Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":April 28, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228191 7.5 危険 shopstorenow - ShopStoreNow E-commerce Shopping Cart の orange.asp における SQL インジェクションの脆弱性 - CVE-2007-0142 2012-12-20 18:19 2007-01-9 Show GitHub Exploit DB Packet Storm
228192 6.8 警告 yet another link directory - Yet Another Link Directory の yald.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-0141 2012-12-20 18:19 2007-01-9 Show GitHub Exploit DB Packet Storm
228193 6.8 警告 uber uploader - Uber Uploader における任意の PHP スクリプトを実行される脆弱性 - CVE-2007-0123 2012-12-20 18:19 2007-01-8 Show GitHub Exploit DB Packet Storm
228194 5 警告 サン・マイクロシステムズ - Sun Java System Content Delivery Server における "コンテンツの詳細" を読み込まれ重要な情報を取得される脆弱性 - CVE-2007-0114 2012-12-20 18:19 2007-01-5 Show GitHub Exploit DB Packet Storm
228195 6.8 警告 resco - Windows Mobile 上で稼動しているモバイルデバイスで使用されている PocketPC 用の Resco Photo Viewer におけるバッファオーバーフローの脆弱性 - CVE-2007-0111 2012-12-20 18:19 2007-01-8 Show GitHub Exploit DB Packet Storm
228196 5 警告 WordPress.org - WordPress の wp-login.php における重要な情報を取得される脆弱性 - CVE-2007-0109 2012-12-20 18:19 2007-01-8 Show GitHub Exploit DB Packet Storm
228197 6.8 警告 WordPress.org - WordPress における SQL インジェクション保護スキームを回避される脆弱性 - CVE-2007-0107 2012-12-20 18:19 2007-01-5 Show GitHub Exploit DB Packet Storm
228198 6.8 警告 WordPress.org - WordPress の CSRF 保護スキームにおけるクロスサイトスクリプティングの脆弱性 - CVE-2007-0106 2012-12-20 18:19 2007-01-5 Show GitHub Exploit DB Packet Storm
228199 10 危険 トレンドマイクロ - Trend Micro ServerProtect の不特定のプロシージャにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-0074 2012-12-20 18:19 2008-11-17 Show GitHub Exploit DB Packet Storm
228200 10 危険 トレンドマイクロ - Trend Micro ServerProtect の不特定のプロシージャにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-0073 2012-12-20 18:19 2008-11-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 28, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1151 5.3 MEDIUM
Network 		- - Missing Authorization vulnerability in Coding Panda Panda Pods Repeater Field panda-pods-repeater-field allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Pand… CWE-862
 Missing Authorization 		CVE-2026-39658 2026-04-25 03:06 2026-04-8 Show GitHub Exploit DB Packet Storm
1152 5.3 MEDIUM
Network 		- - Missing Authorization vulnerability in Automattic WP Job Manager wp-job-manager allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Job Manager: from n/a thr… CWE-862
 Missing Authorization 		CVE-2026-39660 2026-04-25 03:06 2026-04-8 Show GitHub Exploit DB Packet Storm
1153 5.3 MEDIUM
Network 		- - Missing Authorization vulnerability in ProWCPlugins Product Price by Formula for WooCommerce product-price-by-formula-for-woocommerce allows Exploiting Incorrectly Configured Access Control Security … CWE-862
 Missing Authorization 		CVE-2026-39662 2026-04-25 03:06 2026-04-8 Show GitHub Exploit DB Packet Storm
1154 5.3 MEDIUM
Network 		- - Missing Authorization vulnerability in themetechmount TrueBooker truebooker-appointment-booking allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects TrueBooker: … CWE-862
 Missing Authorization 		CVE-2026-39663 2026-04-25 03:06 2026-04-8 Show GitHub Exploit DB Packet Storm
1155 5.3 MEDIUM
Network 		- - Missing Authorization vulnerability in leadrebel Leadrebel leadrebel allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Leadrebel: from n/a through <= 1.0.2. CWE-862
 Missing Authorization 		CVE-2026-39664 2026-04-25 03:06 2026-04-8 Show GitHub Exploit DB Packet Storm
1156 6.5 MEDIUM
Network 		- - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Vladimir Prelovac SEO Friendly Images seo-image allows DOM-Based XSS.This issue affects SEO Frien… CWE-79
Cross-site Scripting 		CVE-2026-39665 2026-04-25 03:06 2026-04-8 Show GitHub Exploit DB Packet Storm
1157 6.5 MEDIUM
Network 		- - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in telepathy Hello Bar Popup Builder hellobar allows DOM-Based XSS.This issue affects Hello Bar Popu… CWE-79
Cross-site Scripting 		CVE-2026-39666 2026-04-25 03:06 2026-04-8 Show GitHub Exploit DB Packet Storm
1158 5.9 MEDIUM
Network 		- - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Jongmyoung Kim Korea SNS korea-sns allows DOM-Based XSS.This issue affects Korea SNS: from n/a th… CWE-79
Cross-site Scripting 		CVE-2026-39667 2026-04-25 03:06 2026-04-8 Show GitHub Exploit DB Packet Storm
1159 5.3 MEDIUM
Network 		- - Missing Authorization vulnerability in g5theme Book Previewer for Woocommerce book-previewer-for-woocommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects… CWE-862
 Missing Authorization 		CVE-2026-39668 2026-04-25 03:06 2026-04-8 Show GitHub Exploit DB Packet Storm
1160 5.3 MEDIUM
Network 		- - Missing Authorization vulnerability in NitroPack allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects NitroPack: from n/a through 1.19.3. CWE-862
 Missing Authorization 		CVE-2026-39669 2026-04-25 03:06 2026-04-8 Show GitHub Exploit DB Packet Storm