identified in code-projects Easy Blog Site up to 1.0. The impacted element is an unknown function of the file /users/contact_us.php. Executing a manipulation of the argument Name … CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-5805 2026-04-25 03:04 2026-04-9 Show GitHub Exploit DB Packet Storm
4825 6.4 MEDIUM
Network 		- - The Post Blocks & Tools plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'sliderStyle' block attribute in the Posts Slider block in all versions up to, and including, 1.3.0 d… CWE-79
Cross-site Scripting 		CVE-2026-5711 2026-04-25 03:04 2026-04-9 Show GitHub Exploit DB Packet Storm
4826 3.5 LOW
Network 		- - A security vulnerability has been detected in code-projects Easy Blog Site 1.0. This affects an unknown function of the file /posts/update.php. The manipulation of the argument postTitle leads to cro… CWE-79
CWE-94
Cross-site Scripting
Code Injection 		CVE-2026-5806 2026-04-25 03:04 2026-04-9 Show GitHub Exploit DB Packet Storm
4827 6.3 MEDIUM
Network 		- - A security flaw has been discovered in bigsk1 openai-realtime-ui up to 188ccde27fdf3d8fab8da81f3893468f53b2797c. The affected element is an unknown function of the file server.js of the component API… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-5803 2026-04-25 03:04 2026-04-9 Show GitHub Exploit DB Packet Storm
4828 4.3 MEDIUM
Network 		- - A vulnerability was detected in openstatusHQ openstatus up to 1b678e71a85961ae319cbb214a8eae634059330c. This impacts an unknown function of the file apps/dashboard/src/app/(dashboard)/onboarding/clie… CWE-79
CWE-94
Cross-site Scripting
Code Injection 		CVE-2026-5808 2026-04-25 03:04 2026-04-9 Show GitHub Exploit DB Packet Storm
4829 3.5 LOW
Network 		- - A flaw has been found in SourceCodester Sales and Inventory System 1.0. Affected is an unknown function of the file /delete.php of the component GET Parameter Handler. This manipulation of the argume… CWE-79
CWE-94
Cross-site Scripting
Code Injection 		CVE-2026-5810 2026-04-25 03:04 2026-04-9 Show GitHub Exploit DB Packet Storm
4830 5.4 MEDIUM
Network 		- - A vulnerability was identified in SourceCodester Online Food Ordering System 1.0. Affected by this issue is the function save_product of the file /Actions.php of the component POST Parameter Handler.… CWE-840
 Business Logic Errors 		CVE-2026-5811 2026-04-25 03:04 2026-04-9 Show GitHub Exploit DB Packet Storm