Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 8, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
254771	6.8	警告	マイクロソフト	-	Microsoft Windows の kernel における権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2009-1127	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

254772	10	危険	マイクロソフト	-	Microsoft Windows の License Logging Server (llssrv.exe) における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-2523	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

254773	9.3	危険	マイクロソフト	-	Microsoft Windows の Web Services on Devices API (WSDAPI) における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2512	2010-01-4 15:23	2009-11-10	Show	GitHub Exploit DB Packet Storm

254774	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2722	2010-01-4 14:56	2009-08-10	Show	GitHub Exploit DB Packet Storm

254775	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2723	2010-01-4 14:55	2009-08-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
3521	3.5	LOW Network	-	-	A vulnerability has been found in PHPGurukul Company Visitor Management System 2.0. This impacts an unknown function of the file /bwdates-reports-details.php. The manipulation of the argument fromdat…	CWE-79 CWE-94 Cross-site Scripting Code Injection	CVE-2026-6162	2026-04-25 02:57	2026-04-13	Show	GitHub Exploit DB Packet Storm

3522	7.3	HIGH Network	-	-	A vulnerability was identified in code-projects Lost and Found Thing Management 1.0. Affected by this issue is some unknown functionality of the file /catageory.php. Such manipulation of the argument…	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-6163	2026-04-25 02:57	2026-04-13	Show	GitHub Exploit DB Packet Storm

3523	7.3	HIGH Network	-	-	A security flaw has been discovered in code-projects Lost and Found Thing Management 1.0. This affects an unknown part of the file /addcat.php. Performing a manipulation of the argument cata results …	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-6164	2026-04-25 02:57	2026-04-13	Show	GitHub Exploit DB Packet Storm

3524	7.3	HIGH Network	-	-	A weakness has been identified in code-projects Vehicle Showroom Management System 1.0. This vulnerability affects unknown code of the file /util/Login_check.php. Executing a manipulation of the argu…	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-6165	2026-04-25 02:57	2026-04-13	Show	GitHub Exploit DB Packet Storm

3525	7.3	HIGH Network	-	-	A security vulnerability has been detected in code-projects Vehicle Showroom Management System 1.0. This issue affects some unknown processing of the file /util/UpdateVehicleFunction.php. The manipul…	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-6166	2026-04-25 02:57	2026-04-13	Show	GitHub Exploit DB Packet Storm

3526	7.3	HIGH Network	-	-	A vulnerability was detected in code-projects Faculty Management System 1.0. Impacted is an unknown function of the file /subject-print.php. The manipulation of the argument ID results in sql injecti…	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-6167	2026-04-25 02:57	2026-04-13	Show	GitHub Exploit DB Packet Storm

3527	3.5	LOW Network	-	-	A vulnerability has been found in 1Panel-dev MaxKB up to 2.4.2. Impacted is an unknown function of the file ui/src/chat.ts of the component MdPreview. Such manipulation leads to cross site scripting.…	CWE-79 CWE-94 Cross-site Scripting Code Injection	CVE-2025-15632	2026-04-25 02:57	2026-04-13	Show	GitHub Exploit DB Packet Storm

3528	9.8	CRITICAL Network	-	-	Missing JWT signature verification in AWS Ops Wheel allows unauthenticated attackers to forge JWT tokens and gain unintended administrative access to the application, including the ability to read, m…	CWE-347 Improper Verification of Cryptographic Signature	CVE-2026-6911	2026-04-25 02:56	2026-04-25	Show	GitHub Exploit DB Packet Storm

3529	8.8	HIGH Network	-	-	Improperly controlled modification of dynamically-determined object attributes in the Cognito User Pool configuration in AWS Ops Wheel before PR #165 allows remote authenticated users to escalate to …	CWE-915 Improperly Controlled Modification of Dynamically-Determined Object Attributes	CVE-2026-6912	2026-04-25 02:56	2026-04-25	Show	GitHub Exploit DB Packet Storm

3530	4.9	MEDIUM Network	-	-	Cross Site Scripting vulnerability in Hostbill v.2025-11-24 and 2025-12-01 allows a remote attacker to execute arbitrary code	CWE-79 Cross-site Scripting	CVE-2026-31050	2026-04-25 02:55	2026-04-25	Show	GitHub Exploit DB Packet Storm