Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":April 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228141 5 警告 rdiffweb - rdiffWeb の rdw_helpers.py におけるディレクトリトラバーサルの脆弱性 - CVE-2007-2747 2012-12-20 18:19 2007-05-17 Show GitHub Exploit DB Packet Storm
228142 3.5 注意 plain black - Plain Black WebGUI の lib/WebGUI/Asset/Wobject/DataForm.pm における重要な情報を取得される脆弱性 - CVE-2007-2746 2012-12-20 18:19 2007-05-17 Show GitHub Exploit DB Packet Storm
228143 4.3 警告 vdesk - vDesk Webmail の printcal.pl におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-2745 2012-12-20 18:19 2007-05-17 Show GitHub Exploit DB Packet Storm
228144 7.5 危険 precisionid barcode - PrecisionID_Barcode.dll の PrecisionID Barcode ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2007-2744 2012-12-20 18:19 2007-05-17 Show GitHub Exploit DB Packet Storm
228145 6.8 警告 xajax-project - xajax における脆弱性 - CVE-2007-2740 2012-12-20 18:19 2007-05-17 Show GitHub Exploit DB Packet Storm
228146 4.3 警告 xajax-project - xajax におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2739 2012-12-20 18:19 2007-05-17 Show GitHub Exploit DB Packet Storm
228147 7.5 危険 XOOPS - XOOPS 用の Glossaire モジュールにおける SQL インジェクションの脆弱性 - CVE-2007-2738 2012-12-20 18:19 2007-05-17 Show GitHub Exploit DB Packet Storm
228148 7.5 危険 XOOPS - Xoops 用の MyConference モジュールにおける SQL インジェクションの脆弱性 - CVE-2007-2737 2012-12-20 18:19 2007-05-17 Show GitHub Exploit DB Packet Storm
228149 7.5 危険 touteresa - Xoops 用の ResManager モジュールにおける SQL インジェクションの脆弱性 - CVE-2007-2735 2012-12-20 18:19 2007-05-17 Show GitHub Exploit DB Packet Storm
228150 10 危険 snaps gallery - Snaps! Gallery の Admin/users.php における任意のユーザ名を変更される脆弱性 - CVE-2007-2715 2012-12-20 18:19 2007-05-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 30, 2026, 4:58 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1421 6.3 MEDIUM
Network 		- - A weakness has been identified in PHPGurukul Online Shopping Portal Project 2.1. This issue affects some unknown processing of the file /sub-category.php of the component Parameter Handler. This mani… CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-5552 2026-04-25 03:14 2026-04-5 Show GitHub Exploit DB Packet Storm
1422 6.3 MEDIUM
Network 		- - A vulnerability was identified in itsourcecode Online Cellphone System 1.0. Affected by this vulnerability is an unknown functionality of the file /cp/available.php of the component Parameter Handler… CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-5553 2026-04-25 03:14 2026-04-5 Show GitHub Exploit DB Packet Storm
1423 7.3 HIGH
Network 		- - A security flaw has been discovered in code-projects Concert Ticket Reservation System 1.0. Affected by this issue is some unknown functionality of the file /ConcertTicketReservationSystem-master/pro… CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-5554 2026-04-25 03:14 2026-04-5 Show GitHub Exploit DB Packet Storm
1424 7.3 HIGH
Network 		- - A weakness has been identified in code-projects Concert Ticket Reservation System 1.0. This affects an unknown part of the file /ConcertTicketReservationSystem-master/login.php of the component Param… CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-5555 2026-04-25 03:14 2026-04-5 Show GitHub Exploit DB Packet Storm
1425 6.3 MEDIUM
Network 		- - A security vulnerability has been detected in badlogic pi-mono up to 0.58.4. This vulnerability affects the function discoverAndLoadExtensions of the file packages/coding-agent/src/core/extensions/lo… CWE-74
CWE-94
Injection
Code Injection 		CVE-2026-5556 2026-04-25 03:14 2026-04-5 Show GitHub Exploit DB Packet Storm
1426 6.3 MEDIUM
Network 		- - A vulnerability was detected in badlogic pi-mono up to 0.58.4. This issue affects some unknown processing of the file packages/mom/src/slack.ts of the component pi-mom Slack Bot. The manipulation res… CWE-287
CWE-288
Improper Authentication
Authentication Bypass Using an Alternate Path or Channel 		CVE-2026-5557 2026-04-25 03:14 2026-04-5 Show GitHub Exploit DB Packet Storm
1427 6.3 MEDIUM
Network 		- - A flaw has been found in PHPGurukul PHPGurukul Online Shopping Portal Project up to 2.1. Impacted is an unknown function of the file /pending-orders.php of the component Parameter Handler. This manip… CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-5558 2026-04-25 03:14 2026-04-5 Show GitHub Exploit DB Packet Storm
1428 6.3 MEDIUM
Network 		- - A vulnerability has been found in AntaresMugisho PyBlade 0.1.8-alpha/0.1.9-alpha. The affected element is the function _is_safe_ast of the file sandbox.py of the component AST Validation. Such manipu… CWE-791
CWE-1336
 Incomplete Filtering of Special Elements
 Improper Neutralization of Special Elements Used in a Template Engine 		CVE-2026-5559 2026-04-25 03:14 2026-04-5 Show GitHub Exploit DB Packet Storm
1429 6.3 MEDIUM
Network 		- - A vulnerability was found in PHPGurukul Online Shopping Portal Project 2.1. The impacted element is an unknown function of the file /payment-method.php of the component Parameter Handler. Performing … CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-5560 2026-04-25 03:14 2026-04-5 Show GitHub Exploit DB Packet Storm
1430 6.3 MEDIUM
Network 		- - A vulnerability was determined in Campcodes Complete POS Management and Inventory System up to 4.0.6. This affects an unknown function of the file app/Http/Controllers/SettingsController.php of the c… CWE-74
CWE-707
Injection
 Improper Enforcement of Message or Data Structure 		CVE-2026-5561 2026-04-25 03:14 2026-04-5 Show GitHub Exploit DB Packet Storm