Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 7, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229301 7.5 危険 webtester - WebTester における SQL インジェクションの脆弱性 - CVE-2007-0970 2012-12-20 18:19 2007-02-15 Show GitHub Exploit DB Packet Storm
229302 6.8 警告 webtester - WebTester におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-0969 2012-12-20 18:19 2007-02-15 Show GitHub Exploit DB Packet Storm
229303 6.8 警告 scriptsez.net - Scriptsez.net Virtual Calendar におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-0952 2012-12-20 18:19 2007-02-14 Show GitHub Exploit DB Packet Storm
229304 5 警告 virtual calendar - Virtual Calendar におけるエンコードされたパスワードをダウンロードされる脆弱性 - CVE-2007-0928 2012-12-20 18:19 2007-02-14 Show GitHub Exploit DB Packet Storm
229305 7.5 危険 BitTorrent, Inc. - uTorrent におけるヒープベースのバッファオーバーフローの脆弱性 - CVE-2007-0927 2012-12-20 18:19 2007-02-14 Show GitHub Exploit DB Packet Storm
229306 7.5 危険 till gerken - Till Gerken phpPolls における認証を回避される脆弱性 - CVE-2007-0924 2012-12-20 18:19 2007-02-14 Show GitHub Exploit DB Packet Storm
229307 7.8 危険 radical technologies - Portal Search の buscador/buscador.htm における重要な情報を取得される脆弱性 - CVE-2007-0923 2012-12-20 18:19 2007-02-14 Show GitHub Exploit DB Packet Storm
229308 4.3 警告 radical technologies - Portal Search の buscador/buscador.htm におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-0922 2012-12-20 18:19 2007-02-14 Show GitHub Exploit DB Packet Storm
229309 9.4 危険 radical technologies - Portal Search における任意の Web サイトへの URL をリダイレクトされる脆弱性 - CVE-2007-0921 2012-12-20 18:19 2007-02-14 Show GitHub Exploit DB Packet Storm
229310 10 危険 ProcessOne - ejabberd の mod_roster_odbc モジュールにおける脆弱性 - CVE-2007-0903 2012-12-20 18:19 2007-02-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1761 7.3 HIGH
Network 		- - A vulnerability was detected in SourceCodester Pizzafy Ecommerce System 1.0. Impacted is the function Login of the file /admin/ajax.php?action=login. The manipulation of the argument e-mail results i… CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-7227 2026-04-29 10:00 2026-04-28 Show GitHub Exploit DB Packet Storm
1762 7.3 HIGH
Network 		- - A flaw has been found in SourceCodester Pizzafy Ecommerce System 1.0. The affected element is the function get_cart_count of the file /admin/ajax.php?action=get_cart_count. This manipulation of the a… CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-7228 2026-04-29 10:00 2026-04-28 Show GitHub Exploit DB Packet Storm
1763 6.3 MEDIUM
Network 		- - A vulnerability was found in code-projects Coaching Management System 1.0. This affects an unknown function of the file /cims/modules/admin/reply.php of the component POST Handler. Performing a manip… CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-7229 2026-04-29 10:00 2026-04-28 Show GitHub Exploit DB Packet Storm
1764 4.3 MEDIUM
Network 		- - A vulnerability was found in SourceCodester Safety Anger Pad 1.0. The affected element is an unknown function. The manipulation of the argument angerDisplay results in cross site scripting. The attac… CWE-79
CWE-94
Cross-site Scripting
Code Injection 		CVE-2026-7230 2026-04-29 10:00 2026-04-28 Show GitHub Exploit DB Packet Storm
1765 7.3 HIGH
Network 		- - A weakness has been identified in BrowserOperator browser-operator-core up to 0.6.0. Affected is the function startsWith of the file scripts/component_server/server.js. Executing a manipulation of th… CWE-22
Path Traversal 		CVE-2026-7234 2026-04-29 10:00 2026-04-28 Show GitHub Exploit DB Packet Storm
1766 4.7 MEDIUM
Network 		- - A flaw has been found in code-projects Online Music Site 1.0. This affects an unknown part of the file /Administrator/PHP/AdminUpdateAlbum.php. This manipulation of the argument txtimage causes unres… CWE-284
CWE-434
Improper Access Control
 Unrestricted Upload of File with Dangerous Type  		CVE-2026-7238 2026-04-29 10:00 2026-04-28 Show GitHub Exploit DB Packet Storm
1767 7.3 HIGH
Network 		- - A vulnerability was detected in AgiFlow scaffold-mcp up to 1.0.27. Affected by this issue is some unknown functionality of the file packages/scaffold-mcp/src/server/index.ts of the component write-to… CWE-22
Path Traversal 		CVE-2026-7237 2026-04-29 10:00 2026-04-28 Show GitHub Exploit DB Packet Storm
1768 6.3 MEDIUM
Network 		- - A weakness has been identified in SourceCodester Pizzafy Ecommerce System 1.0. Impacted is the function get_cart_items of the file /admin/ajax.php?action=get_cart_items. Executing a manipulation of t… CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-7264 2026-04-29 10:00 2026-04-28 Show GitHub Exploit DB Packet Storm
1769 6.3 MEDIUM
Network 		- - A security vulnerability has been detected in SourceCodester Pizzafy Ecommerce System 1.0. The affected element is the function Category of the file pizza/index.php?page=category. The manipulation of… CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-7265 2026-04-29 10:00 2026-04-28 Show GitHub Exploit DB Packet Storm
1770 6.3 MEDIUM
Network 		- - A vulnerability was detected in SourceCodester Pizzafy Ecommerce System 1.0. The impacted element is the function save_order of the file /admin/ajax.php?action=save_order. The manipulation of the arg… CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-7266 2026-04-29 10:00 2026-04-28 Show GitHub Exploit DB Packet Storm