Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 13, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
247981	4.3	警告	CA Technologies	-	CA eTrust SiteMinder Agent の forms/smpwservices.fcc におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-5923	2012-06-26 15:54	2007-11-9	Show	GitHub Exploit DB Packet Storm

247982	5	警告	cypress bitchx	-	BitchX 用の Cypress スクリプトの modules/mdop.m におけるバックドアを含む脆弱性	CWE-200 情報漏えい	CVE-2007-5922	2012-06-26 15:54	2007-11-9	Show	GitHub Exploit DB Packet Storm

247983	6.8	警告	アドビシステムズ	-	Adobe ColdFusion におけるセッションハイジャックの脆弱性	CWE-255 証明書・パスワード管理	CVE-2007-5905	2012-06-26 15:54	2007-11-13	Show	GitHub Exploit DB Packet Storm

247984	5	警告	alhem	-	C++ Sockets Library の HTTPSocket.cpp におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2007-5893	2012-06-26 15:54	2007-11-7	Show	GitHub Exploit DB Packet Storm

247985	10	危険	easygb	-	easyGB の index.php におけるディレクトリトラバーサルの脆弱性	CWE-Other その他	CVE-2007-5890	2012-06-26 15:54	2007-11-7	Show	GitHub Exploit DB Packet Storm

247986	4.3	警告	Coppermine Photo Gallery	-	CPG の displayecard.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-5888	2012-06-26 15:54	2007-11-7	Show	GitHub Exploit DB Packet Storm

247987	4.6	警告	bitchx	-	BitchX の e_hostname 関数における任意のファイルを上書きされる脆弱性	CWE-59 リンク解釈の問題	CVE-2007-5839	2012-06-26 15:54	2007-11-6	Show	GitHub Exploit DB Packet Storm

247988	7.5	危険	afcommerce	-	Amazing Flash AFCommerce における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-5836	2012-06-26 15:54	2007-11-5	Show	GitHub Exploit DB Packet Storm

247989	5	警告	bosdev	-	BosDev BosNews の Install.php におけるサービス運用妨害 (ファイルの上書き) の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2007-5835	2012-06-26 15:54	2007-11-5	Show	GitHub Exploit DB Packet Storm

247990	4.3	警告	bosdev	-	BosDev BosNews におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-5834	2012-06-26 15:54	2007-11-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
197841	6.5	MEDIUM Network	querysol	redirection_for_contact_form_7	In the Redirection for Contact Form 7 WordPress plugin before 2.3.4, low level users, such as subscribers, could use the import_from_debug AJAX action to install any plugin from the WordPress reposit…	-	CVE-2021-24279	2024-11-21 14:52	2021-05-14	Show	GitHub Exploit DB Packet Storm

197842	7.5	HIGH Network	querysol	redirection_for_contact_form_7	In the Redirection for Contact Form 7 WordPress plugin before 2.3.4, unauthenticated users can use the wpcf7r_get_nonce AJAX action to retrieve a valid nonce for any WordPress action/function.	-	CVE-2021-24278	2024-11-21 14:52	2021-05-14	Show	GitHub Exploit DB Packet Storm

197843	5.4	MEDIUM Network	wpuslugi	rss_for_yandex_turbo	The RSS for Yandex Turbo WordPress plugin before 1.30 did not properly sanitise the user inputs from its ???????? settings tab before outputting them back in the page, leading to authenticated stored…	-	CVE-2021-24277	2024-11-21 14:52	2021-05-14	Show	GitHub Exploit DB Packet Storm

197844	8.8	HIGH Network	wp-buy	login_as_user_or_customer_\(user_switching\)	Low privileged users can use the AJAX action 'cp_plugins_do_button_job_later_callback' in the Login as User or Customer (User Switching) WordPress plugin before 1.8, to install any plugin (including …	NVD-CWE-Other	CVE-2021-24195	2024-11-21 14:52	2021-05-14	Show	GitHub Exploit DB Packet Storm

197845	8.8	HIGH Network	wp-buy	login_protection_-_limit_failed_login_attempts	Low privileged users can use the AJAX action 'cp_plugins_do_button_job_later_callback' in the Login Protection - Limit Failed Login Attempts WordPress plugin before 2.9, to install any plugin (includ…	NVD-CWE-Other	CVE-2021-24194	2024-11-21 14:52	2021-05-14	Show	GitHub Exploit DB Packet Storm

197846	8.8	HIGH Network	wp-buy	visitor_traffic_real_time_statistics	Low privileged users can use the AJAX action 'cp_plugins_do_button_job_later_callback' in the Visitor Traffic Real Time Statistics WordPress plugin before 2.12, to install any plugin (including a spe…	NVD-CWE-Other	CVE-2021-24193	2024-11-21 14:52	2021-05-14	Show	GitHub Exploit DB Packet Storm

197847	8.8	HIGH Network	sitemap_project	sitemap	Low privileged users can use the AJAX action 'cp_plugins_do_button_job_later_callback' in the Tree Sitemap WordPress plugin before 2.9, to install any plugin (including a specific version) from the W…	NVD-CWE-Other	CVE-2021-24192	2024-11-21 14:52	2021-05-14	Show	GitHub Exploit DB Packet Storm

197848	8.8	HIGH Network	wpshopmart	coming_soon_page_\&_maintenance_mode	Low privileged users can use the AJAX action 'cp_plugins_do_button_job_later_callback' in the WP Maintenance Mode & Site Under Construction WordPress plugin before 1.8.2, to install any plugin (inclu…	NVD-CWE-Other	CVE-2021-24191	2024-11-21 14:52	2021-05-14	Show	GitHub Exploit DB Packet Storm

197849	8.8	HIGH Network	wp-buy	conditional_marketing_mailer	Low privileged users can use the AJAX action 'cp_plugins_do_button_job_later_callback' in the WooCommerce Conditional Marketing Mailer WordPress plugin before 1.5.2, to install any plugin (including …	NVD-CWE-Other	CVE-2021-24190	2024-11-21 14:52	2021-05-14	Show	GitHub Exploit DB Packet Storm

197850	8.8	HIGH Network	wp-buy	captchinoo	Low privileged users can use the AJAX action 'cp_plugins_do_button_job_later_callback' in the Captchinoo, Google recaptcha for admin login page WordPress plugin before 2.4, to install any plugin (inc…	NVD-CWE-noinfo	CVE-2021-24189	2024-11-21 14:52	2021-05-14	Show	GitHub Exploit DB Packet Storm