Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 8, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
225731 7.8 危険 TrustPort - Trustport Webfilter の help.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2013-5301 2013-08-20 13:39 2013-07-30 Show GitHub Exploit DB Packet Storm
225732 3.5 注意 サイボウズ - サイボウズ メールワイズにおける情報漏えいの脆弱性 CWE-noinfo
情報不足 		CVE-2013-4698 2013-08-20 11:36 2013-08-13 Show GitHub Exploit DB Packet Storm
225733 4.3 警告 WordPress.org - WordPress の SWFUpload のデフォルト設定における同一生成元ポリシーを回避される脆弱性 CWE-16
CWE-79
CVE-2013-2205 2013-08-19 18:03 2013-06-21 Show GitHub Exploit DB Packet Storm
225734 4.3 警告 Moxiecode Systems AB
WordPress.org		 - WordPress の TinyMCE Media プラグインで使用される Moxiecode moxieplayer における Flash アプリケーションに任意のパラメータを渡される脆弱性 CWE-20
不適切な入力確認 		CVE-2013-2204 2013-08-19 18:02 2013-06-21 Show GitHub Exploit DB Packet Storm
225735 4.3 警告 WordPress.org - WordPress における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2013-2203 2013-08-19 18:02 2013-06-21 Show GitHub Exploit DB Packet Storm
225736 4.3 警告 WordPress.org - WordPress における任意のファイルを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2013-2202 2013-08-19 18:00 2013-06-21 Show GitHub Exploit DB Packet Storm
225737 4.3 警告 WordPress.org - WordPress におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-2201 2013-08-19 17:59 2013-06-21 Show GitHub Exploit DB Packet Storm
225738 4 警告 WordPress.org - WordPress における公開および寄稿の再割り当てについての制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-2200 2013-08-19 17:58 2013-06-21 Show GitHub Exploit DB Packet Storm
225739 4.3 警告 WordPress.org - WordPress の HTTP API におけるイントラネットサーバへ HTTP リクエストを送信される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-2199 2013-08-19 17:56 2013-06-21 Show GitHub Exploit DB Packet Storm
225740 4.3 警告 WordPress.org - WordPress の wp-includes/class-phpass.php におけるサービス運用妨害 (DoS) の脆弱性 CWE-310
暗号の問題 		CVE-2013-2173 2013-08-19 17:54 2013-06-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 8, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
196171 9.8 CRITICAL
Network 		bold-themes bello The Bello - Directory & Listing WordPress theme before 1.6.0 did not sanitise the bt_bb_listing_field_price_range_to, bt_bb_listing_field_now_open, bt_bb_listing_field_my_lng, listing_list_view and b… - CVE-2021-24321 2024-11-21 14:52 2021-06-1 Show GitHub Exploit DB Packet Storm
196172 6.1 MEDIUM
Network 		bold-themes bello The Bello - Directory & Listing WordPress theme before 1.6.0 did not properly sanitise and escape its listing_list_view, bt_bb_listing_field_my_lat, bt_bb_listing_field_my_lng, bt_bb_listing_field_di… - CVE-2021-24320 2024-11-21 14:52 2021-06-1 Show GitHub Exploit DB Packet Storm
196173 5.4 MEDIUM
Network 		bold-themes bello The Bello - Directory & Listing WordPress theme before 1.6.0 did not properly sanitise its post_excerpt parameter before outputting it back in the shop/my-account/bello-listing-endpoint/ page, leadin… - CVE-2021-24319 2024-11-21 14:52 2021-06-1 Show GitHub Exploit DB Packet Storm
196174 6.5 MEDIUM
Network 		purethemes listeo The Listeo WordPress theme before 1.6.11 did not ensure that the Post/Page and Booking to delete belong to the user making the request, allowing any authenticated users to delete arbitrary page/post … CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2021-24318 2024-11-21 14:52 2021-06-1 Show GitHub Exploit DB Packet Storm
196175 6.1 MEDIUM
Network 		purethemes listeo The Listeo WordPress theme before 1.6.11 did not properly sanitise some parameters in its Search, Booking Confirmation and Personal Message pages, leading to Cross-Site Scripting issues - CVE-2021-24317 2024-11-21 14:52 2021-06-1 Show GitHub Exploit DB Packet Storm
196176 6.1 MEDIUM
Network 		wowthemes mediumish The search feature of the Mediumish WordPress theme through 1.0.47 does not properly sanitise it's 's' GET parameter before output it back the page, leading to the Cross-SIte Scripting issue. - CVE-2021-24316 2024-11-21 14:52 2021-06-1 Show GitHub Exploit DB Packet Storm
196177 5.4 MEDIUM
Network 		goprayer wp_prayer The WP Prayer WordPress plugin before 1.6.2 provides the functionality to store requested prayers/praises and list them on a WordPress website. These stored prayer/praise requests can be listed by us… - CVE-2021-24313 2024-11-21 14:52 2021-06-1 Show GitHub Exploit DB Packet Storm
196178 7.2 HIGH
Network 		automattic wp_super_cache The parameters $cache_path, $wp_cache_debug_ip, $wp_super_cache_front_page_text, $cache_scheduled_time, $cached_direct_pages used in the settings of WP Super Cache WordPress plugin before 1.7.3 resul… CWE-78
OS Command  		CVE-2021-24312 2024-11-21 14:52 2021-06-1 Show GitHub Exploit DB Packet Storm
196179 8.8 HIGH
Network 		external_media_project external_media The wp_ajax_upload-remote-file AJAX action of the External Media WordPress plugin before 1.0.34 was vulnerable to arbitrary file uploads via any authenticated users. - CVE-2021-24311 2024-11-21 14:52 2021-06-1 Show GitHub Exploit DB Packet Storm
196180 4.8 MEDIUM
Network 		10web photo_gallery The Photo Gallery by 10Web - Mobile-Friendly Image Gallery WordPress plugin before 1.5.67 did not properly sanitise the gallery title, allowing high privilege users to create one with XSS payload in … - CVE-2021-24310 2024-11-21 14:52 2021-06-1 Show GitHub Exploit DB Packet Storm