Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 19, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
250121	6.9	警告	lttng	-	LTTng Userspace Tracer の usttrace における権限を取得される脆弱性	CWE-DesignError	CVE-2010-3386	2012-03-27 18:42	2010-10-20	Show	GitHub Exploit DB Packet Storm

250122	6.9	警告	herac	-	TuxGuitar における権限を取得される脆弱性	CWE-DesignError	CVE-2010-3385	2012-03-27 18:42	2010-10-20	Show	GitHub Exploit DB Packet Storm

250123	6.9	警告	Bernhard Wymann	-	TORCS の torcs などのスクリプトにおける権限を取得される脆弱性	CWE-DesignError	CVE-2010-3384	2012-03-27 18:42	2010-10-20	Show	GitHub Exploit DB Packet Storm

250124	6.9	警告	TeamSpeak Systems GmbH	-	TeamSpeak の teamspeak スクリプトにおける権限を取得される脆弱性	CWE-DesignError	CVE-2010-3383	2012-03-27 18:42	2010-10-20	Show	GitHub Exploit DB Packet Storm

250125	6.9	警告	uoregon	-	TAU の tauex における権限を取得される脆弱性	CWE-DesignError	CVE-2010-3382	2012-03-27 18:42	2010-10-20	Show	GitHub Exploit DB Packet Storm

250126	6.9	警告	alex launi	-	Tangerine の tangerine スクリプトにおける権限を取得される脆弱性	CWE-DesignError	CVE-2010-3381	2012-03-27 18:42	2010-10-20	Show	GitHub Exploit DB Packet Storm

250127	6.9	警告	Lawrence Livermore National Laboratory (LLNL)	-	SLURM の init.d/slurm スクリプトにおける権限を取得される脆弱性	CWE-DesignError	CVE-2010-3380	2012-03-27 18:42	2010-09-29	Show	GitHub Exploit DB Packet Storm

250128	6.9	警告	scilab	-	Scilab の scilab スクリプトにおける権限を取得される脆弱性	CWE-DesignError	CVE-2010-3378	2012-03-27 18:42	2010-10-20	Show	GitHub Exploit DB Packet Storm

250129	6.9	警告	salome-platform	-	SALOME の runSalome スクリプトにおける権限を取得される脆弱性	CWE-DesignError	CVE-2010-3377	2012-03-27 18:42	2010-10-20	Show	GitHub Exploit DB Packet Storm

250130	6.9	警告	CERN	-	ROOT の proofserv などのスクリプトにおける権限を取得される脆弱性	CWE-DesignError	CVE-2010-3376	2012-03-27 18:42	2010-10-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2441	5.3	MEDIUM Network	-	-	The HEL Online Classroom: AI-powered Online Classrooms plugin for WordPress is vulnerable to Missing Authorization in all versions up to, and including, 1.0.3. This is due to a missing capability che…	CWE-862 Missing Authorization	CVE-2026-6708	2026-05-12 23:03	2026-05-12	Show	GitHub Exploit DB Packet Storm

2442	4.3	MEDIUM Network	-	-	The Coinbase Commerce for Contact Form 7 plugin for WordPress is vulnerable to Missing Authorization in versions up to and including 1.1.2. This is due to a missing capability check and missing nonce…	CWE-862 Missing Authorization	CVE-2026-6709	2026-05-12 23:03	2026-05-12	Show	GitHub Exploit DB Packet Storm

2443	4.3	MEDIUM Network	-	-	The Skysa Text Ticker App plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.4. This is due to missing or incorrect nonce validation on the Skysa…	CWE-352 Origin Validation Error	CVE-2026-6710	2026-05-12 23:03	2026-05-12	Show	GitHub Exploit DB Packet Storm

2444	6.1	MEDIUM Network	-	-	The Pricing Tables for WP plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'page' parameter in all versions up to, and including, 1.1.0. This is due to insufficient input …	CWE-79 Cross-site Scripting	CVE-2026-6808	2026-05-12 23:03	2026-05-12	Show	GitHub Exploit DB Packet Storm

2445	6.4	MEDIUM Network	-	-	The Shortcodely plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'widget_area' parameter in all versions up to, and including, 1.0.1 due to insufficient input sanitization an…	CWE-79 Cross-site Scripting	CVE-2026-6913	2026-05-12 23:03	2026-05-12	Show	GitHub Exploit DB Packet Storm

2446	4.3	MEDIUM Network	-	-	The Woo Commerce Minimum Weight plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to and including 3.0.1. This is due to missing nonce verification on the settings u…	CWE-352 Origin Validation Error	CVE-2026-6932	2026-05-12 23:03	2026-05-12	Show	GitHub Exploit DB Packet Storm

2447	4.3	MEDIUM Network	-	-	The Forms Rb plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 1.1.9. This is due to the plugin not properly verifying that a user is authorized to perf…	CWE-862 Missing Authorization	CVE-2026-7050	2026-05-12 23:03	2026-05-12	Show	GitHub Exploit DB Packet Storm

2448	6.1	MEDIUM Network	-	-	The AzonPost plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the `editpos_hidden` parameter in all versions up to, and including, 1.3. This is due to insufficient input sanit…	CWE-79 Cross-site Scripting	CVE-2026-7437	2026-05-12 23:03	2026-05-12	Show	GitHub Exploit DB Packet Storm

2449	6.1	MEDIUM Network	-	-	The WP Google Maps Integration plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the `page` parameter in all versions up to, and including, 1.2. This is due to insufficient inp…	CWE-79 Cross-site Scripting	CVE-2026-7464	2026-05-12 23:03	2026-05-12	Show	GitHub Exploit DB Packet Storm

2450	6.1	MEDIUM Network	-	-	The Tm – WordPress Redirection plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.2. This is due to missing or incorrect nonce validation on a fu…	CWE-352 Origin Validation Error	CVE-2026-7561	2026-05-12 23:03	2026-05-12	Show	GitHub Exploit DB Packet Storm