Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 8, 2026, 2:12 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230691 9.3 危険 VideoLAN - VideoLAN VLC Media Player の TY demux プラグインにおける整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2008-4686 2012-12-20 18:52 2008-10-18 Show GitHub Exploit DB Packet Storm
230692 4.3 警告 Wireshark - Wireshark の packet-frame におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-4684 2012-12-20 18:52 2008-05-16 Show GitHub Exploit DB Packet Storm
230693 5 警告 Wireshark - Wireshark の wtap.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2008-4682 2012-12-20 18:52 2008-10-1 Show GitHub Exploit DB Packet Storm
230694 4.3 警告 Wireshark - Wireshark の Bluetooth RFCOMM 解析子におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
CWE-399
CVE-2008-4681 2012-12-20 18:52 2008-10-20 Show GitHub Exploit DB Packet Storm
230695 4.3 警告 Wireshark - Wireshark の USB 解析子におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-4680 2012-12-20 18:52 2008-10-1 Show GitHub Exploit DB Packet Storm
230696 4.3 警告 Vim - Vim 用の autoload/netrw.vim における重要な情報を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2008-4677 2012-12-20 18:52 2008-10-22 Show GitHub Exploit DB Packet Storm
230697 7.5 危険 phpcounter - PHPcounter の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4675 2012-12-20 18:52 2008-10-22 Show GitHub Exploit DB Packet Storm
230698 10 危険 webbiscuits - WebBiscuits Software Events Calendar の panel/common/theme/default/header_setup.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-4673 2012-12-20 18:52 2008-10-22 Show GitHub Exploit DB Packet Storm
230699 4.3 警告 WordPress.org - WPMU の wp-admin/wp-blogs.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4671 2012-12-20 18:52 2008-10-22 Show GitHub Exploit DB Packet Storm
230700 9.3 危険 qvod - QVOD Player の QvodInsert.QvodCtrl.1 ActiveX コンポーネントにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-4664 2012-12-20 18:52 2008-10-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 8, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
196291 8.1 HIGH
Network 		patreon patreon_wordpress The Jetpack Scan team identified a Cross-Site Request Forgery vulnerability in the Patreon WordPress plugin before 1.7.0, allowing attackers to make a logged in user overwrite or create arbitrary use… CWE-352
 Origin Validation Error 		CVE-2021-24230 2024-11-21 14:52 2021-04-12 Show GitHub Exploit DB Packet Storm
196292 9.6 CRITICAL
Network 		patreon patreon_wordpress The Jetpack Scan team identified a Reflected Cross-Site Scripting via the patreon_save_attachment_patreon_level AJAX action of the Patreon WordPress plugin before 1.7.2. This AJAX hook is used to upd… - CVE-2021-24229 2024-11-21 14:52 2021-04-12 Show GitHub Exploit DB Packet Storm
196293 9.6 CRITICAL
Network 		patreon patreon_wordpress The Jetpack Scan team identified a Reflected Cross-Site Scripting in the Login Form of the Patreon WordPress plugin before 1.7.2. The WordPress login form (wp-login.php) is hooked by the plugin and o… - CVE-2021-24228 2024-11-21 14:52 2021-04-12 Show GitHub Exploit DB Packet Storm
196294 7.5 HIGH
Network 		patreon patreon_wordpress The Jetpack Scan team identified a Local File Disclosure vulnerability in the Patreon WordPress plugin before 1.7.0 that could be abused by anyone visiting the site. Using this attack vector, an atta… CWE-200
Information Exposure 		CVE-2021-24227 2024-11-21 14:52 2021-04-12 Show GitHub Exploit DB Packet Storm
196295 7.5 HIGH
Network 		accessally accessally In the AccessAlly WordPress plugin before 3.5.7, the file "resource/frontend/product/product-shortcode.php" responsible for the [accessally_order_form] shortcode is dumping serialize($_SERVER), which… - CVE-2021-24226 2024-11-21 14:52 2021-04-12 Show GitHub Exploit DB Packet Storm
196296 5.4 MEDIUM
Network 		elbtide advanced_booking_calendar The Advanced Booking Calendar WordPress plugin before 1.6.7 did not sanitise the calId GET parameter in the "Seasons & Calendars" page before outputing it in an A tag, leading to a reflected XSS issue - CVE-2021-24225 2024-11-21 14:52 2021-04-12 Show GitHub Exploit DB Packet Storm
196297 8.8 HIGH
Network 		easy-form-builder-by-bitware_project easy-form-builder-by-bitware The EFBP_verify_upload_file AJAX action of the Easy Form Builder WordPress plugin through 1.0, available to authenticated users, does not have any security in place to verify uploaded files, allowing… - CVE-2021-24224 2024-11-21 14:52 2021-04-12 Show GitHub Exploit DB Packet Storm
196298 9.8 CRITICAL
Network 		n5_upload_form_project n5_upload_form The N5 Upload Form WordPress plugin through 1.0 suffers from an arbitrary file upload issue in page where a Form from the plugin is embed, as any file can be uploaded. The uploaded filename might be … - CVE-2021-24223 2024-11-21 14:52 2021-04-12 Show GitHub Exploit DB Packet Storm
196299 9.8 CRITICAL
Network 		williamluis wp-curriculo_vitae_free The WP-Curriculo Vitae Free WordPress plugin through 6.3 suffers from an arbitrary file upload issue in page where the [formCadastro] is embed. The form allows unauthenticated user to register and su… - CVE-2021-24222 2024-11-21 14:52 2021-04-12 Show GitHub Exploit DB Packet Storm
196300 8.8 HIGH
Network 		facebook facebook The wp_ajax_save_fbe_settings and wp_ajax_delete_fbe_settings AJAX actions of the Facebook for WordPress plugin before 3.0.4 were vulnerable to CSRF due to a lack of nonce protection. The settings in… - CVE-2021-24218 2024-11-21 14:52 2021-04-12 Show GitHub Exploit DB Packet Storm