Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 2, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229091	2.1	注意	RivetCode Software	-	RivetTracker におけるパスワードを特定される脆弱性	CWE-310 暗号の問題	CVE-2008-7207	2012-12-20 19:10	2009-09-11	Show	GitHub Exploit DB Packet Storm

229092	4.3	警告	stefan ritt	-	ELOG における脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-7206	2012-12-20 19:10	2009-09-11	Show	GitHub Exploit DB Packet Storm

229093	4.3	警告	VirtueMart	-	VirtueMart の製品ビュー機能における任意のファイルを読み取られる脆弱性	CWE-20 不適切な入力確認	CVE-2008-7205	2012-12-20 19:10	2009-09-11	Show	GitHub Exploit DB Packet Storm

229094	6.8	警告	VirtueMart	-	VirtueMart におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2008-7204	2012-12-20 19:10	2009-09-11	Show	GitHub Exploit DB Packet Storm

229095	5	警告	valve software	-	Valve Software Half-Life Counter-Strike におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2008-7203	2012-12-20 19:10	2009-09-11	Show	GitHub Exploit DB Packet Storm

229096	6.8	警告	PHPKIT	-	PHPKIT におけるクロスサイトリクエストフォージェリ攻撃を実行される脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2008-7193	2012-12-20 19:10	2009-09-9	Show	GitHub Exploit DB Packet Storm

229097	6.8	警告	woltlab	-	wBB の index.php におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2008-7192	2012-12-20 19:10	2009-09-9	Show	GitHub Exploit DB Packet Storm

229098	5	警告	pps.jussieu	-	Polipo におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2008-7191	2012-12-20 19:10	2009-09-9	Show	GitHub Exploit DB Packet Storm

229099	5	警告	rittwick banerjee	-	Telephone Directory 2008 の del_query1.php における任意の連絡先を削除される脆弱性	CWE-20 不適切な入力確認	CVE-2008-7180	2012-12-20 19:10	2009-09-8	Show	GitHub Exploit DB Packet Storm

229100	7.5	危険	XOOPS	-	XOOPS 用の Uploader モジュールにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-7178	2012-12-20 19:10	2009-09-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
311111	-		-	-	The SysBasics Customize My Account for WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘tab’ parameter in all versions up to, and including, 2.7.29 due to ins…	CWE-79 Cross-site Scripting	CVE-2024-10837	2024-11-12 22:56	2024-11-9	Show	GitHub Exploit DB Packet Storm

311112	7.3	HIGH Network	-	-	The The FOX – Currency Switcher Professional for WooCommerce plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 1.4.2.2. This is due to the soft…	CWE-94 Code Injection	CVE-2024-10640	2024-11-12 22:56	2024-11-9	Show	GitHub Exploit DB Packet Storm

311113	4.3	MEDIUM Network	-	-	The Magical Addons For Elementor plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.2.4 via the get_content_type function in includes/widgets…	CWE-200 Information Exposure	CVE-2024-10352	2024-11-12 22:56	2024-11-9	Show	GitHub Exploit DB Packet Storm

311114	7.3	HIGH Network	-	-	The The Paid Membership Subscriptions – Effortless Memberships, Recurring Payments & Content Restriction plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and…	CWE-94 Code Injection	CVE-2024-10261	2024-11-12 22:56	2024-11-9	Show	GitHub Exploit DB Packet Storm

311115	-		-	-	In the Linux kernel, the following vulnerability has been resolved: fork: do not invoke uffd on fork if error occurs Patch series "fork: do not expose incomplete mm on fork". During fork we may pl…	-	CVE-2024-50220	2024-11-12 22:56	2024-11-9	Show	GitHub Exploit DB Packet Storm

311116	-		-	-	In the Linux kernel, the following vulnerability has been resolved: ocfs2: pass u64 to ocfs2_truncate_inline maybe overflow Syzbot reported a kernel BUG in ocfs2_truncate_inline. There are two rea…	-	CVE-2024-50218	2024-11-12 22:56	2024-11-9	Show	GitHub Exploit DB Packet Storm

311117	-		-	-	In the Linux kernel, the following vulnerability has been resolved: xfs: fix finding a last resort AG in xfs_filestream_pick_ag When the main loop in xfs_filestream_pick_ag fails to find a suitable…	-	CVE-2024-50216	2024-11-12 22:56	2024-11-9	Show	GitHub Exploit DB Packet Storm

311118	-		-	-	In the Linux kernel, the following vulnerability has been resolved: lib: alloc_tag_module_unload must wait for pending kfree_rcu calls Ben Greear reports following splat: ------------[ cut here ]-…	-	CVE-2024-50212	2024-11-12 22:56	2024-11-9	Show	GitHub Exploit DB Packet Storm

311119	9.8	CRITICAL Network	-	-	The Category Ajax Filter plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 2.8.2 via the 'params[caf-post-layout]' parameter. This makes it possible for…	-	CVE-2024-10871	2024-11-12 22:56	2024-11-9	Show	GitHub Exploit DB Packet Storm

311120	-		-	-	The WordPress User Extra Fields plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the ajax_manage_file_chunk_upload() function in all versions up to,…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2024-10801	2024-11-12 22:56	2024-11-9	Show	GitHub Exploit DB Packet Storm