Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 7, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
250091 9.3 危険 Google - Google Chrome における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2011-3873 2011-11-2 11:10 2011-10-4 Show GitHub Exploit DB Packet Storm
250092 6.8 警告 Google - Google Chrome におけるサービス運用妨害 (メモリ破損) の脆弱性 CWE-119
バッファエラー 		CVE-2011-2881 2011-11-2 11:09 2011-10-4 Show GitHub Exploit DB Packet Storm
250093 6.8 警告 Google - Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-2880 2011-11-2 11:09 2011-10-4 Show GitHub Exploit DB Packet Storm
250094 6.8 警告 Google - Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-2879 2011-11-2 11:08 2011-10-4 Show GitHub Exploit DB Packet Storm
250095 7.5 危険 Google - Google Chrome における同一生成元ポリシーを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-2878 2011-11-2 11:07 2011-10-4 Show GitHub Exploit DB Packet Storm
250096 6.8 警告 Google - Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-2876 2011-11-2 11:05 2011-10-4 Show GitHub Exploit DB Packet Storm
250097 7.5 危険 Google - Google Chrome で使用される Google V8 における同一生成元ポリシーを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-2856 2011-11-2 11:02 2011-09-16 Show GitHub Exploit DB Packet Storm
250098 7.5 危険 Google - Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-2853 2011-11-2 11:00 2011-09-16 Show GitHub Exploit DB Packet Storm
250099 7.5 危険 Google - Google Chrome で使用される Google V8 における一つずれエラーの脆弱性 CWE-189
数値処理の問題 		CVE-2011-2852 2011-11-2 10:58 2011-09-16 Show GitHub Exploit DB Packet Storm
250100 5 警告 Google - Google Chrome におけるサービス運用妨害 (out-of-bounds read) の脆弱性 CWE-119
バッファエラー 		CVE-2011-2851 2011-11-2 10:57 2011-09-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
199401 8.8 HIGH
Network 		pagelayer pagelayer An issue was discovered in the PageLayer plugin before 1.1.2 for WordPress. The pagelayer_settings_page function is vulnerable to CSRF, which can lead to XSS. CWE-352
CWE-79
 Origin Validation Error
Cross-site Scripting 		CVE-2020-35944 2024-11-21 14:28 2021-01-1 Show GitHub Exploit DB Packet Storm
199402 8.8 HIGH
Network 		pickplugins team_showcase
post_grid 		PHP Object injection vulnerabilities in the Team Showcase plugin before 1.22.16 for WordPress allow remote authenticated attackers to inject arbitrary PHP objects due to insecure unserialization of d… CWE-502
 Deserialization of Untrusted Data 		CVE-2020-35939 2024-11-21 14:28 2021-01-1 Show GitHub Exploit DB Packet Storm
199403 8.8 HIGH
Network 		pickplugins team_showcase
post_grid 		PHP Object injection vulnerabilities in the Post Grid plugin before 2.0.73 for WordPress allow remote authenticated attackers to inject arbitrary PHP objects due to insecure unserialization of data s… CWE-502
 Deserialization of Untrusted Data 		CVE-2020-35938 2024-11-21 14:28 2021-01-1 Show GitHub Exploit DB Packet Storm
199404 8.0 HIGH
Network 		pickplugins team_showcase
post_grid 		Stored Cross-Site Scripting (XSS) vulnerabilities in the Team Showcase plugin before 1.22.16 for WordPress allow remote authenticated attackers to import layouts including JavaScript supplied via a r… CWE-79
Cross-site Scripting 		CVE-2020-35937 2024-11-21 14:28 2021-01-1 Show GitHub Exploit DB Packet Storm
199405 8.0 HIGH
Network 		pickplugins team_showcase
post_grid 		Stored Cross-Site Scripting (XSS) vulnerabilities in the Post Grid plugin before 2.0.73 for WordPress allow remote authenticated attackers to import layouts including JavaScript supplied via a remote… CWE-79
Cross-site Scripting 		CVE-2020-35936 2024-11-21 14:28 2021-01-1 Show GitHub Exploit DB Packet Storm
199406 8.8 HIGH
Network 		vasyltech advanced_access_manager The Advanced Access Manager plugin before 6.6.2 for WordPress allows privilege escalation on profile updates via the aam_user_roles POST parameter if Multiple Role support is enabled. (The mechanism … NVD-CWE-noinfo
CVE-2020-35935 2024-11-21 14:28 2021-01-1 Show GitHub Exploit DB Packet Storm
199407 4.3 MEDIUM
Network 		vasyltech advanced_access_manager The Advanced Access Manager plugin before 6.6.2 for WordPress displays the unfiltered user object (including all metadata) upon login via the REST API (aam/v1/authenticate or aam/v2/authenticate). Th… CWE-200
Information Exposure 		CVE-2020-35934 2024-11-21 14:28 2021-01-1 Show GitHub Exploit DB Packet Storm
199408 6.5 MEDIUM
Network 		thenewsletterplugin newsletter A Reflected Authenticated Cross-Site Scripting (XSS) vulnerability in the Newsletter plugin before 6.8.2 for WordPress allows remote attackers to trick a victim into submitting a tnpc_render AJAX req… CWE-79
Cross-site Scripting 		CVE-2020-35933 2024-11-21 14:28 2021-01-1 Show GitHub Exploit DB Packet Storm
199409 8.8 HIGH
Network 		tribulant newsletter Insecure Deserialization in the Newsletter plugin before 6.8.2 for WordPress allows authenticated remote attackers with minimal privileges (such as subscribers) to use the tpnc_render AJAX action to … CWE-502
 Deserialization of Untrusted Data 		CVE-2020-35932 2024-11-21 14:28 2021-01-1 Show GitHub Exploit DB Packet Storm
199410 7.8 HIGH
Local 		foxitsoftware foxit_reader
phantompdf 		An issue was discovered in Foxit Reader before 10.1.1 (and before 4.1.1 on macOS) and PhantomPDF before 9.7.5 and 10.x before 10.1.1 (and before 4.1.1 on macOS). An attacker can spoof a certified PDF… CWE-754
 Improper Check for Unusual or Exceptional Conditions 		CVE-2020-35931 2024-11-21 14:28 2021-01-1 Show GitHub Exploit DB Packet Storm