Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 3, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228011 5 警告 tuxfamily - Chrony の chronyd におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-0292 2012-12-20 19:28 2010-02-8 Show GitHub Exploit DB Packet Storm
228012 5.1 警告 TYPO3 Association - TYPO3 用の OpenID Identity Authentication エクステンションにおける認証を回避される脆弱性 CWE-noinfo
情報不足 		CVE-2010-0286 2012-12-20 19:28 2010-02-22 Show GitHub Exploit DB Packet Storm
228013 4.6 警告 サン・マイクロシステムズ - Sun OpenSolaris の hald における HAL 仕様をサポートする接続デバイスへの変更の検出を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0271 2012-12-20 19:28 2010-01-4 Show GitHub Exploit DB Packet Storm
228014 7.5 危険 SUSE - SUSE Linux Enterprise および openSUSE におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0230 2012-12-20 19:28 2010-01-22 Show GitHub Exploit DB Packet Storm
228015 4.6 警告 verbatim - Verbatim Corporate Secure および Corporate Secure FIPS Edition USB フラッシュドライブにおける平文のデータコンテンツにアクセスされる脆弱性 CWE-255
証明書・パスワード管理 		CVE-2010-0229 2012-12-20 19:28 2010-01-7 Show GitHub Exploit DB Packet Storm
228016 4.6 警告 verbatim - Verbatim Corporate Secure および Corporate Secure FIPS Edition USB フラッシュドライブにおけるデータを変更される脆弱性 CWE-310
暗号の問題 		CVE-2010-0228 2012-12-20 19:28 2010-01-7 Show GitHub Exploit DB Packet Storm
228017 4.6 警告 verbatim - Verbatim Corporate Secure および Corporate Secure FIPS Edition USB フラッシュドライブにおける平文のドライブコンテンツにアクセスされる脆弱性 CWE-255
証明書・パスワード管理 		CVE-2010-0227 2012-12-20 19:28 2010-01-7 Show GitHub Exploit DB Packet Storm
228018 4.6 警告 SanDisk - SanDisk Cruzer Enterprise USB フラッシュドライブにおける平文のドライブコンテンツへアクセスされる脆弱性 CWE-255
証明書・パスワード管理 		CVE-2010-0226 2012-12-20 19:28 2010-01-7 Show GitHub Exploit DB Packet Storm
228019 4.6 警告 scandisk - SanDisk Cruzer Enterprise USB フラッシュドライブにおけるデータを読み込まれる脆弱性 CWE-310
暗号の問題 		CVE-2010-0225 2012-12-20 19:28 2010-01-7 Show GitHub Exploit DB Packet Storm
228020 4.6 警告 SanDisk - SanDisk Cruzer Enterprise USB フラッシュドライブにおける平文のドライブコンテンツをアクセスされる脆弱性 CWE-255
証明書・パスワード管理 		CVE-2010-0224 2012-12-20 19:28 2010-01-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
194891 6.1 MEDIUM
Network 		marmoset marmoset_viewer The Marmoset Viewer WordPress plugin before 1.9.3 does not property sanitize, validate or escape the 'id' parameter before outputting back in the page, leading to a reflected Cross-Site Scripting iss… - CVE-2021-24495 2024-11-21 14:53 2021-08-9 Show GitHub Exploit DB Packet Storm
194892 6.5 MEDIUM
Network 		leaflet_map_project leaflet_map The Leaflet Map WordPress plugin before 3.0.0 does not verify the CSRF nonce when saving its settings, which allows attackers to make a logged in admin update the settings via a Cross-Site Request Fo… - CVE-2021-24467 2024-11-21 14:53 2021-08-9 Show GitHub Exploit DB Packet Storm
194893 6.1 MEDIUM
Network 		wplearnmanager wp_learn_manager The WP LMS – Best WordPress LMS Plugin WordPress plugin through 1.1.2 does not properly sanitise or validate its User Field Titles, allowing XSS payload to be used in them. Furthermore, no CSRF and c… - CVE-2021-24504 2024-11-21 14:53 2021-08-2 Show GitHub Exploit DB Packet Storm
194894 5.4 MEDIUM
Network 		thememason popular_brand_icons_-_simple_icons The Popular Brand Icons – Simple Icons WordPress plugin before 2.7.8 does not sanitise or validate some of its shortcode parameters, such as "color", "size" or "class", allowing users with a role as … - CVE-2021-24503 2024-11-21 14:53 2021-08-2 Show GitHub Exploit DB Packet Storm
194895 6.1 MEDIUM
Network 		dwbooster calendar_event_multi_view The Calendar Event Multi View WordPress plugin before 1.4.01 does not sanitise or escape the 'start' and 'end' GET parameters before outputting them in the page (via php/edit.php), leading to a refle… - CVE-2021-24498 2024-11-21 14:53 2021-08-2 Show GitHub Exploit DB Packet Storm
194896 6.1 MEDIUM
Network 		community_events_project community_events The Community Events WordPress plugin before 1.4.8 does not sanitise, validate or escape its importrowscount and successimportcount GET parameters before outputting them back in an admin page, leadin… - CVE-2021-24496 2024-11-21 14:53 2021-08-2 Show GitHub Exploit DB Packet Storm
194897 8.8 HIGH
Network 		handsome_testimonials_\&_reviews_project handsome_testimonials_\&_reviews The hndtst_action_instance_callback AJAX call of the Handsome Testimonials & Reviews WordPress plugin before 2.1.1, available to any authenticated users, does not sanitise, validate or escape the hnd… CWE-89
SQL Injection 		CVE-2021-24492 2024-11-21 14:53 2021-08-2 Show GitHub Exploit DB Packet Storm
194898 6.1 MEDIUM
Network 		pickplugins post_grid The slider import search feature and tab parameter of the Post Grid WordPress plugin before 2.1.8 settings are not properly sanitised before being output back in the pages, leading to Reflected Cross… - CVE-2021-24488 2024-11-21 14:53 2021-08-2 Show GitHub Exploit DB Packet Storm
194899 7.2 HIGH
Network 		ays-pro secure_copy_content_protection_and_content_locking The get_reports() function in the Secure Copy Content Protection and Content Locking WordPress plugin before 2.6.7 did not use whitelist or validate the orderby parameter before using it in SQL state… - CVE-2021-24484 2024-11-21 14:53 2021-08-2 Show GitHub Exploit DB Packet Storm
194900 7.2 HIGH
Network 		ays-pro poll_maker The get_poll_categories(), get_polls() and get_reports() functions in the Poll Maker WordPress plugin before 3.2.1 did not use whitelist or validate the orderby parameter before using it in SQL state… - CVE-2021-24483 2024-11-21 14:53 2021-08-2 Show GitHub Exploit DB Packet Storm