Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":April 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
253501 4.1 警告 Linux
レッドハット		 - KVM の x86 エミュレータにおける権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0306 2010-03-4 13:41 2010-02-9 Show GitHub Exploit DB Packet Storm
253502 5 警告 レッドハット
リアルネットワークス		 - RealNetworks HelixPlayer および RealPlayer におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0417 2010-03-4 13:40 2010-02-18 Show GitHub Exploit DB Packet Storm
253503 7.5 危険 レッドハット
リアルネットワークス		 - RealNetworks HelixPlayer および RealPlayer の Unescape 関数におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0416 2010-03-4 13:40 2010-02-18 Show GitHub Exploit DB Packet Storm
253504 9.3 危険 マイクロソフト - Microsoft Windows の Microsoft Paint における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2010-0028 2010-03-3 11:54 2010-02-9 Show GitHub Exploit DB Packet Storm
253505 7.2 危険 マイクロソフト - Microsoft Windows の kernel における権限昇格の脆弱性 CWE-Other
その他 		CVE-2010-0233 2010-03-3 11:54 2010-02-9 Show GitHub Exploit DB Packet Storm
253506 6.3 警告 マイクロソフト - Microsoft Windows の KDC におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2010-0035 2010-03-3 11:54 2010-02-9 Show GitHub Exploit DB Packet Storm
253507 7.1 危険 マイクロソフト - Microsoft Windows の SMB 実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-362
競合状態 		CVE-2010-0021 2010-03-3 11:54 2010-02-9 Show GitHub Exploit DB Packet Storm
253508 10 危険 マイクロソフト - Microsoft Windows の SMB 実装におけるアクセス権を取得される脆弱性 CWE-264
CWE-310
CVE-2010-0231 2010-03-3 11:54 2010-02-9 Show GitHub Exploit DB Packet Storm
253509 7.8 危険 マイクロソフト - Microsoft Windows の SMB 実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-0022 2010-03-3 11:53 2010-02-9 Show GitHub Exploit DB Packet Storm
253510 9 危険 マイクロソフト - Microsoft Windows の SMB 実装における任意のコードを実行される脆弱性 CWE-20
CWE-94
CVE-2010-0020 2010-03-3 11:53 2010-02-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 1, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1831 5.4 MEDIUM
Network 		- - Missing Authorization vulnerability in Wpbens Filter Plus filter-plus allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Filter Plus: from n/a through <= 1.1.1… CWE-862
 Missing Authorization 		CVE-2026-39607 2026-04-25 03:06 2026-04-8 Show GitHub Exploit DB Packet Storm
1832 5.3 MEDIUM
Network 		- - Missing Authorization vulnerability in iPOSPays iPOSpays Gateways WC ipospays-gateways-wc allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects iPOSpays Gateways … CWE-862
 Missing Authorization 		CVE-2026-39608 2026-04-25 03:06 2026-04-8 Show GitHub Exploit DB Packet Storm
1833 5.3 MEDIUM
Network 		- - Missing Authorization vulnerability in Wava.co Wava Payment wava-payment allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Wava Payment: from n/a through <= 0… CWE-862
 Missing Authorization 		CVE-2026-39609 2026-04-25 03:06 2026-04-8 Show GitHub Exploit DB Packet Storm
1834 5.3 MEDIUM
Network 		- - Missing Authorization vulnerability in Pankaj Kumar WpXmas-Snow wpxmas-snow allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WpXmas-Snow: from n/a through <=… CWE-862
 Missing Authorization 		CVE-2026-39610 2026-04-25 03:06 2026-04-8 Show GitHub Exploit DB Packet Storm
1835 7.5 HIGH
Network 		- - Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in kutethemes KuteShop kuteshop allows PHP Local File Inclusion.This issue affect… CWE-98
 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') 		CVE-2026-39611 2026-04-25 03:06 2026-04-8 Show GitHub Exploit DB Packet Storm
1836 5.3 MEDIUM
Network 		- - Missing Authorization vulnerability in kutethemes KuteShop kuteshop allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects KuteShop: from n/a through <= 4.2.9. CWE-862
 Missing Authorization 		CVE-2026-39612 2026-04-25 03:06 2026-04-8 Show GitHub Exploit DB Packet Storm
1837 7.5 HIGH
Network 		- - Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in kutethemes Boutique kute-boutique allows PHP Local File Inclusion.This issue a… CWE-98
 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') 		CVE-2026-39613 2026-04-25 03:06 2026-04-8 Show GitHub Exploit DB Packet Storm
1838 5.4 MEDIUM
Network 		- - Missing Authorization vulnerability in ilGhera JW Player for WordPress jw-player-7-for-wp allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects JW Player for Word… CWE-862
 Missing Authorization 		CVE-2026-39614 2026-04-25 03:06 2026-04-8 Show GitHub Exploit DB Packet Storm
1839 5.9 MEDIUM
Network 		- - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Shahjada Download Manager download-manager allows Stored XSS.This issue affects Download Manager:… CWE-79
Cross-site Scripting 		CVE-2026-39615 2026-04-25 03:06 2026-04-8 Show GitHub Exploit DB Packet Storm
1840 5.3 MEDIUM
Network 		- - Authorization Bypass Through User-Controlled Key vulnerability in dFactory Download Attachments download-attachments allows Exploiting Incorrectly Configured Access Control Security Levels.This issue… CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2026-39616 2026-04-25 03:06 2026-04-8 Show GitHub Exploit DB Packet Storm