Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 22, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
248661 4.4 警告 Debian - Debian GNU/Linux 上で稼働する apache2 におけるクロスサイトスクリプティング (XSS) 攻撃を誘発される脆弱性 CWE-DesignError
CVE-2012-0216 2012-04-24 16:05 2012-04-15 Show GitHub Exploit DB Packet Storm
248662 4.3 警告 TeamPass - TeamPass の sources/users.queries.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2234 2012-04-24 15:59 2012-04-22 Show GitHub Exploit DB Packet Storm
248663 4.3 警告 WordPress.org - WordPress の wp-comments-post.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2404 2012-04-24 15:51 2012-04-21 Show GitHub Exploit DB Packet Storm
248664 4.3 警告 WordPress.org - WordPress の wp-includes/formatting.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2403 2012-04-24 15:49 2012-04-21 Show GitHub Exploit DB Packet Storm
248665 5.5 警告 WordPress.org - WordPress の wp-admin/plugins.php におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-2402 2012-04-24 15:43 2012-04-21 Show GitHub Exploit DB Packet Storm
248666 5 警告 WordPress.org
Moxiecode Systems		 - WordPress および他の製品で使用される Plupload における同一生成元ポリシーを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-2401 2012-04-24 15:35 2012-04-21 Show GitHub Exploit DB Packet Storm
248667 10 危険 WordPress.org - WordPress の wp-includes/js/swfobject.js における詳細不明な脆弱性 CWE-noinfo
情報不足 		CVE-2012-2400 2012-04-24 15:27 2012-04-21 Show GitHub Exploit DB Packet Storm
248668 6.8 警告 ジャストシステム - 複数のジャストシステム製品における DLL 読み込みに関する脆弱性 CWE-Other
その他 		CVE-2012-1242 2012-04-24 12:00 2012-04-24 Show GitHub Exploit DB Packet Storm
248669 5 警告 CA Technologies - Windows 上で稼働する CA ARCserve Backup におけるサービス運用妨害 (サービスシャットダウン) の脆弱性 CWE-20
不適切な入力確認 		CVE-2012-1662 2012-04-23 15:35 2012-03-20 Show GitHub Exploit DB Packet Storm
248670 6.5 警告 Ryan Walberg - PHP Gift Registry の users.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-2236 2012-04-23 14:41 2012-04-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
314351 4.3 MEDIUM
Network 		wpdataaccess wp_data_access Cross-Site Request Forgery (CSRF) vulnerability in Passionate Programmers B.V. WP Data Access.This issue affects WP Data Access: from n/a through 5.5.7. CWE-352
 Origin Validation Error 		CVE-2024-43295 2024-09-13 06:20 2024-08-27 Show GitHub Exploit DB Packet Storm
314352 8.8 HIGH
Network 		sendinblue newsletter\
_smtp\
_email_marketing_and_subscribe 		Cross-Site Request Forgery (CSRF) vulnerability in Brevo Newsletter, SMTP, Email marketing and Subscribe forms by Sendinblue.This issue affects Newsletter, SMTP, Email marketing and Subscribe forms b… CWE-352
 Origin Validation Error 		CVE-2024-43287 2024-09-13 06:19 2024-08-27 Show GitHub Exploit DB Packet Storm
314353 4.3 MEDIUM
Network 		wpbackitup backup_and_restore_wordpress Cross-Site Request Forgery (CSRF) vulnerability in WPBackItUp Backup and Restore WordPress.This issue affects Backup and Restore WordPress: from n/a through 1.50. CWE-352
 Origin Validation Error 		CVE-2024-43269 2024-09-13 06:18 2024-08-27 Show GitHub Exploit DB Packet Storm
314354 8.8 HIGH
Network 		themewinter wpcafe Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Themewinter WPCafe allows PHP Local File Inclusion.This issue affects WPCafe: from n/a through 2.2.28. CWE-22
Path Traversal 		CVE-2024-43135 2024-09-13 06:18 2024-08-13 Show GitHub Exploit DB Packet Storm
314355 3.5 LOW
Network 		analytify analytify_-_google_analytics_dashboard Cross-Site Request Forgery (CSRF) vulnerability in Analytify.This issue affects Analytify: from n/a through 5.3.1. CWE-352
 Origin Validation Error 		CVE-2024-43265 2024-09-13 06:17 2024-08-27 Show GitHub Exploit DB Packet Storm
314356 7.5 HIGH
Network 		storelocatorplus store_locator_plus Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Store Locator Plus.This issue affects Store Locator Plus: from n/a through 2311.17.01. NVD-CWE-noinfo
CVE-2024-43258 2024-09-13 06:11 2024-08-27 Show GitHub Exploit DB Packet Storm
314357 8.8 HIGH
Network 		mage-people event_manager_and_tickets_selling_for_woocommerce Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in MagePeople Team Event Manager for WooCommerce allows PHP Local File Inclusion.This issue affects Event … CWE-22
Path Traversal 		CVE-2024-43138 2024-09-13 06:11 2024-08-13 Show GitHub Exploit DB Packet Storm
314358 6.5 MEDIUM
Network 		nouthemes leopard Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Nouthemes Leopard - WordPress offload media.This issue affects Leopard - WordPress offload media: from n/a through 2.0.36. NVD-CWE-noinfo
CVE-2024-43257 2024-09-13 06:09 2024-08-27 Show GitHub Exploit DB Packet Storm
314359 5.4 MEDIUM
Network 		piotnet piotnet_addons The Piotnet Addons For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Image Accordion, Dual Heading, and Vertical Timeline widgets in all versions up to,… CWE-79
Cross-site Scripting 		CVE-2024-5502 2024-09-13 06:05 2024-08-23 Show GitHub Exploit DB Packet Storm
314360 4.9 MEDIUM
Network 		continew continew_admin A vulnerability was found in ContiNew Admin 3.2.0 and classified as critical. Affected by this issue is the function top.continew.starter.extension.crud.controller.BaseController#page of the file /ap… CWE-89
SQL Injection 		CVE-2024-8150 2024-09-13 06:01 2024-08-26 Show GitHub Exploit DB Packet Storm