Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 11, 2026, 4:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251541 7.2 危険 NoMachine - NoMachine NX Node および NX Server の nxconfigure.sh における任意のファイルを読まれる脆弱性 CWE-noinfo
情報不足 		CVE-2011-3977 2011-10-11 10:13 2011-08-5 Show GitHub Exploit DB Packet Storm
251542 5 警告 IceWarp, Inc. - IceWarp Mail Server の IceWarp WebMail における設定情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2011-3580 2011-10-11 10:11 2011-09-30 Show GitHub Exploit DB Packet Storm
251543 6.4 警告 IceWarp, Inc. - IceWarp Mail Server の server/webmail.php における任意のファイルを読まれる脆弱性 CWE-399
リソース管理の問題 		CVE-2011-3579 2011-10-11 10:10 2011-09-30 Show GitHub Exploit DB Packet Storm
251544 7.5 危険 シマンテック - Symantec IM Manager の管理コンソールにおける任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2011-0554 2011-10-11 10:10 2011-09-29 Show GitHub Exploit DB Packet Storm
251545 7.5 危険 シマンテック - Symantec IM Manager の管理コンソールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-0553 2011-10-11 10:09 2011-09-29 Show GitHub Exploit DB Packet Storm
251546 4.3 警告 シマンテック - Symantec IM Manager の管理コンソールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-0552 2011-10-11 10:09 2011-09-29 Show GitHub Exploit DB Packet Storm
251547 4 警告 株式会社アークウェブ - A-Form におけるアクセス制限不備の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-2676 2011-10-7 12:04 2011-10-7 Show GitHub Exploit DB Packet Storm
251548 5 警告 utage.org - 宴会くんにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-2675 2011-10-7 12:03 2011-10-7 Show GitHub Exploit DB Packet Storm
251549 2.6 注意 HTC Corporation - 複数の Android 用 HTC 製品における電話番号およびその他の重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2011-3975 2011-10-7 11:46 2011-10-3 Show GitHub Exploit DB Packet Storm
251550 5 警告 FFmpeg - FFmpeg の decode_residual_inter 関数における整数符号エラーの脆弱性 CWE-189
数値処理の問題 		CVE-2011-3974 2011-10-7 11:33 2011-10-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2651 5.4 MEDIUM
Network 		- - A flaw has been found in rawchen sims up to 004f783b1db5ecdfad81c8fdc3b34171211112de. Affected by this issue is some unknown functionality of the file sims-master/src/web/servlet/file/DeleteFileServl… CWE-22
Path Traversal 		CVE-2026-7024 2026-04-29 10:00 2026-04-26 Show GitHub Exploit DB Packet Storm
2652 7.8 HIGH
Local 		- - A security vulnerability has been detected in tufantunc ssh-mcp up to 1.5.0. The affected element is the function shell.write of the file src/index.ts. Such manipulation of the argument Description l… CWE-74
CWE-77
Injection
Command Injection 		CVE-2026-7039 2026-04-29 10:00 2026-04-26 Show GitHub Exploit DB Packet Storm
2653 7.3 HIGH
Network 		- - A flaw has been found in 666ghj MiroFish up to 0.1.2. This affects the function create_app of the file backend/app/__init__.py of the component REST API Endpoint. Executing a manipulation can lead to… CWE-287
CWE-306
Improper Authentication
Missing Authentication for Critical Function 		CVE-2026-7042 2026-04-29 10:00 2026-04-27 Show GitHub Exploit DB Packet Storm
2654 3.7 LOW
Network 		- - A vulnerability was detected in 666ghj MiroFish up to 0.1.2. The impacted element is an unknown function of the file /console of the component Werkzeug Debugger PIN Handler. Performing a manipulation… CWE-200
CWE-284
Information Exposure
Improper Access Control 		CVE-2026-7041 2026-04-29 10:00 2026-04-26 Show GitHub Exploit DB Packet Storm
2655 6.3 MEDIUM
Network 		- - A vulnerability has been found in GreenCMS up to 2.3. This impacts the function pluginAddLocal of the file /index.php?m=admin&c=custom&a=pluginadd. The manipulation leads to unrestricted upload. The … CWE-284
CWE-434
Improper Access Control
 Unrestricted Upload of File with Dangerous Type  		CVE-2026-7043 2026-04-29 10:00 2026-04-27 Show GitHub Exploit DB Packet Storm
2656 6.3 MEDIUM
Network 		- - A vulnerability was found in GreenCMS up to 2.3. Affected is the function themeadd of the file /index.php?m=admin&c=custom&a=themeadd. The manipulation results in unrestricted upload. The attack can … CWE-284
CWE-434
Improper Access Control
 Unrestricted Upload of File with Dangerous Type  		CVE-2026-7044 2026-04-29 10:00 2026-04-27 Show GitHub Exploit DB Packet Storm
2657 7.3 HIGH
Network 		- - A vulnerability has been found in 666ghj MiroFish up to 0.1.2. The impacted element is the function SimulationIPCClient.send_command of the file backend/app/services/simulation_ipc.py of the componen… CWE-74
CWE-77
Injection
Command Injection 		CVE-2026-7058 2026-04-29 10:00 2026-04-27 Show GitHub Exploit DB Packet Storm
2658 7.3 HIGH
Network 		- - A vulnerability was determined in liyupi yu-picture up to a053632c41340152bf75b66b3c543d129123d8ec. This impacts the function PageRequest of the file yu-picture-backend/src/main/java/com/yupi/yupictu… CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-7060 2026-04-29 10:00 2026-04-27 Show GitHub Exploit DB Packet Storm
2659 7.3 HIGH
Network 		- - A weakness has been identified in Toowiredd chatgpt-mcp-server up to 0.1.0. Affected by this issue is some unknown functionality of the file src/services/docker.service.ts of the component MCP/HTTP. … CWE-77
CWE-78
Command Injection
OS Command  		CVE-2026-7061 2026-04-29 10:00 2026-04-27 Show GitHub Exploit DB Packet Storm
2660 7.3 HIGH
Network 		- - A security vulnerability has been detected in Intina47 context-sync up to 2.0.0. This affects an unknown part of the file src/git-integration.ts of the component Git Integration. Such manipulation le… CWE-77
CWE-78
Command Injection
OS Command  		CVE-2026-7062 2026-04-29 10:00 2026-04-27 Show GitHub Exploit DB Packet Storm