Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 13, 2026, 4:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
249891	4.3	警告	Mechbunny	-	PaysiteReviewCMS におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4909	2012-02-28 10:36	2011-10-8	Show	GitHub Exploit DB Packet Storm

249892	7.5	危険	Virtue Netz	-	Virtue Shopping Mall の detail.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4908	2012-02-28 10:35	2011-10-8	Show	GitHub Exploit DB Packet Storm

249893	4.3	警告	Powie	-	Powie pFile の pfile/kommentar.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1211	2012-02-27 17:12	2012-02-24	Show	GitHub Exploit DB Packet Storm

249894	4.3	警告	Apache Software Foundation	-	Apache HTTP Server の mod_proxy モジュールにおけるイントラネットサーバにリクエストを送信される脆弱性	CWE-20 不適切な入力確認	CVE-2011-3639	2012-02-27 17:01	2011-10-25	Show	GitHub Exploit DB Packet Storm

249895	4.3	警告	Zimbra	-	Zimbra Web Client の zimbra/h/calendar におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1213	2012-02-27 16:48	2012-02-24	Show	GitHub Exploit DB Packet Storm

249896	4.3	警告	SMW+	-	Semantic Enterprise Wiki の smwfOnSfSetTargetName 関数におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1212	2012-02-27 16:47	2012-02-24	Show	GitHub Exploit DB Packet Storm

249897	7.5	危険	Powie	-	Powie pFile の pfile/file.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-1210	2012-02-27 15:51	2012-02-24	Show	GitHub Exploit DB Packet Storm

249898	4.3	警告	Fork CMS	-	Fork CMS の backend/core/engine/base.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1209	2012-02-27 15:48	2012-02-24	Show	GitHub Exploit DB Packet Storm

249899	4.3	警告	Fork CMS	-	Fork CMS の backend/core/engine/base.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1208	2012-02-27 15:48	2012-02-24	Show	GitHub Exploit DB Packet Storm

249900	5	警告	Fork CMS	-	Fork CMS の frontend/core/engine/javascript.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2012-1207	2012-02-27 15:41	2012-02-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1661	7.3	HIGH Network	-	-	A vulnerability was identified in SourceCodester SUP Online Shopping 1.0. This affects an unknown function of the file /admin/message.php. The manipulation of the argument seenid leads to sql injecti…	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-8130	2026-05-9 00:41	2026-05-8	Show	GitHub Exploit DB Packet Storm

1662	7.3	HIGH Network	-	-	A security flaw has been discovered in SourceCodester SUP Online Shopping 1.0. This impacts an unknown function of the file /admin/replymsg.php. The manipulation of the argument msgid results in sql …	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-8131	2026-05-9 00:41	2026-05-8	Show	GitHub Exploit DB Packet Storm

1663	2.4	LOW Network	-	-	A flaw has been found in SourceCodester Pharmacy Sales and Inventory System 1.0. This affects an unknown part of the file /index.php?page=users. Executing a manipulation of the argument Name can lead…	CWE-79 CWE-94 Cross-site Scripting Code Injection	CVE-2026-8136	2026-05-9 00:41	2026-05-8	Show	GitHub Exploit DB Packet Storm

1664	6.3	MEDIUM Network	-	-	A vulnerability was found in 8421bit MiniClaw up to 223c16a1088e138838dcbd18cd65a37c35ac5a84. Affected is the function executeCognitivePulse of the file src/kernel.ts. Performing a manipulation resul…	CWE-77 CWE-78 Command Injection OS Command	CVE-2026-8112	2026-05-9 00:39	2026-05-8	Show	GitHub Exploit DB Packet Storm

1665	4.3	MEDIUM Network	-	-	A vulnerability was determined in 8421bit MiniClaw up to 43905b934cf76489ab28e4d17da28ee97970f91f. Affected by this vulnerability is the function isPathInside of the file src/kernel.ts of the compone…	CWE-22 Path Traversal	CVE-2026-8113	2026-05-9 00:39	2026-05-8	Show	GitHub Exploit DB Packet Storm

1666	-		-	-	A vulnerability in Legion of the Bouncy Castle Inc. BC-FJA BC-FIPS on Linux, X86_64, AVX, AVX-512f. This vulnerability is associated with program files gcm128w, gcm512w. This issue affects BC-FJ…	CWE-1068 Inconsistency Between Implementation and Documented Design	CVE-2026-8149	2026-05-9 00:38	2026-05-8	Show	GitHub Exploit DB Packet Storm

1667	-		-	-	The VerySecureApp made by DIVD using Mendix Studio Pro 11.8.0 Beta allows unintended data exposure due to authorization misconfiguration. The VerySecureApp allows anonymous users of the MyFirstModule…	CWE-277 Insecure Inherited Permissions	CVE-2026-7891	2026-05-9 00:37	2026-05-8	Show	GitHub Exploit DB Packet Storm

1668	3.3	LOW Local	-	-	Dell PowerScale OneFS versions 9.5.0.0 through 9.5.1.6, 9.6.0.0 through 9.7.1.13, 9.8.0.0 through 9.10.1.5 and 9.11.0.0 through 9.12.0.1 contains an Insufficient Logging vulnerability. A low privileg…	CWE-778 Insufficient Logging	CVE-2026-32803	2026-05-9 00:36	2026-05-8	Show	GitHub Exploit DB Packet Storm

1669	-		-	-	An Out-of-bounds Read vulnerability in the IOCTL handler in ASUS System Control Interface allows a local user to cause system crash (BSOD) via a read size that exceeds the buffer size.Refer to the ' …	CWE-125 Out-of-bounds Read	CVE-2026-3508	2026-05-9 00:34	2026-05-8	Show	GitHub Exploit DB Packet Storm

1670	-		-	-	An Exposed IOCTL with Insufficient Access Control vulnerability in AsusPTPFilter allows a local user to bypass driver security mechanisms and obtain restricted touchpad information or render the touc…	CWE-782 Exposed IOCTL with Insufficient Access Control	CVE-2026-6737	2026-05-9 00:34	2026-05-8	Show	GitHub Exploit DB Packet Storm