Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 17, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229741 6.9 警告 qgit - QGit の dataloader.cpp における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2007-4631 2012-12-20 18:33 2007-08-31 Show GitHub Exploit DB Packet Storm
229742 4.3 警告 xigla - Absolute Poll Manager XE の xlaapmview.asp におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-4630 2012-12-20 18:33 2007-08-30 Show GitHub Exploit DB Packet Storm
229743 7.5 危険 university of minnesota - MapServer の maptemplate.c におけるバッファオーバーフローの脆弱性 - CVE-2007-4629 2012-12-20 18:33 2007-08-30 Show GitHub Exploit DB Packet Storm
229744 7.5 危険 phpns - phpns の shownews.php における SQL インジェクションの脆弱性 - CVE-2007-4628 2012-12-20 18:33 2007-08-30 Show GitHub Exploit DB Packet Storm
229745 5 警告 polipo - Polipo におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-4626 2012-12-20 18:33 2007-08-30 Show GitHub Exploit DB Packet Storm
229746 4.3 警告 polipo - Polipo におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-4625 2012-12-20 18:33 2007-08-30 Show GitHub Exploit DB Packet Storm
229747 7.5 危険 winterburns.co.uk - ePersonnel の protection.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-4608 2012-12-20 18:33 2007-08-30 Show GitHub Exploit DB Packet Storm
229748 7.5 危険 phpnuke-clan - PHP-Nuke 用の VWar モジュールにおける PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-4606 2012-12-20 18:33 2007-08-30 Show GitHub Exploit DB Packet Storm
229749 7.5 危険 VWar - VWar の convert/mvcw.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-4605 2012-12-20 18:33 2007-08-30 Show GitHub Exploit DB Packet Storm
229750 5 警告 Canonical - tcp-wrappers のリグレッションエラーにおけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-4601 2012-12-20 18:33 2007-08-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2371 4.4 MEDIUM
Network 		- - The Continually plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 4.3.1 due to insufficient input sanitization and output esca… CWE-79
Cross-site Scripting 		CVE-2026-6813 2026-05-12 23:03 2026-05-12 Show GitHub Exploit DB Packet Storm
2372 8.5 HIGH
Network 		- - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Aman Ninja Forms Views – Display & Edit Ninja Forms Submissions on your site frontend v… CWE-89
SQL Injection 		CVE-2026-42741 2026-05-12 23:03 2026-05-12 Show GitHub Exploit DB Packet Storm
2373 8.5 HIGH
Network 		- - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Aman Views for WPForms views-for-wpforms-lite allows Blind SQL Injection.This issue affects Views… CWE-89
SQL Injection 		CVE-2026-42742 2026-05-12 23:03 2026-05-12 Show GitHub Exploit DB Packet Storm
2374 5.4 MEDIUM
Network 		- - Missing Authorization vulnerability in Broadstreet Broadstreet Ads broadstreet allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Broadstreet Ads: from n/a thr… CWE-862
 Missing Authorization 		CVE-2026-45210 2026-05-12 23:03 2026-05-12 Show GitHub Exploit DB Packet Storm
2375 8.5 HIGH
Network 		- - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Saad Iqbal APIExperts Square for WooCommerce woosquare allows Blind SQL Injection.This issue affe… CWE-89
SQL Injection 		CVE-2026-45211 2026-05-12 23:03 2026-05-12 Show GitHub Exploit DB Packet Storm
2376 5.3 MEDIUM
Network 		- - Missing Authorization vulnerability in Gabe Livan Asset CleanUp: Page Speed Booster wp-asset-clean-up allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Asset … CWE-862
 Missing Authorization 		CVE-2026-45212 2026-05-12 23:03 2026-05-12 Show GitHub Exploit DB Packet Storm
2377 7.6 HIGH
Network 		- - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in RealMag777 BEAR woo-bulk-editor allows Blind SQL Injection.This issue affects BEAR: from n/a thro… CWE-89
SQL Injection 		CVE-2026-45213 2026-05-12 23:03 2026-05-12 Show GitHub Exploit DB Packet Storm
2378 8.5 HIGH
Network 		- - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Xpro Xpro Elementor Addons xpro-elementor-addons allows Blind SQL Injection.This issue affects Xp… CWE-89
SQL Injection 		CVE-2026-45214 2026-05-12 23:03 2026-05-12 Show GitHub Exploit DB Packet Storm
2379 5.3 MEDIUM
Network 		- - Insertion of Sensitive Information Into Sent Data vulnerability in Saad Iqbal WP EasyPay wp-easy-pay allows Retrieve Embedded Sensitive Data.This issue affects WP EasyPay: from n/a through <= 4.3.0. CWE-201
 Insertion of Sensitive Information Into Sent Data 		CVE-2026-45215 2026-05-12 23:03 2026-05-12 Show GitHub Exploit DB Packet Storm
2380 7.7 HIGH
Network 		- - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in WP Travel WP Travel wp-travel allows Blind SQL Injection.This issue affects WP Travel: from n/a t… CWE-89
SQL Injection 		CVE-2026-45218 2026-05-12 23:03 2026-05-12 Show GitHub Exploit DB Packet Storm