Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 7, 2026, 4:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
250711 9.3 危険 マイクロソフト - Microsoft Windows の Microsoft Active Accessibility コンポーネントにおける権限昇格の脆弱性 CWE-Other
その他 		CVE-2011-1247 2011-10-21 15:23 2011-10-11 Show GitHub Exploit DB Packet Storm
250712 4 警告 マイクロソフト - 複数の Microsoft 製品における任意のファイルを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2011-1892 2011-10-21 15:18 2011-09-13 Show GitHub Exploit DB Packet Storm
250713 4.3 警告 マイクロソフト - Microsoft Windows SharePoint Services および SharePoint Foundation におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-1891 2011-10-21 15:18 2011-09-13 Show GitHub Exploit DB Packet Storm
250714 4.3 警告 マイクロソフト - 複数の Microsoft SharePoint 製品の EditForm.aspx におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-1890 2011-10-21 15:17 2011-09-13 Show GitHub Exploit DB Packet Storm
250715 4.3 警告 マイクロソフト - 複数の Microsoft SharePoint 製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-0653 2011-10-21 15:17 2011-09-13 Show GitHub Exploit DB Packet Storm
250716 9.3 危険 マイクロソフト - Microsoft Internet Explorer における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-2001 2011-10-21 11:55 2011-10-11 Show GitHub Exploit DB Packet Storm
250717 9.3 危険 マイクロソフト - Microsoft Internet Explorer における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-2000 2011-10-21 11:50 2011-10-11 Show GitHub Exploit DB Packet Storm
250718 5 警告 マイクロソフト - Microsoft Host Integration Server におけるサービス運用妨害 (SNA サーバサービスの休止) の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-2008 2011-10-21 11:49 2011-10-11 Show GitHub Exploit DB Packet Storm
250719 5 警告 マイクロソフト - Microsoft Host Integration Server におけるサービス運用妨害 (SNA サーバサービスの休止) の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-2007 2011-10-21 11:48 2011-10-11 Show GitHub Exploit DB Packet Storm
250720 9.3 危険 アップル - Apple iTunes で使用される CoreMedia におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-3219 2011-10-21 11:46 2011-10-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1751 7.3 HIGH
Network 		- - A vulnerability was identified in eghuzefa engineer-your-data up to 0.1.3. This vulnerability affects the function read_file/write_file/list_files/file_inf of the file src/server.py. The manipulation… CWE-22
Path Traversal 		CVE-2026-7214 2026-04-29 10:00 2026-04-28 Show GitHub Exploit DB Packet Storm
1752 7.3 HIGH
Network 		- - A security flaw has been discovered in egtai gmx-vmd-mcp up to 0.1.0. This issue affects the function launch_vmd_gui_tool of the file mcp_server.py of the component VMD Launch Handler. The manipulati… CWE-74
CWE-77
Injection
Command Injection 		CVE-2026-7215 2026-04-29 10:00 2026-04-28 Show GitHub Exploit DB Packet Storm
1753 7.3 HIGH
Network 		- - A weakness has been identified in donchelo processing-claude-mcp-bridge up to e017b20a4b592a45531a6392f494007f04e661bd. Impacted is an unknown function of the file processing_server.py of the compone… CWE-22
Path Traversal 		CVE-2026-7216 2026-04-29 10:00 2026-04-28 Show GitHub Exploit DB Packet Storm
1754 7.3 HIGH
Network 		- - A vulnerability has been found in jackwrichards FastlyMCP up to 6f3d0b0e654fc51076badc7fa16c03c461f95620. This impacts an unknown function of the file fastly-mcp.mjs of the component fastly_cli Tool.… CWE-77
CWE-78
Command Injection
OS Command  		CVE-2026-7220 2026-04-29 10:00 2026-04-28 Show GitHub Exploit DB Packet Storm
1755 7.3 HIGH
Network 		- - A vulnerability was found in TencentCloudBase CloudBase-MCP up to 2.17.0. Affected is the function openUrl of the file mcp/src/interactive-server.ts of the component open-url API Endpoint. The manipu… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-7221 2026-04-29 10:00 2026-04-28 Show GitHub Exploit DB Packet Storm
1756 3.5 LOW
Network 		- - A vulnerability was determined in code-projects Coaching Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /cims/modules/student/complaint.php of the compo… CWE-79
CWE-94
Cross-site Scripting
Code Injection 		CVE-2026-7222 2026-04-29 10:00 2026-04-28 Show GitHub Exploit DB Packet Storm
1757 7.3 HIGH
Network 		- - A vulnerability was identified in BigSweetPotatoStudio HyperChat up to 2.0.0-alpha.63. Affected by this issue is the function fetch of the file packages/core/src/http/aiProxyMiddleware.mts of the com… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-7223 2026-04-29 10:00 2026-04-28 Show GitHub Exploit DB Packet Storm
1758 7.3 HIGH
Network 		- - A security flaw has been discovered in SourceCodester Pizzafy Ecommerce System 1.0. This affects the function delete_cart of the file /admin/ajax.php?action=delete_cart. Performing a manipulation of … CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-7224 2026-04-29 10:00 2026-04-28 Show GitHub Exploit DB Packet Storm
1759 7.3 HIGH
Network 		- - A weakness has been identified in SourceCodester Pizzafy Ecommerce System 1.0. This vulnerability affects the function delete_menu of the file /admin/ajax.php?action=delete_menu. Executing a manipula… CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-7225 2026-04-29 10:00 2026-04-28 Show GitHub Exploit DB Packet Storm
1760 7.3 HIGH
Network 		- - A security vulnerability has been detected in SourceCodester Pizzafy Ecommerce System 1.0. This issue affects the function login2 of the file /admin/ajax.php?action=login2. The manipulation of the ar… CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-7226 2026-04-29 10:00 2026-04-28 Show GitHub Exploit DB Packet Storm