Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 10, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
223341	4.3	警告	e107.org	-	e107 の fpw.php におけるパスワードをリセットされる脆弱性	CWE-255 証明書・パスワード管理	CVE-2013-7305	2014-01-24 20:55	2013-07-12	Show	GitHub Exploit DB Packet Storm

223342	4.3	警告	e107.org	-	e107 の e107_plugins/content/handlers/content_preset.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-2750	2014-01-24 20:54	2013-03-7	Show	GitHub Exploit DB Packet Storm

223343	4.3	警告	チェック・ポイント・ソフトウェア・テクノロジーズ	-	Check Point Endpoint Security MI Server における SSL サーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2013-7304	2014-01-24 20:54	2013-12-19	Show	GitHub Exploit DB Packet Storm

223344	5.4	警告	ジュニパーネットワークス	-	複数の Juniper 製品の OSPF の実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2013-7313	2014-01-24 20:54	2013-08-1	Show	GitHub Exploit DB Packet Storm

223345	5.4	警告	チェック・ポイント・ソフトウェア・テクノロジーズ	-	Check Point Gaia OS および IPSO OS の OSPF の実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2013-7311	2014-01-24 20:54	2013-08-21	Show	GitHub Exploit DB Packet Storm

223346	5.4	警告	Extreme Networks, Inc.	-	Extreme Networks EXOS の OSPF の実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2013-7309	2014-01-24 20:53	2013-08-1	Show	GitHub Exploit DB Packet Storm

223347	5.4	警告	ブロケードコミュニケーションズシステムズ株式会社	-	Brocade ルータ上で稼働する OSPF の実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-7306	2014-01-24 20:53	2013-08-1	Show	GitHub Exploit DB Packet Storm

223348	5	警告	シスコシステムズ	-	Cisco NX-OS の Label Distribution Protocol 機能におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2014-0677	2014-01-24 19:26	2014-01-23	Show	GitHub Exploit DB Packet Storm

223349	6.8	警告	シスコシステムズ	-	Cisco NX-OS における TACACS+ コマンド制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-0676	2014-01-24 19:25	2014-01-23	Show	GitHub Exploit DB Packet Storm

223350	6.4	警告	シスコシステムズ	-	Cisco TelePresence Video Communication Server の Expressway コンポーネントにおける中間者攻撃を実行される脆弱性	CWE-255 証明書・パスワード管理	CVE-2014-0675	2014-01-24 19:24	2014-01-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1031	6.1	MEDIUM Network	-	-	The Ad Inserter – Ad Manager & AdSense Ads plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via URL Parameters in iframe Mode in all versions up to, and including, 2.8.15 due to i… Update	CWE-79 Cross-site Scripting	CVE-2026-9280	2026-06-8 23:57	2026-06-6	Show	GitHub Exploit DB Packet Storm

1032	4.3	MEDIUM Network	-	-	The SEO Plugin by Squirrly SEO plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 12.4.16. This is due to the plugin not properly verifying that a user i… Update	CWE-862 Missing Authorization	CVE-2026-7624	2026-06-8 23:57	2026-06-6	Show	GitHub Exploit DB Packet Storm

1033	4.3	MEDIUM Network	-	-	The Klamra Paycal for Aspaclaria plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 1.1.4 via the 'invoice_id' parameter due to missing valid… Update	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2026-8611	2026-06-8 23:57	2026-06-6	Show	GitHub Exploit DB Packet Storm

1034	6.3	MEDIUM Network	-	-	A vulnerability was identified in vertex-app vertex up to 2026.02.12. This issue affects some unknown processing of the file app/model/LogMod.js of the component Log Viewer Endpoint. Such manipulatio… Update	CWE-77 CWE-78 Command Injection OS Command	CVE-2026-11408	2026-06-8 23:57	2026-06-6	Show	GitHub Exploit DB Packet Storm

1035	4.4	MEDIUM Local	-	-	A security flaw has been discovered in iAI Lab PDF AI App 4.21.0 on Android. Impacted is the function getExternalCacheDir of the component chatpdf.pro. Performing a manipulation of the argument _disp… Update	CWE-22 Path Traversal	CVE-2026-11411	2026-06-8 23:57	2026-06-6	Show	GitHub Exploit DB Packet Storm

1036	6.3	MEDIUM Network	-	-	A weakness has been identified in Jinher OA C6. The affected element is an unknown function of the file /C6/JHSoft.Web.ModuleCount/GetFormSn.aspx. Executing a manipulation of the argument queryID can… Update	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-11412	2026-06-8 23:57	2026-06-6	Show	GitHub Exploit DB Packet Storm

1037	5.3	MEDIUM Network	-	-	The MapPress Maps for WordPress plugin for WordPress is vulnerable to Authorization Bypass Through User-Controlled Key in all versions up to, and including, 2.96.6. This is due to missing ownership v… Update	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2026-8839	2026-06-8 23:57	2026-06-6	Show	GitHub Exploit DB Packet Storm

1038	5.3	MEDIUM Network	-	-	The Debug Log Manager – Conveniently Monitor and Inspect Errors plugin for WordPress is vulnerable to Improper Output Neutralization for Logs in all versions up to, and including, 2.5.0. This is due … Update	CWE-117 Improper Output Neutralization for Logs	CVE-2026-9016	2026-06-8 23:57	2026-06-6	Show	GitHub Exploit DB Packet Storm

1039	4.4	MEDIUM Network	-	-	The WP Maps – Google Maps,OpenStreetMap,Mapbox,Store Locator,Listing,Directory & Filters plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'location_messages' parameter in all… Update	CWE-79 Cross-site Scripting	CVE-2026-9594	2026-06-8 23:57	2026-06-6	Show	GitHub Exploit DB Packet Storm

1040	6.5	MEDIUM Network	-	-	The Photo Gallery by 10Web – Mobile-Friendly Image Gallery plugin for WordPress is vulnerable to time-based SQL Injection via 'compact_album_order_by' Shortcode Parameter in all versions up to, and i… Update	CWE-89 SQL Injection	CVE-2026-9829	2026-06-8 23:57	2026-06-6	Show	GitHub Exploit DB Packet Storm