Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 7, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
249761	6.8	警告	シスコシステムズ	-	Cisco Secure Access Control Server におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2011-3293	2012-05-8 11:28	2012-05-2	Show	GitHub Exploit DB Packet Storm

249762	3.6	注意	シスコシステムズ	-	Cisco IOS における No Service Password-Recovery 機能を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-3289	2012-05-8 11:25	2012-05-2	Show	GitHub Exploit DB Packet Storm

249763	5	警告	シスコシステムズ	-	Cisco Adaptive Security Appliances 5500 series デバイスにおける CRLF インジェクションの脆弱性	CWE-20 CWE-94	CVE-2011-3285	2012-05-8 11:24	2012-05-2	Show	GitHub Exploit DB Packet Storm

249764	5	警告	シスコシステムズ	-	Cisco Carrier Routing System におけるサービス運用妨害 (メトロサブシステムクラッシュ) の脆弱性	CWE-20 不適切な入力確認	CVE-2011-3283	2012-05-8 11:24	2012-05-2	Show	GitHub Exploit DB Packet Storm

249765	5.4	警告	シスコシステムズ	-	Cisco IOS の HTTP クライアントにおけるサービス運用妨害 (デバイスクラッシュ) の脆弱性	CWE-20 不適切な入力確認	CVE-2011-2586	2012-05-8 11:23	2011-10-19	Show	GitHub Exploit DB Packet Storm

249766	5	警告	シスコシステムズ	-	Cisco Unified Contact Center Express におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2011-2583	2012-05-8 11:22	2012-05-2	Show	GitHub Exploit DB Packet Storm

249767	7.8	危険	シスコシステムズ	-	Cisco IOS におけるサービス運用妨害 (メモリ消費) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-2578	2012-05-8 11:22	2012-05-2	Show	GitHub Exploit DB Packet Storm

249768	7.8	危険	シスコシステムズ	-	Cisco Adaptive Security Appliances 5500 シリーズデバイスにおけるサービス運用妨害 (DoS) の脆弱性	CWE-189 数値処理の問題	CVE-2012-0378	2012-05-8 11:20	2012-05-3	Show	GitHub Exploit DB Packet Storm

249769	5	警告	シスコシステムズ	-	Cisco Unified Communications Manager の voice-sipstack コンポーネントにおけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2012-0376	2012-05-8 11:19	2012-05-3	Show	GitHub Exploit DB Packet Storm

249770	4.3	警告	シスコシステムズ	-	Cisco IOS の拡張 ACL 機能におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-0362	2012-05-8 11:18	2012-05-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
196101	5.3	MEDIUM Network	wphappycoders	comments_like_dislike	The Comments Like Dislike WordPress plugin before 1.1.4 allows users to like/dislike posted comments, however does not prevent them from replaying the AJAX request to add a like. This allows any user…	-	CVE-2021-24379	2024-11-21 14:52	2021-06-22	Show	GitHub Exploit DB Packet Storm

196102	4.8	MEDIUM Network	autoptimize	autoptimize	The Autoptimize WordPress plugin before 2.7.8 does not check for malicious files such as .html in the archive uploaded via the 'Import Settings' feature. As a result, it is possible for a high privil…	-	CVE-2021-24378	2024-11-21 14:52	2021-06-22	Show	GitHub Exploit DB Packet Storm

196103	8.1	HIGH Network	autoptimize	autoptimize	The Autoptimize WordPress plugin before 2.7.8 attempts to remove potential malicious files from the extracted archive uploaded via the 'Import Settings' feature, however this is not sufficient to pro…	-	CVE-2021-24377	2024-11-21 14:52	2021-06-22	Show	GitHub Exploit DB Packet Storm

196104	9.8	CRITICAL Network	autoptimize	autoptimize	The Autoptimize WordPress plugin before 2.7.8 attempts to delete malicious files (such as .php) form the uploaded archive via the "Import Settings" feature, after its extraction. However, the extract…	-	CVE-2021-24376	2024-11-21 14:52	2021-06-22	Show	GitHub Exploit DB Packet Storm

196105	5.3	MEDIUM Network	automattic	jetpack	The Jetpack Carousel module of the JetPack WordPress plugin before 9.8 allows users to create a "carousel" type image gallery and allows users to comment on the images. A security vulnerability was f…	-	CVE-2021-24374	2024-11-21 14:52	2021-06-22	Show	GitHub Exploit DB Packet Storm

196106	6.1	MEDIUM Network	getastra	wp_hardening	The WP Hardening – Fix Your WordPress Security WordPress plugin before 1.2.2 did not sanitise or escape the historyvalue GET parameter before outputting it in a Javascript block, leading to a reflect…	-	CVE-2021-24373	2024-11-21 14:52	2021-06-22	Show	GitHub Exploit DB Packet Storm

196107	6.1	MEDIUM Network	getastra	wp_hardening	The WP Hardening – Fix Your WordPress Security WordPress plugin before 1.2.2 did not sanitise or escape the $_SERVER['REQUEST_URI'] before outputting it in an attribute, leading to a reflected Cross-…	CWE-79 Cross-site Scripting	CVE-2021-24372	2024-11-21 14:52	2021-06-22	Show	GitHub Exploit DB Packet Storm

196108	9.8	CRITICAL Network	radykal	fancy_product_designer	The Fancy Product Designer WordPress plugin before 4.6.9 allows unauthenticated attackers to upload arbitrary files, resulting in remote code execution.	-	CVE-2021-24370	2024-11-21 14:52	2021-06-22	Show	GitHub Exploit DB Packet Storm

196109	5.4	MEDIUM Network	ayecode	getpaid	In the GetPaid WordPress plugin before 2.3.4, users with the contributor role and above can create a new Payment Form, however the Label and Help Text input fields were not getting sanitized properly…	-	CVE-2021-24369	2024-11-21 14:52	2021-06-22	Show	GitHub Exploit DB Packet Storm

196110	5.4	MEDIUM Network	wp_config_file_editor_project	wp_config_file_editor	The WP Config File Editor WordPress plugin through 1.7.1 was affected by an Authenticated Stored Cross-Site Scripting (XSS) vulnerability.	-	CVE-2021-24367	2024-11-21 14:52	2021-06-22	Show	GitHub Exploit DB Packet Storm