Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229621 7.1 危険 vwsolutions - NULL FTP Server における任意のコマンドを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-6534 2012-12-20 19:10 2009-03-26 Show GitHub Exploit DB Packet Storm
229622 5 警告 Tmaxsoft - NTFS TmaxSoft JEUS におけるスクリプトへのソースコードを読み取られる脆弱性 CWE-20
不適切な入力確認 		CVE-2008-6528 2012-12-20 19:10 2009-03-26 Show GitHub Exploit DB Packet Storm
229623 6.5 警告 vidiscript - VidiScript のプロフィール機能における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2008-6518 2012-12-20 19:10 2009-03-25 Show GitHub Exploit DB Packet Storm
229624 7.5 危険 phpkf - phpKF-Portal におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-6516 2012-12-20 19:10 2009-03-25 Show GitHub Exploit DB Packet Storm
229625 4.3 警告 vclcomponents - Fritz Berger yappa-ng におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6515 2012-12-20 19:10 2009-03-24 Show GitHub Exploit DB Packet Storm
229626 4.3 警告 PrestaShop - PrestaShop におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6503 2012-12-20 19:10 2009-03-20 Show GitHub Exploit DB Packet Storm
229627 4.6 警告 Pro Chat Rooms - Pro Chat Rooms におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-6502 2012-12-20 19:10 2009-03-20 Show GitHub Exploit DB Packet Storm
229628 4.3 警告 Pro Chat Rooms - Pro Chat Rooms の profiles/index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6501 2012-12-20 19:10 2009-03-20 Show GitHub Exploit DB Packet Storm
229629 7.8 危険 tp - Neostrada Livebox ADSL ルータにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2008-6497 2012-12-20 19:10 2009-03-19 Show GitHub Exploit DB Packet Storm
229630 8.8 危険 visagesoft - VISAGESOFT eXPert PDF EditorX の VSPDFEditorX.VSPDFEdit ActiveX コントロールにおける任意のファイルを作成される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-6496 2012-12-20 19:10 2009-03-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
195471 6.2 MEDIUM
Network 		clogica wp_login_security_and_history The WP Login Security and History WordPress plugin through 1.0 did not have CSRF check when saving its settings, not any sanitisation or validation on them. This could allow attackers to make logged … CWE-352
CWE-79
 Origin Validation Error
Cross-site Scripting 		CVE-2021-24328 2024-11-21 14:52 2021-06-1 Show GitHub Exploit DB Packet Storm
195472 5.4 MEDIUM
Network 		deliciousbrains database_backup The Database Backup for WordPress plugin before 2.4 did not escape the backup_recipient POST parameter in before output it back in the attribute of an HTML tag, leading to a Stored Cross-Site Scripti… - CVE-2021-24322 2024-11-21 14:52 2021-06-1 Show GitHub Exploit DB Packet Storm
195473 9.8 CRITICAL
Network 		bold-themes bello The Bello - Directory & Listing WordPress theme before 1.6.0 did not sanitise the bt_bb_listing_field_price_range_to, bt_bb_listing_field_now_open, bt_bb_listing_field_my_lng, listing_list_view and b… - CVE-2021-24321 2024-11-21 14:52 2021-06-1 Show GitHub Exploit DB Packet Storm
195474 6.1 MEDIUM
Network 		bold-themes bello The Bello - Directory & Listing WordPress theme before 1.6.0 did not properly sanitise and escape its listing_list_view, bt_bb_listing_field_my_lat, bt_bb_listing_field_my_lng, bt_bb_listing_field_di… - CVE-2021-24320 2024-11-21 14:52 2021-06-1 Show GitHub Exploit DB Packet Storm
195475 5.4 MEDIUM
Network 		bold-themes bello The Bello - Directory & Listing WordPress theme before 1.6.0 did not properly sanitise its post_excerpt parameter before outputting it back in the shop/my-account/bello-listing-endpoint/ page, leadin… - CVE-2021-24319 2024-11-21 14:52 2021-06-1 Show GitHub Exploit DB Packet Storm
195476 6.5 MEDIUM
Network 		purethemes listeo The Listeo WordPress theme before 1.6.11 did not ensure that the Post/Page and Booking to delete belong to the user making the request, allowing any authenticated users to delete arbitrary page/post … CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2021-24318 2024-11-21 14:52 2021-06-1 Show GitHub Exploit DB Packet Storm
195477 6.1 MEDIUM
Network 		purethemes listeo The Listeo WordPress theme before 1.6.11 did not properly sanitise some parameters in its Search, Booking Confirmation and Personal Message pages, leading to Cross-Site Scripting issues - CVE-2021-24317 2024-11-21 14:52 2021-06-1 Show GitHub Exploit DB Packet Storm
195478 6.1 MEDIUM
Network 		wowthemes mediumish The search feature of the Mediumish WordPress theme through 1.0.47 does not properly sanitise it's 's' GET parameter before output it back the page, leading to the Cross-SIte Scripting issue. - CVE-2021-24316 2024-11-21 14:52 2021-06-1 Show GitHub Exploit DB Packet Storm
195479 5.4 MEDIUM
Network 		goprayer wp_prayer The WP Prayer WordPress plugin before 1.6.2 provides the functionality to store requested prayers/praises and list them on a WordPress website. These stored prayer/praise requests can be listed by us… - CVE-2021-24313 2024-11-21 14:52 2021-06-1 Show GitHub Exploit DB Packet Storm
195480 7.2 HIGH
Network 		automattic wp_super_cache The parameters $cache_path, $wp_cache_debug_ip, $wp_super_cache_front_page_text, $cache_scheduled_time, $cached_direct_pages used in the settings of WP Super Cache WordPress plugin before 1.7.3 resul… CWE-78
OS Command  		CVE-2021-24312 2024-11-21 14:52 2021-06-1 Show GitHub Exploit DB Packet Storm