Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 5, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227391 9 危険 ヒューレット・パッカード - HP NonStop Servers における重要な情報を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2012-3280 2013-02-18 11:36 2013-02-11 Show GitHub Exploit DB Packet Storm
227392 5 警告 Zend Technologies Ltd. - Zend Framework におけるサービス運用妨害 (CPU 資源の消費) の脆弱性 CWE-399
リソース管理の問題 		CVE-2012-6532 2013-02-18 11:35 2013-02-13 Show GitHub Exploit DB Packet Storm
227393 6.4 警告 Zend Technologies Ltd. - Zend Framework における任意のファイルを読まれる脆弱性 CWE-20
不適切な入力確認 		CVE-2012-6531 2013-02-18 11:34 2013-02-13 Show GitHub Exploit DB Packet Storm
227394 6.5 警告 OpenStack
Canonical		 - OpenStack Compute Folsom および Essex における他のユーザのボリュームからブートされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-0208 2013-02-18 11:32 2013-01-29 Show GitHub Exploit DB Packet Storm
227395 6.4 警告 シスコシステムズ - Cisco Small Business ワイヤレスアクセスポイントにおけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2013-1131 2013-02-15 19:48 2013-02-13 Show GitHub Exploit DB Packet Storm
227396 5 警告 シスコシステムズ - Cisco Nexus 7000 上で稼働する Cisco NX-OS におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-1122 2013-02-15 19:47 2013-02-6 Show GitHub Exploit DB Packet Storm
227397 4.3 警告 シスコシステムズ - Cisco Unity Express におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-1114 2013-02-15 19:46 2013-02-1 Show GitHub Exploit DB Packet Storm
227398 9 危険 シスコシステムズ - Cisco ATA 187 Analog Telephone Adaptor におけるオペレーティングシステムのコマンドを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-1111 2013-02-15 19:46 2013-02-6 Show GitHub Exploit DB Packet Storm
227399 5.4 警告 シスコシステムズ - Cisco Catalyst スイッチ上で稼働する Cisco IOS におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2013-1100 2013-02-15 19:45 2013-01-30 Show GitHub Exploit DB Packet Storm
227400 4.3 警告 Featurific For WordPress Project - WordPress 用 Featurific For WordPress プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-5265 2013-02-15 19:11 2013-02-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
195311 8.8 HIGH
Network 		ays-pro portfolio_responsive_gallery The get_portfolios() and get_portfolio_attributes() functions in the class-portfolio-responsive-gallery-list-table.php and class-portfolio-responsive-gallery-attributes-list-table.php files of the Po… - CVE-2021-24457 2024-11-21 14:53 2021-08-2 Show GitHub Exploit DB Packet Storm
195312 7.2 HIGH
Network 		ays-pro quiz_maker The Quiz Maker WordPress plugin before 6.2.0.9 did not properly sanitise and escape the order and orderby parameters before using them in SQL statements, leading to SQL injection issues in the admin … CWE-89
SQL Injection 		CVE-2021-24456 2024-11-21 14:53 2021-08-2 Show GitHub Exploit DB Packet Storm
195313 5.4 MEDIUM
Network 		themeum tutor_lms The Tutor LMS – eLearning and online course solution WordPress plugin before 1.9.2 did not escape the Summary field of Announcements (when outputting it in an attribute), which can be created by user… - CVE-2021-24455 2024-11-21 14:53 2021-08-2 Show GitHub Exploit DB Packet Storm
195314 4.8 MEDIUM
Network 		properfraction profilepress The User Registration, User Profiles, Login & Membership – ProfilePress (Formerly WP User Avatar) WordPress plugin before 3.1.8 did not sanitise or escape some of its settings before saving them and … - CVE-2021-24450 2024-11-21 14:53 2021-08-2 Show GitHub Exploit DB Packet Storm
195315 4.8 MEDIUM
Network 		cozmoslabs profile_builder The User Registration & User Profile – Profile Builder WordPress plugin before 3.4.8 does not sanitise or escape its 'Modify default Redirect Delay timer' setting, allowing high privilege users to us… - CVE-2021-24448 2024-11-21 14:53 2021-08-2 Show GitHub Exploit DB Packet Storm
195316 4.8 MEDIUM
Network 		taxopress taxopress The TaxoPress – Create and Manage Taxonomies, Tags, Categories WordPress plugin before 3.0.7.2 does not sanitise its Taxonomy description field, allowing high privilege users to set JavaScript payloa… - CVE-2021-24444 2024-11-21 14:53 2021-08-2 Show GitHub Exploit DB Packet Storm
195317 7.2 HIGH
Network 		optimocha speed_booster_pack The Speed Booster Pack ? PageSpeed Optimization Suite WordPress plugin before 4.2.0 did not validate its caching_exclude_urls and caching_include_query_strings settings before outputting them in a PH… CWE-94
Code Injection 		CVE-2021-24430 2024-11-21 14:53 2021-08-2 Show GitHub Exploit DB Packet Storm
195318 4.8 MEDIUM
Network 		yandex yandex_turbo The RSS for Yandex Turbo WordPress plugin through 1.30 does not sanitise or escape some of its settings before saving and outputing them in the admin dashboard, leading to an Authenticated Stored Cro… CWE-79
Cross-site Scripting 		CVE-2021-24428 2024-11-21 14:53 2021-08-2 Show GitHub Exploit DB Packet Storm
195319 5.4 MEDIUM
Network 		kainelabs youzify The About Me widget of the Youzify – BuddyPress Community, User Profile, Social Network & Membership WordPress plugin before 1.0.7 does not properly sanitise its Biography field, allowing any authent… - CVE-2021-24443 2024-11-21 14:53 2021-08-2 Show GitHub Exploit DB Packet Storm
195320 4.8 MEDIUM
Network 		premio mystickymenu The Floating Notification Bar, Sticky Menu on Scroll, and Sticky Header for Any Theme – myStickymenu WordPress plugin before 2.5.2 does not sanitise or escape its Bar Text settings, allowing hight pr… - CVE-2021-24425 2024-11-21 14:53 2021-08-2 Show GitHub Exploit DB Packet Storm