Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 8, 2026, 12:07 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226531	6.8	警告	アップル	-	Apple iOS および Apple Safari で使用される WebKit WebKit における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2013-0949	2013-05-20 15:30	2013-01-29	Show	GitHub Exploit DB Packet Storm

226532	6.8	警告	アップル	-	Apple iOS および Apple Safari で使用される WebKit における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2013-0948	2013-05-20 15:27	2013-01-29	Show	GitHub Exploit DB Packet Storm

226533	7.5	危険	アップル Google	-	Google Chrome の WebKit における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2013-0912	2013-05-20 14:57	2013-03-7	Show	GitHub Exploit DB Packet Storm

226534	10	危険	アップル Google	-	複数の製品で使用される WebKit における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2012-5112	2013-05-20 14:20	2012-10-10	Show	GitHub Exploit DB Packet Storm

226535	6.8	警告	アップル Google	-	複数の製品で使用される Webkit におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2012-2857	2013-05-20 14:02	2012-07-31	Show	GitHub Exploit DB Packet Storm

226536	7.5	危険	アップル Google	-	複数の製品で使用される Webkit におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2012-2824	2013-05-20 13:54	2012-06-26	Show	GitHub Exploit DB Packet Storm

226537	4.3	警告	web2py	-	web2py のソーシャルブックマークウィジェットにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-2311	2013-05-20 12:00	2013-05-20	Show	GitHub Exploit DB Packet Storm

226538	4.3	警告	Rack	-	Rack の rack/file.rb における任意のファイルにアクセスされる脆弱性	CWE-22 パス・トラバーサル	CVE-2013-0262	2013-05-20 10:35	2013-02-7	Show	GitHub Exploit DB Packet Storm

226539	3.6	注意	Digia	-	Qt の QSharedMemory クラスにおける重要な情報を読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-0254	2013-05-20 10:33	2013-02-6	Show	GitHub Exploit DB Packet Storm

226540	5	警告	Django Software Foundation Canonical	-	Django の form ライブラリにおけるフォームセットのリソース制限を回避される脆弱性	CWE-189 数値処理の問題	CVE-2013-0306	2013-05-17 18:25	2013-02-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 8, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
195571	5.4	MEDIUM Network	nicdark	cost_calculator	The Cost Calculator WordPress plugin before 1.6 allows users with a role as low as Contributor to perform Stored Cross-Site Scripting attacks via the Description fields of a Cost Calculator > Price S…	CWE-79 Cross-site Scripting	CVE-2021-24821	2024-11-21 14:53	2022-03-7	Show	GitHub Exploit DB Packet Storm

195572	4.8	MEDIUM Network	wp-eventmanager	wp_event_manager	The WP Event Manager WordPress plugin before 3.1.23 does not escape some of its Field Editor settings when outputting them, allowing high privilege users to perform Cross-Site Scripting attacks even …	CWE-79 Cross-site Scripting	CVE-2021-24810	2024-11-21 14:53	2022-03-7	Show	GitHub Exploit DB Packet Storm

195573	7.2	HIGH Network	wpaffiliatefeed	tradetracker-store	The test parameter of the xmlfeed in the Tradetracker-Store WordPress plugin before 4.6.60 is not sanitised, escaped or validated before inserting to a SQL statement, leading to SQL injection.	CWE-89 SQL Injection	CVE-2021-24778	2024-11-21 14:53	2022-03-7	Show	GitHub Exploit DB Packet Storm

195574	7.2	HIGH Network	hotscot	contact_form	The view submission functionality in the Hotscot Contact Form WordPress plugin before 1.3 makes a get request with the sub_id parameter which not sanitised, escaped or validated before inserting to a…	CWE-89 SQL Injection	CVE-2021-24777	2024-11-21 14:53	2022-03-7	Show	GitHub Exploit DB Packet Storm

195575	4.8	MEDIUM Network	codeasily	grand_flagallery	The GRAND FlaGallery WordPress plugin through 6.1.2 does not sanitise and escape some of its gallery settings, which could allow high privilege users to perform Cross-Site scripting attacks even when…	-	CVE-2021-24903	2024-11-21 14:53	2022-02-28	Show	GitHub Exploit DB Packet Storm

195576	4.8	MEDIUM Network	securemoz	security_audit	The Security Audit WordPress plugin through 1.0.0 does not sanitise and escape the Data Id setting, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfilt…	-	CVE-2021-24901	2024-11-21 14:53	2022-02-28	Show	GitHub Exploit DB Packet Storm

195577	4.8	MEDIUM Network	editable-table_project	editable_table	The EditableTable WordPress plugin through 0.1.4 does not sanitise and escape any of the Table and Column fields, which could allow high privilege users to perform Cross-Site Scripting attacks even w…	-	CVE-2021-24898	2024-11-21 14:53	2022-02-28	Show	GitHub Exploit DB Packet Storm

195578	8.8	HIGH Network	wpscan	wp_cloudy	The WP Cloudy, weather plugin WordPress plugin before 4.4.9 does not escape the post_id parameter before using it in a SQL statement in the admin dashboard, leading to a SQL Injection issue	-	CVE-2021-24864	2024-11-21 14:53	2022-02-28	Show	GitHub Exploit DB Packet Storm

195579	8.1	HIGH Network	schiocco	support_board	The Support Board WordPress plugin before 3.3.6 does not have any CSRF checks in actions handled by the include/ajax.php file, which could allow attackers to make logged in users do unwanted actions.…	-	CVE-2021-24823	2024-11-21 14:53	2022-02-28	Show	GitHub Exploit DB Packet Storm

195580	6.5	MEDIUM Network	bold-themes	cost_calculator	The Cost Calculator WordPress plugin through 1.6 allows authenticated users (Contributor+ in versions < 1.5, and Admin+ in versions <= 1.6) to perform path traversal and local PHP file inclusion on W…	-	CVE-2021-24820	2024-11-21 14:53	2022-02-28	Show	GitHub Exploit DB Packet Storm