Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 7, 2026, 4:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
253721	7.8	危険	日立	-	JP1/ServerConductor/Deployment Manager における不正にシャットダウンまたはリブートを実行する脆弱性	CWE-noinfo 情報不足	-	2010-06-22 17:28	2010-06-4	Show	GitHub Exploit DB Packet Storm

253722	6.8	警告	pon software	-	Explzh におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-2434	2010-06-22 14:01	2010-06-22	Show	GitHub Exploit DB Packet Storm

253723	4.3	警告	アップル	-	Apple Safari の WebKit における任意のファイルを読まれる脆弱性	CWE-200 情報漏えい	CVE-2010-1388	2010-06-21 16:56	2010-06-10	Show	GitHub Exploit DB Packet Storm

253724	9.3	危険	アップル	-	Apple Safari における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-1750	2010-06-18 18:21	2010-06-10	Show	GitHub Exploit DB Packet Storm

253725	9.3	危険	アップル	-	Apple Safari における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-1385	2010-06-18 18:20	2010-06-10	Show	GitHub Exploit DB Packet Storm

253726	9.3	危険	OpenOffice.org Project レッドハット	-	OpenOffice.org における任意の Python コードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0395	2010-06-17 18:34	2010-06-10	Show	GitHub Exploit DB Packet Storm

253727	-	-	Accoria Networks	-	Accoria Rock Web Server に複数の脆弱性	-	-	2010-06-17 18:33	2010-06-3	Show	GitHub Exploit DB Packet Storm

253728	5	警告	富士通	-	Interstage Portalworks および Interstage Interaction Manager のポータル機能におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	-	2010-06-17 18:33	2010-05-28	Show	GitHub Exploit DB Packet Storm

253729	10	危険	シスコシステムズ	-	Cisco Mediator Framework におけるパスワードおよびアカウントの詳細を読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0600	2010-06-16 18:32	2010-05-26	Show	GitHub Exploit DB Packet Storm

253730	9.3	危険	シスコシステムズ	-	Cisco Mediator Framework における Administrator の認証情報を見破られる脆弱性	CWE-255 証明書・パスワード管理	CVE-2010-0599	2010-06-16 18:32	2010-05-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
4201	5.3	MEDIUM Network	-	-	El plugin Appmax para WordPress es vulnerable a la Validación de Entrada Inadecuada en todas las versiones hasta la 1.0.3, inclusive. Esto se debe a que el plugin registra un endpoint de webhook de A…	CWE-20 Improper Input Validation	CVE-2026-3641	2026-04-25 01:27	2026-03-21	Show	GitHub Exploit DB Packet Storm

4202	6.4	MEDIUM Network	-	-	The Ecover Builder For Dummies plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'id' parameter of the 'ecover' shortcode in all versions up to and including 1.0. This is due …	CWE-79 Cross-site Scripting	CVE-2026-4077	2026-04-25 01:27	2026-03-21	Show	GitHub Exploit DB Packet Storm

4203	6.4	MEDIUM Network	-	-	El plugin Ecover Builder For Dummies para WordPress es vulnerable a cross-site scripting almacenado a través del parámetro 'id' del shortcode 'ecover' en todas las versiones hasta la 1.0 inclusive. E…	CWE-79 Cross-site Scripting	CVE-2026-4077	2026-04-25 01:27	2026-03-21	Show	GitHub Exploit DB Packet Storm

4204	6.5	MEDIUM Network	-	-	The Pre* Party Resource Hints plugin for WordPress is vulnerable to SQL Injection via the 'hint_ids' parameter of the pprh_update_hints AJAX action in all versions up to, and including, 1.8.20. This …	CWE-89 SQL Injection	CVE-2026-4087	2026-04-25 01:27	2026-03-21	Show	GitHub Exploit DB Packet Storm

4205	5.3	MEDIUM Network	-	-	The Punnel – Landing Page Builder plugin for WordPress is vulnerable to Missing Authorization in all versions up to, and including, 1.3.1. The save_config() function, which handles the 'punnel_save_c…	CWE-862 Missing Authorization	CVE-2026-3645	2026-04-25 01:27	2026-03-21	Show	GitHub Exploit DB Packet Storm

4206	5.3	MEDIUM Network	-	-	El plugin Punnel – Landing Page Builder para WordPress es vulnerable a la falta de autorización en todas las versiones hasta la 1.3.1, inclusive. La función save_config(), que maneja la acción AJAX '…	CWE-862 Missing Authorization	CVE-2026-3645	2026-04-25 01:27	2026-03-21	Show	GitHub Exploit DB Packet Storm

4207	5.3	MEDIUM Network	-	-	The Build App Online plugin for WordPress is vulnerable to unauthorized access in all versions up to, and including, 1.0.23. This is due to the plugin registering the 'build-app-online-update-vendor-…	CWE-862 Missing Authorization	CVE-2026-3651	2026-04-25 01:27	2026-03-21	Show	GitHub Exploit DB Packet Storm

4208	5.3	MEDIUM Network	-	-	El plugin Build App Online para WordPress es vulnerable a acceso no autorizado en todas las versiones hasta la 1.0.23, inclusive. Esto se debe a que el plugin registra la acción AJAX 'build-app-onlin…	CWE-862 Missing Authorization	CVE-2026-3651	2026-04-25 01:27	2026-03-21	Show	GitHub Exploit DB Packet Storm

4209	6.4	MEDIUM Network	-	-	The WP Games Embed plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the [game] shortcode in all versions up to and including 0.1beta. This is due to insufficient input sanitizati…	CWE-79 Cross-site Scripting	CVE-2026-3996	2026-04-25 01:27	2026-03-21	Show	GitHub Exploit DB Packet Storm

4210	6.5	MEDIUM Network	-	-	El plugin Pre* Party Resource Hints para WordPress es vulnerable a inyección SQL a través del parámetro 'hint_ids' de la acción AJAX pprh_update_hints en todas las versiones hasta e incluyendo la 1.8…	CWE-89 SQL Injection	CVE-2026-4087	2026-04-25 01:27	2026-03-21	Show	GitHub Exploit DB Packet Storm