Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 1, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
225691 5.7 警告 Linux
レッドハット		 - Red Hat Enterprise Linux 上で稼働する Linux Kernel の net/8021q/vlan_core.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-3593 2013-06-11 16:15 2011-10-3 Show GitHub Exploit DB Packet Storm
225692 4.6 警告 レッドハット - Red Hat Enterprise Linux 上で稼働するカーネルパッケージの be2net の実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2011-3347 2013-06-11 16:14 2011-09-7 Show GitHub Exploit DB Packet Storm
225693 6.8 警告 Linux
レッドハット		 - Red Hat Enterprise Linux 上で稼働する Linux Kernel の net/bridge/br_forward.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-DesignError
CWE-Other
CVE-2011-2942 2013-06-11 16:14 2011-08-16 Show GitHub Exploit DB Packet Storm
225694 1.9 注意 レッドハット - Red Hat Enterprise Linux のカーネルパッケージの perf サブシステムにおけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2011-2693 2013-06-11 16:13 2011-03-17 Show GitHub Exploit DB Packet Storm
225695 7.8 危険 Linux - Red Hat Enterprise Linux で使用される Linux Kernel の net/sctp/socket.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2011-2482 2013-06-11 16:12 2007-04-25 Show GitHub Exploit DB Packet Storm
225696 3.3 注意 Linux - Linux Kernel の fs/cifs/connect.c の cifs_find_smb_ses 関数における CIFS 共有認証を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-1585 2013-06-11 15:52 2010-10-20 Show GitHub Exploit DB Packet Storm
225697 7.5 危険 Linux - Linux Kernel の net/irda/iriap.c におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-1180 2013-06-11 15:45 2011-05-18 Show GitHub Exploit DB Packet Storm
225698 2.1 注意 RSAセキュリティ - EMC RSA Authentication Manager におけるオペレーティングシステムのパスワードを破られる脆弱性 CWE-255
証明書・パスワード管理 		CVE-2013-0947 2013-06-11 15:44 2013-05-28 Show GitHub Exploit DB Packet Storm
225699 6.8 警告 Mozilla Foundation - Linux 上で稼働する複数の Mozilla 製品の WebGL の実装における任意のコードを実行される脆弱性 CWE-DesignError
CVE-2012-3967 2013-06-11 15:34 2012-08-28 Show GitHub Exploit DB Packet Storm
225700 10 危険 Mozilla Foundation - 複数の Mozilla 製品における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2012-3966 2013-06-11 15:23 2012-08-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2841 8.8 HIGH
Network 		- - The Read More & Accordion plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 3.5.7. This is due to the 'RadMoreAjax::importData' function not restricting… CWE-269
 Improper Privilege Management 		CVE-2026-7467 2026-05-20 22:54 2026-05-20 Show GitHub Exploit DB Packet Storm
2842 4.9 MEDIUM
Network 		- - The Read More & Accordion plugin for WordPress is vulnerable to time-based blind SQL Injection via the 'orderby' parameter in all versions up to, and including, 3.5.7. This is due to the use of esc_s… CWE-89
SQL Injection 		CVE-2026-7472 2026-05-20 22:54 2026-05-20 Show GitHub Exploit DB Packet Storm
2843 4.3 MEDIUM
Network 		- - The Remove Yellow BGBOX plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0. This is due to missing or incorrect nonce validation on the 'rybb_a… CWE-352
 Origin Validation Error 		CVE-2026-8424 2026-05-20 22:54 2026-05-20 Show GitHub Exploit DB Packet Storm
2844 4.3 MEDIUM
Network 		- - The TypeSquare Webfonts for ConoHa plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 2.0.4. This is due to the plugin not properly verifying that a user… CWE-862
 Missing Authorization 		CVE-2026-8610 2026-05-20 22:54 2026-05-20 Show GitHub Exploit DB Packet Storm
2845 6.1 MEDIUM
Network 		- - The LJ comments import: reloaded plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via PHP_SELF Parameter in all versions up to, and including, 0.97.1 due to insufficient input san… CWE-79
Cross-site Scripting 		CVE-2026-8624 2026-05-20 22:54 2026-05-20 Show GitHub Exploit DB Packet Storm
2846 6.1 MEDIUM
Network 		- - The SponsorMe plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via PHP_SELF Parameter in all versions up to, and including, 0.5.2 due to insufficient input sanitization and output… CWE-79
Cross-site Scripting 		CVE-2026-8626 2026-05-20 22:54 2026-05-20 Show GitHub Exploit DB Packet Storm
2847 5.3 MEDIUM
Network 		- - The Xpro Addons — 140+ Widgets for Elementor plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the get_content_editor function in all versio… CWE-862
 Missing Authorization 		CVE-2025-15369 2026-05-20 22:54 2026-05-20 Show GitHub Exploit DB Packet Storm
2848 6.1 MEDIUM
Network 		- - The Correct Prices plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the $_SERVER['PHP_SELF'] variable in versions up to and including 1.0. This is due to the correct_prices_pa… CWE-79
Cross-site Scripting 		CVE-2026-8627 2026-05-20 22:54 2026-05-20 Show GitHub Exploit DB Packet Storm
2849 6.5 MEDIUM
Network 		- - The Infility Global plugin for WordPress is vulnerable to SQL Injection via the 'orderby' and 'order' parameters in all versions up to, and including, 2.15.16. This is due to insufficient escaping on… CWE-89
SQL Injection 		CVE-2026-8685 2026-05-20 22:54 2026-05-20 Show GitHub Exploit DB Packet Storm
2850 7.5 HIGH
Network 		- - The Boost plugin for WordPress is vulnerable to time-based SQL Injection via the 'current_url' and 'user_name' parameters in versions up to, and including, 2.0.3 due to insufficient escaping on the u… CWE-89
SQL Injection 		CVE-2026-9010 2026-05-20 22:54 2026-05-20 Show GitHub Exploit DB Packet Storm