Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227311 2.6 注意 サイボウズ - サイボウズ ガルーンにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-0702 2013-02-8 12:01 2013-02-8 Show GitHub Exploit DB Packet Storm
227312 6.5 警告 サイボウズ - サイボウズ ガルーンにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-0701 2013-02-8 12:01 2013-02-8 Show GitHub Exploit DB Packet Storm
227313 4.3 警告 Tobias Bathge - WordPress 用 WP-Table Reloaded モジュール におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-1463 2013-02-8 11:19 2013-01-27 Show GitHub Exploit DB Packet Storm
227314 6.8 警告 アップル - 複数の Apple 製品で使用される WebKit における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2012-3684 2013-02-7 17:53 2012-09-13 Show GitHub Exploit DB Packet Storm
227315 10 危険 シスコシステムズ - Cisco Unified IP Phone 7900 シリーズにおける任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2012-5445 2013-02-7 17:40 2012-12-28 Show GitHub Exploit DB Packet Storm
227316 10 危険 Mozilla Foundation - 複数の Mozilla 製品のブラウザエンジンにおけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2013-0770 2013-02-7 17:40 2013-01-8 Show GitHub Exploit DB Packet Storm
227317 6.8 警告 アップル - Apple iOS の ImageIO におけるメモリ二重解放の脆弱性 CWE-399
リソース管理の問題 		CVE-2012-3726 2013-02-7 17:27 2012-09-20 Show GitHub Exploit DB Packet Storm
227318 3.3 注意 アップル - Apple iOS の DHCP コンポーネントにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2012-3725 2013-02-7 17:20 2012-09-20 Show GitHub Exploit DB Packet Storm
227319 6.8 警告 アップル - 複数の Apple 製品で使用される CoreMedia におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性 CWE-399
リソース管理の問題 		CVE-2012-3722 2013-02-7 17:11 2012-09-20 Show GitHub Exploit DB Packet Storm
227320 9.3 危険 アップル - 複数の Apple 製品で使用される WebKit における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2012-3679 2013-02-7 16:51 2012-07-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
195321 4.8 MEDIUM
Network 		never5 related_posts The Related Posts for WordPress plugin through 2.0.4 does not sanitise its heading_text and CSS settings, allowing high privilege users (admin) to set XSS payloads in them, leading to Stored Cross-Si… - CVE-2021-24482 2024-11-21 14:53 2021-07-19 Show GitHub Exploit DB Packet Storm
195322 8.8 HIGH
Network 		include_me_project include_me The Include Me WordPress plugin through 1.2.1 is vulnerable to path traversal / local file inclusion, which can lead to Remote Code Execution (RCE) of the system due to log poisoning and therefore po… - CVE-2021-24453 2024-11-21 14:53 2021-07-19 Show GitHub Exploit DB Packet Storm
195323 5.3 MEDIUM
Network 		silkypress wp_image_zoom The WP Image Zoom WordPress plugin before 1.47 did not validate its tab parameter before using it in the include_once() function, leading to a local file inclusion issue in the admin dashboard - CVE-2021-24447 2024-11-21 14:53 2021-07-19 Show GitHub Exploit DB Packet Storm
195324 6.1 MEDIUM
Network 		boldgrid w3_total_cache The W3 Total Cache WordPress plugin before 2.1.4 was vulnerable to a reflected Cross-Site Scripting (XSS) security vulnerability within the "extension" parameter in the Extensions dashboard, which is… - CVE-2021-24436 2024-11-21 14:53 2021-07-19 Show GitHub Exploit DB Packet Storm
195325 6.1 MEDIUM
Network 		boldgrid w3_total_cache The W3 Total Cache WordPress plugin before 2.1.5 was affected by a reflected Cross-Site Scripting (XSS) issue within the "extension" parameter in the Extensions dashboard, when the 'Anonymously track… - CVE-2021-24452 2024-11-21 14:53 2021-07-19 Show GitHub Exploit DB Packet Storm
195326 6.1 MEDIUM
Network 		yop-poll yop_poll In the YOP Poll WordPress plugin before 6.2.8, when a pool is created with the options "Allow other answers", "Display other answers in the result list" and "Show results", it can lead to Stored Cros… - CVE-2021-24454 2024-11-21 14:53 2021-07-13 Show GitHub Exploit DB Packet Storm
195327 9.8 CRITICAL
Network 		wpdevart poll\
_survey\
_questionnaire_and_voting_system 		The Poll, Survey, Questionnaire and Voting system WordPress plugin before 1.5.3 did not sanitise, escape or validate the date_answers[] POST parameter before using it in a SQL statement when sending … - CVE-2021-24442 2024-11-21 14:53 2021-07-13 Show GitHub Exploit DB Packet Storm
195328 8.0 HIGH
Network 		fetchdesigns sign-up_sheets The Sign-up Sheets WordPress plugin before 1.0.14 does not not sanitise or validate the Sheet title when generating the CSV to export, which could lead to a CSV injection issue - CVE-2021-24441 2024-11-21 14:53 2021-07-13 Show GitHub Exploit DB Packet Storm
195329 4.8 MEDIUM
Network 		fetchdesigns sign-up_sheets The Sign-up Sheets WordPress plugin before 1.0.14 did not sanitise or escape some of its fields when creating a new sheet, allowing high privilege users to add JavaScript in them, leading to a Stored… - CVE-2021-24440 2024-11-21 14:53 2021-07-13 Show GitHub Exploit DB Packet Storm
195330 5.4 MEDIUM
Network 		prothemedesign browser_screenshots The Browser Screenshots WordPress plugin before 1.7.6 allowed authenticated users with a role as low as Contributor to perform Stored Cross-Site Scripting attacks as the image_class parameter of the … - CVE-2021-24439 2024-11-21 14:53 2021-07-13 Show GitHub Exploit DB Packet Storm