Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 6, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
249351 5 警告 Igor Sysoev - nginx における重要な情報を取得される脆弱性 CWE-399
リソース管理の問題 		CVE-2012-1180 2012-06-12 15:48 2012-04-17 Show GitHub Exploit DB Packet Storm
249352 6.8 警告 Bloxx - Bloxx Web Filtering で使用される Microdasys におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-3343 2012-06-12 15:23 2011-06-9 Show GitHub Exploit DB Packet Storm
249353 5 警告 Bloxx - Bloxx Web Filtering における IP アドレスとドメインの制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-2566 2012-06-12 15:19 2011-06-9 Show GitHub Exploit DB Packet Storm
249354 5.8 警告 Bloxx - Bloxx Web Filtering における平文パスワードを容易に推測される脆弱 CWE-264
認可・権限・アクセス制御 		CVE-2012-2565 2012-06-12 15:17 2011-06-9 Show GitHub Exploit DB Packet Storm
249355 6.8 警告 Bloxx - Bloxx Web Filtering の管理インターフェースにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-2564 2012-06-12 15:14 2011-06-9 Show GitHub Exploit DB Packet Storm
249356 4.3 警告 Bloxx - Bloxx Web Filtering におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2563 2012-06-12 15:10 2011-06-9 Show GitHub Exploit DB Packet Storm
249357 5.8 警告 シーメンス - Siemens WinCC の Web アプリケーションにおけるオープンリダイレクトの脆弱性 CWE-20
不適切な入力確認 		CVE-2012-3003 2012-06-12 14:31 2012-06-5 Show GitHub Exploit DB Packet Storm
249358 4.3 警告 シーメンス - Siemens WinCC の DiagAgent Web サーバにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-2598 2012-06-12 14:27 2012-06-5 Show GitHub Exploit DB Packet Storm
249359 4 警告 シーメンス - Siemens WinCC におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2012-2597 2012-06-12 14:26 2012-06-5 Show GitHub Exploit DB Packet Storm
249360 5.5 警告 シーメンス - Siemens WinCC の Web アプリケーションの XPath 機能における設定を読まれる脆弱性 CWE-94
コード・インジェクション 		CVE-2012-2596 2012-06-12 14:22 2012-06-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
196191 9.8 CRITICAL
Network 		wpruby controlled_admin_access An Improper Access Control vulnerability was discovered in the Controlled Admin Access WordPress plugin before 1.5.2. Uncontrolled access to the website customization functionality and global CMS set… CWE-425
 Direct Request ('Forced Browsing') 		CVE-2021-24215 2024-11-21 14:52 2021-04-12 Show GitHub Exploit DB Packet Storm
196192 6.1 MEDIUM
Network 		givewp givewp The GiveWP – Donation Plugin and Fundraising Platform WordPress plugin before 2.10.0 was affected by a reflected Cross-Site Scripting vulnerability inside of the administration panel, via the 's' GET… - CVE-2021-24213 2024-11-21 14:52 2021-04-12 Show GitHub Exploit DB Packet Storm
196193 6.5 MEDIUM
Network 		tms-outsource wpdatatables The wpDataTables – Tables & Table Charts premium WordPress plugin before 3.4.2 allows a low privilege authenticated user to perform Boolean-based blind SQL Injection in the table list page on the end… - CVE-2021-24200 2024-11-21 14:52 2021-04-12 Show GitHub Exploit DB Packet Storm
196194 6.5 MEDIUM
Network 		tms-outsource wpdatatables The wpDataTables – Tables & Table Charts premium WordPress plugin before 3.4.2 allows a low privilege authenticated user to perform Boolean-based blind SQL Injection in the table list page on the end… - CVE-2021-24199 2024-11-21 14:52 2021-04-12 Show GitHub Exploit DB Packet Storm
196195 8.1 HIGH
Network 		tms-outsource wpdatatables The wpDataTables – Tables & Table Charts premium WordPress plugin before 3.4.2 has Improper Access Control. A low privilege authenticated user that visits the page where the table is published can ta… NVD-CWE-Other
CVE-2021-24198 2024-11-21 14:52 2021-04-12 Show GitHub Exploit DB Packet Storm
196196 8.1 HIGH
Network 		tms-outsource wpdatatables The wpDataTables – Tables & Table Charts premium WordPress plugin before 3.4.2 has Improper Access Control. A low privilege authenticated user that visits the page where the table is published can ta… NVD-CWE-Other
CVE-2021-24197 2024-11-21 14:52 2021-04-12 Show GitHub Exploit DB Packet Storm
196197 7.5 HIGH
Network 		whatsapp whatsapp_business
whatsapp 		A cache configuration issue prior to WhatsApp for Android v2.21.4.18 and WhatsApp Business for Android v2.21.4.18 may have allowed a third party with access to the device’s external storage to read c… NVD-CWE-noinfo
CVE-2021-24027 2024-11-21 14:52 2021-04-7 Show GitHub Exploit DB Packet Storm
196198 9.8 CRITICAL
Network 		whatsapp whatsapp
whatsapp_business 		A missing bounds check within the audio decoding pipeline for WhatsApp calls in WhatsApp for Android prior to v2.21.3, WhatsApp Business for Android prior to v2.21.3, WhatsApp for iOS prior to v2.21.… CWE-787
 Out-of-bounds Write 		CVE-2021-24026 2024-11-21 14:52 2021-04-7 Show GitHub Exploit DB Packet Storm
196199 9.8 CRITICAL
Network 		woocommerce help_scout The WooCommerce Help Scout WordPress plugin before 2.9.1 (https://woocommerce.com/products/woocommerce-help-scout/) allows unauthenticated users to upload any files to the site which by default will … CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2021-24212 2024-11-21 14:52 2021-04-6 Show GitHub Exploit DB Packet Storm
196200 5.4 MEDIUM
Network 		wphive wordpress_related_posts The WordPress Related Posts plugin through 3.6.4 contains an authenticated (admin+) stored XSS vulnerability in the title field on the settings page. By exploiting that an attacker will be able to ex… CWE-79
Cross-site Scripting 		CVE-2021-24211 2024-11-21 14:52 2021-04-6 Show GitHub Exploit DB Packet Storm