Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
254121	9.3	危険	アドビシステムズ	-	Adobe Shockwave Player の DIRAPI.dll における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-2882	2010-09-13 15:46	2010-08-24	Show	GitHub Exploit DB Packet Storm

254122	9.3	危険	アドビシステムズ	-	Adobe Shockwave Player の IML32.dll における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-2881	2010-09-13 15:46	2010-08-24	Show	GitHub Exploit DB Packet Storm

254123	9.3	危険	アドビシステムズ	-	Adobe Shockwave Player の DIRAPI.dll における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-2880	2010-09-13 15:45	2010-08-24	Show	GitHub Exploit DB Packet Storm

254124	9.3	危険	アドビシステムズ	-	Adobe Shockwave Player の TextXtra.x32 モジュールにおける整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2010-2879	2010-09-13 15:45	2010-08-24	Show	GitHub Exploit DB Packet Storm

254125	9.3	危険	アドビシステムズ	-	Adobe Shockwave Player の DIRAPIX.dll における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-2878	2010-09-13 15:45	2010-08-24	Show	GitHub Exploit DB Packet Storm

254126	9.3	危険	アドビシステムズ	-	Adobe Shockwave Player における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-2877	2010-09-13 15:45	2010-08-24	Show	GitHub Exploit DB Packet Storm

254127	9.3	危険	アドビシステムズ	-	Adobe Shockwave Player における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-2876	2010-09-13 15:44	2010-08-24	Show	GitHub Exploit DB Packet Storm

254128	9.3	危険	アドビシステムズ	-	Adobe Shockwave Player における整数符号エラーの脆弱性	CWE-189 数値処理の問題	CVE-2010-2875	2010-09-13 15:44	2010-08-24	Show	GitHub Exploit DB Packet Storm

254129	9.3	危険	アドビシステムズ	-	Adobe Shockwave Player における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-2874	2010-09-13 15:44	2010-08-24	Show	GitHub Exploit DB Packet Storm

254130	9.3	危険	アドビシステムズ	-	Adobe Shockwave Player における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-2873	2010-09-13 15:43	2010-08-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
4701	7.5	HIGH Network	-	-	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in kutethemes KuteShop kuteshop allows PHP Local File Inclusion.This issue affect…	CWE-98 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')	CVE-2026-39611	2026-04-25 03:06	2026-04-8	Show	GitHub Exploit DB Packet Storm

4702	5.3	MEDIUM Network	-	-	Missing Authorization vulnerability in kutethemes KuteShop kuteshop allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects KuteShop: from n/a through <= 4.2.9.	CWE-862 Missing Authorization	CVE-2026-39612	2026-04-25 03:06	2026-04-8	Show	GitHub Exploit DB Packet Storm

4703	7.5	HIGH Network	-	-	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in kutethemes Boutique kute-boutique allows PHP Local File Inclusion.This issue a…	CWE-98 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')	CVE-2026-39613	2026-04-25 03:06	2026-04-8	Show	GitHub Exploit DB Packet Storm

4704	5.4	MEDIUM Network	-	-	Missing Authorization vulnerability in ilGhera JW Player for WordPress jw-player-7-for-wp allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects JW Player for Word…	CWE-862 Missing Authorization	CVE-2026-39614	2026-04-25 03:06	2026-04-8	Show	GitHub Exploit DB Packet Storm

4705	5.9	MEDIUM Network	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Shahjada Download Manager download-manager allows Stored XSS.This issue affects Download Manager:…	CWE-79 Cross-site Scripting	CVE-2026-39615	2026-04-25 03:06	2026-04-8	Show	GitHub Exploit DB Packet Storm

4706	5.3	MEDIUM Network	-	-	Authorization Bypass Through User-Controlled Key vulnerability in dFactory Download Attachments download-attachments allows Exploiting Incorrectly Configured Access Control Security Levels.This issue…	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2026-39616	2026-04-25 03:06	2026-04-8	Show	GitHub Exploit DB Packet Storm

4707	9.6	CRITICAL Network	-	-	Cross-Site Request Forgery (CSRF) vulnerability in priyanshumittal Bluestreet bluestreet allows Cross Site Request Forgery.This issue affects Bluestreet: from n/a through <= 1.7.3.	CWE-352 Origin Validation Error	CVE-2026-39617	2026-04-25 03:06	2026-04-8	Show	GitHub Exploit DB Packet Storm

4708	4.3	MEDIUM Network	-	-	Cross-Site Request Forgery (CSRF) vulnerability in themearile NewsExo newsexo allows Cross Site Request Forgery.This issue affects NewsExo: from n/a through <= 7.1.	CWE-352 Origin Validation Error	CVE-2026-39618	2026-04-25 03:06	2026-04-8	Show	GitHub Exploit DB Packet Storm

4709	9.6	CRITICAL Network	-	-	Cross-Site Request Forgery (CSRF) vulnerability in priyanshumittal Busiprof busiprof allows Upload a Web Shell to a Web Server.This issue affects Busiprof: from n/a through <= 2.5.2.	CWE-352 Origin Validation Error	CVE-2026-39619	2026-04-25 03:06	2026-04-8	Show	GitHub Exploit DB Packet Storm

4710	9.6	CRITICAL Network	-	-	Cross-Site Request Forgery (CSRF) vulnerability in priyanshumittal Appointment appointment allows Upload a Web Shell to a Web Server.This issue affects Appointment: from n/a through <= 3.5.5.	CWE-352 Origin Validation Error	CVE-2026-39620	2026-04-25 03:06	2026-04-8	Show	GitHub Exploit DB Packet Storm