Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 7, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251131	7.8	危険	Imperva Inc.	-	Imperva SecureSphere の Web Application Firewall および Database Firewall における intrusion-prevention 機能を回避される脆弱性	CWE-noinfo 情報不足	CVE-2010-1329	2011-06-6 14:29	2010-04-5	Show	GitHub Exploit DB Packet Storm

251132	4.3	警告	Imperva Inc.	-	Imperva SecureSphere MX Management Server の management GUI におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-1463	2011-06-6 14:27	2008-03-18	Show	GitHub Exploit DB Packet Storm

251133	6.5	警告	バラクーダネットワークス	-	Barracuda Spam Firewall の Account View ページ内にある index.cgi における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-1094	2011-06-6 14:23	2008-12-15	Show	GitHub Exploit DB Packet Storm

251134	3.5	注意	バラクーダネットワークス	-	複数の Barracuda 製品の index.cgi におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-0971	2011-06-6 14:21	2008-12-15	Show	GitHub Exploit DB Packet Storm

251135	4.3	警告	バラクーダネットワークス	-	Barracuda Spam Firewall の ldap_test.cgi におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2333	2011-06-6 14:20	2008-05-22	Show	GitHub Exploit DB Packet Storm

251136	10	危険	7-Technologies	-	7-Technologies Interactive Graphical SCADA System の logText 関数における任意のコードを実行される脆弱性	CWE-134 書式文字列の問題	CVE-2011-1568	2011-06-6 14:19	2011-04-5	Show	GitHub Exploit DB Packet Storm

251137	10	危険	サイバートラスト株式会社 Mozilla Foundation レッドハット	-	複数の Mozilla 製品のブラウザエンジンにおける任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2011-0075	2011-06-6 13:56	2011-04-28	Show	GitHub Exploit DB Packet Storm

251138	5	警告	サイバートラスト株式会社 Mozilla Foundation レッドハット	-	Windows 上で稼働する複数の Mozilla 製品におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2011-0071	2011-06-6 10:36	2011-04-28	Show	GitHub Exploit DB Packet Storm

251139	5	警告	サイバートラスト株式会社 Mozilla Foundation	-	Mozilla Firefox および SeaMonkey におけるフォームの入力履歴を読まれる脆弱性	CWE-20 不適切な入力確認	CVE-2011-0067	2011-06-6 10:35	2011-04-28	Show	GitHub Exploit DB Packet Storm

251140	10	危険	サイバートラスト株式会社 Mozilla Foundation レッドハット	-	Mozilla Firefox および SeaMonkey における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-0073	2011-06-6 10:34	2011-04-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
312751	-		-	-	A vulnerability classified as problematic has been found in Bolt CMS 3.7.1. Affected is an unknown function of the file /bolt/editcontent/showcases of the component Showcase Creation Handler. The man…	CWE-79 Cross-site Scripting	CVE-2024-7300	2024-08-19 23:15	2024-07-31	Show	GitHub Exploit DB Packet Storm

312752	5.3	MEDIUM Network	-	-	The LadiApp plugn for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the init_endpoint() function hooked via 'init' in versions up to, and including…	-	CVE-2023-4730	2024-08-19 22:00	2024-08-17	Show	GitHub Exploit DB Packet Storm

312753	6.1	MEDIUM Network	-	-	The Slideshow, Image Slider by 2J plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘post’ parameter in versions up to, and including, 1.3.54 due to insufficient input sani…	-	CVE-2023-4604	2024-08-19 22:00	2024-08-17	Show	GitHub Exploit DB Packet Storm

312754	6.1	MEDIUM Network	-	-	The Admission AppManager plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'q' parameter in versions up to, and including, 1.0.0 due to insufficient input sanitization and …	-	CVE-2023-4507	2024-08-19 22:00	2024-08-17	Show	GitHub Exploit DB Packet Storm

312755	4.7	MEDIUM Network	-	-	The Short URL plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.6.8. This is due to missing or incorrect nonce validation on the configuration_page …	-	CVE-2023-1604	2024-08-19 22:00	2024-08-17	Show	GitHub Exploit DB Packet Storm

312756	6.5	MEDIUM Network	-	-	The LOGIN AND REGISTRATION ATTEMPTS LIMIT plugin for WordPress is vulnerable to IP Address Spoofing in versions up to, and including, 2.1. This is due to insufficient restrictions on where the IP Add…	-	CVE-2022-4532	2024-08-19 22:00	2024-08-17	Show	GitHub Exploit DB Packet Storm

312757	7.2	HIGH Network	-	-	The Skitter Slideshow plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 2.5.2 via the /image.php file. This makes it possible for unauthenticated…	-	CVE-2022-1751	2024-08-19 22:00	2024-08-17	Show	GitHub Exploit DB Packet Storm

312758	10.0	CRITICAL Network	-	-	The InPost for WooCommerce plugin and InPost PL plugin for WordPress are vulnerable to unauthorized access and deletion of data due to a missing capability check on the 'parse_request' function in al…	-	CVE-2024-6500	2024-08-19 22:00	2024-08-17	Show	GitHub Exploit DB Packet Storm

312759	-		-	-	A vulnerability has been found in Scooter Software Beyond Compare up to 3.3.5.15075 and classified as critical. Affected by this vulnerability is an unknown functionality in the library 7zxa.dll. The…	CWE-427 Uncontrolled Search Path Element	CVE-2024-7886	2024-08-19 22:00	2024-08-17	Show	GitHub Exploit DB Packet Storm

312760	-		-	-	CraftOS-PC 2 is a rewrite of the desktop port of CraftOS from the popular Minecraft mod ComputerCraft using C++ and a modified version of PUC Lua, as well as SDL for drawing. Prior to version 2.8.3, …	-	CVE-2024-43395	2024-08-19 22:00	2024-08-17	Show	GitHub Exploit DB Packet Storm