Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 12, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 226761 | 5 | 警告 | freedesktop.org | - | Poppler の JBIG2Stream::readSymbolDictSeg 関数におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-Other
その他 |
CVE-2009-0756 | 2012-12-20 19:10 | 2009-01-23 | Show | GitHub Exploit DB Packet Storm |
| 226762 | 5 | 警告 | freedesktop.org | - | Poppler の FormWidgetChoice::loadDefaults 関数におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-Other
その他 |
CVE-2009-0755 | 2012-12-20 19:10 | 2009-03-3 | Show | GitHub Exploit DB Packet Storm |
| 226763 | 10 | 危険 | シックス・アパート株式会社 | - | Movable Type Pro などにおける脆弱性 |
CWE-noinfo
情報不足 |
CVE-2009-0752 | 2012-12-20 19:10 | 2009-03-2 | Show | GitHub Exploit DB Packet Storm |
| 226764 | 5 | 警告 | Yaws | - | Yaws におけるサービス運用妨害 (メモリ消費およびクラッシュ) の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2009-0751 | 2012-12-20 19:10 | 2009-03-2 | Show | GitHub Exploit DB Packet Storm |
| 226765 | 7.5 | 危険 | tombstone | - | txtSQL 用の smNews example スクリプトにおける SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2009-0750 | 2012-12-20 19:10 | 2009-03-2 | Show | GitHub Exploit DB Packet Storm |
| 226766 | 4.3 | 警告 | Pebble | - | Pebble におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2009-0736 | 2012-12-20 19:10 | 2009-02-25 | Show | GitHub Exploit DB Packet Storm |
| 226767 | 7.5 | 危険 | tony iha kazungu | - | taifajobs の jobdetails.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2009-0727 | 2012-12-20 19:10 | 2009-02-24 | Show | GitHub Exploit DB Packet Storm |
| 226768 | 7.5 | 危険 | potato-scripts | - | Potato News の admin.php におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2009-0722 | 2012-12-20 19:10 | 2009-02-24 | Show | GitHub Exploit DB Packet Storm |
| 226769 | 5 | 警告 | vlad alexa mancini | - | PHPFootball の filter.php におけるパスワードハッシュを取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2009-0711 | 2012-12-20 19:10 | 2009-02-23 | Show | GitHub Exploit DB Packet Storm |
| 226770 | 4.3 | 警告 | vlad alexa mancini | - | PHPFootball におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2009-0710 | 2012-12-20 19:10 | 2009-02-23 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 12, 2026, 5:06 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 223471 | 9.8 |
CRITICAL
Network |
wpserveur | wps_hide_login | The wps-hide-login plugin before 1.5.3 for WordPress has an action=rp&key&login protection bypass. |
NVD-CWE-noinfo
|
CVE-2019-15825 | 2024-11-21 13:29 | 2019-08-30 | Show | GitHub Exploit DB Packet Storm |
| 223472 | 9.8 |
CRITICAL
Network |
wpserveur | wps_hide_login | The wps-hide-login plugin before 1.5.3 for WordPress has an adminhash protection bypass. |
NVD-CWE-noinfo
|
CVE-2019-15824 | 2024-11-21 13:29 | 2019-08-30 | Show | GitHub Exploit DB Packet Storm |
| 223473 | 9.8 |
CRITICAL
Network |
wpserveur | wps_hide_login | The wps-hide-login plugin before 1.5.3 for WordPress has an action=confirmaction protection bypass. |
NVD-CWE-noinfo
|
CVE-2019-15823 | 2024-11-21 13:29 | 2019-08-30 | Show | GitHub Exploit DB Packet Storm |
| 223474 | 9.8 |
CRITICAL
Network |
wpserveur | wps_child_theme_generator | The wps-child-theme-generator plugin before 1.2 for WordPress has classes/helpers.php directory traversal. |
CWE-22
Path Traversal |
CVE-2019-15822 | 2024-11-21 13:29 | 2019-08-30 | Show | GitHub Exploit DB Packet Storm |
| 223475 | 7.5 |
HIGH
Network |
bold-themes | bold_page_builder | The bold-page-builder plugin before 2.3.2 for WordPress has no protection against modifying settings and importing data. |
NVD-CWE-noinfo
|
CVE-2019-15821 | 2024-11-21 13:29 | 2019-08-30 | Show | GitHub Exploit DB Packet Storm |
| 223476 | 6.1 |
MEDIUM
Network |
login_or_logout_menu_item_project | login_or_logout_menu_item | The login-or-logout-menu-item plugin before 1.2.0 for WordPress has no requirement for lolmi_save_settings authentication. |
CWE-601
Open Redirect |
CVE-2019-15820 | 2024-11-21 13:29 | 2019-08-30 | Show | GitHub Exploit DB Packet Storm |
| 223477 | 9.8 |
CRITICAL
Network |
restaurant_reservations_project | restaurant_reservations | The nd-restaurant-reservations plugin before 1.5 for WordPress has no requirement for nd_rst_import_settings_php_function authentication. |
CWE-306
Missing Authentication for Critical Function |
CVE-2019-15819 | 2024-11-21 13:29 | 2019-08-30 | Show | GitHub Exploit DB Packet Storm |
| 223478 | 6.1 |
MEDIUM
Network |
webcraftic | simple_301_redirects | The simple-301-redirects-addon-bulk-uploader plugin through 1.2.4 for WordPress has no requirement for authentication for action=bulk301export or action=bulk301clearlist. |
CWE-601
Open Redirect |
CVE-2019-15818 | 2024-11-21 13:29 | 2019-08-30 | Show | GitHub Exploit DB Packet Storm |
| 223479 | 6.1 |
MEDIUM
Network |
realestateconnected | easy_property_listings | The easy-property-listings plugin before 3.4 for WordPress has XSS. |
CWE-79
Cross-site Scripting |
CVE-2019-15817 | 2024-11-21 13:29 | 2019-08-30 | Show | GitHub Exploit DB Packet Storm |
| 223480 | 7.5 |
HIGH
Network |
wpexpertdeveloper | wp_private_content_plus | The wp-private-content-plus plugin before 2.0 for WordPress has no protection against option changes via save_settings_page and other save_ functions. |
CWE-79 CWE-601 Cross-site Scripting Open Redirect |
CVE-2019-15816 | 2024-11-21 13:29 | 2019-08-30 | Show | GitHub Exploit DB Packet Storm |