Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
254321	10	危険	Opera Software ASA	-	Opera における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-2628	2011-08-15 10:51	2011-05-18	Show	GitHub Exploit DB Packet Storm

254322	5	警告	Opera Software ASA	-	Opera の DOM 実装におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性	CWE-noinfo 情報不足	CVE-2011-2627	2011-08-15 10:44	2011-06-28	Show	GitHub Exploit DB Packet Storm

254323	4.3	警告	IBM	-	IBM WebSphere Application Server の暗号化アルゴリズムにおける脆弱性	CWE-310 暗号の問題	CVE-2011-1209	2011-08-15 10:41	2011-04-15	Show	GitHub Exploit DB Packet Storm

254324	10	危険	サイバートラスト株式会社 Mozilla Foundation レッドハット	-	Mozilla Firefox および SeaMonkey における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2011-0066	2011-08-15 10:32	2011-04-28	Show	GitHub Exploit DB Packet Storm

254325	10	危険	サイバートラスト株式会社 Mozilla Foundation レッドハット	-	Mozilla Firefox および SeaMonkey における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2011-0065	2011-08-15 10:30	2011-04-28	Show	GitHub Exploit DB Packet Storm

254326	4.3	警告	マイクロソフト	-	Internet Explorer におけるウィンドウ偽装の脆弱性	CWE-noinfo 情報不足	-	2011-08-12 12:01	2011-08-12	Show	GitHub Exploit DB Packet Storm

254327	6	警告	レッドハット	-	レッドハット製品で利用される system-config-firewall の fw_dbus.py における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-2520	2011-08-12 11:09	2011-07-18	Show	GitHub Exploit DB Packet Storm

254328	4.4	警告	sysstat レッドハット	-	sysstat の init スクリプトにおける任意のコードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2007-3852	2011-08-12 11:07	2007-08-14	Show	GitHub Exploit DB Packet Storm

254329	6.8	警告	Erik de Castro Lopo レッドハット	-	libsndfile における整数オーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-2696	2011-08-12 11:06	2011-07-13	Show	GitHub Exploit DB Packet Storm

254330	5.8	警告	FUSE レッドハット	-	FUSE における任意のパス名による mtab エントリを作成される脆弱性	CWE-59 リンク解釈の問題	CVE-2010-3879	2011-08-12 11:05	2011-01-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
195061	4.8	MEDIUM Network	connections-pro	connections_business_directory	The Connections Business Directory WordPress plugin before 10.4.3 does not escape the Address settings when creating an Entry, which could allow high privilege users to perform Cross-Site Scripting w…	CWE-79 Cross-site Scripting	CVE-2021-24794	2024-11-21 14:53	2021-11-1	Show	GitHub Exploit DB Packet Storm

195062	4.8	MEDIUM Network	etruel	wpematico_rss_feed_fetcher	The WPeMatico RSS Feed Fetcher WordPress plugin before 2.6.12 does not escape the Feed URL added to a campaign before outputting it in an attribute, allowing high privilege users to perform Cross-Sit…	CWE-79 Cross-site Scripting	CVE-2021-24793	2024-11-21 14:53	2021-11-1	Show	GitHub Exploit DB Packet Storm

195063	4.8	MEDIUM Network	flat_preloader_project	flat_preloader	The Flat Preloader WordPress plugin before 1.5.5 does not escape some of its settings when outputting them in attribute in the frontend, which could allow high privilege users to perform Cross-Site S…	CWE-79 Cross-site Scripting	CVE-2021-24789	2024-11-21 14:53	2021-11-1	Show	GitHub Exploit DB Packet Storm

195064	4.3	MEDIUM Network	imagesourcecontrol	image_source_control	The Image Source Control WordPress plugin before 2.3.1 allows users with a role as low as Contributor to change arbitrary post meta fields of arbitrary posts (even those they should not be able to ed…	NVD-CWE-noinfo	CVE-2021-24781	2024-11-21 14:53	2021-11-1	Show	GitHub Exploit DB Packet Storm

195065	4.8	MEDIUM Network	wpdownloadmanager	wordpress_download_manager	The WordPress Download Manager WordPress plugin before 3.2.16 does not escape some of the Download settings when outputting them, allowing high privilege users to perform XSS attacks even when the un…	CWE-79 Cross-site Scripting	CVE-2021-24773	2024-11-21 14:53	2021-11-1	Show	GitHub Exploit DB Packet Storm

195066	6.5	MEDIUM Network	stylishpricelist	stylish_price_list	The Stylish Price List WordPress plugin before 6.9.1 does not perform capability checks in its spl_upload_ser_img AJAX action (available to authenticated users), which could allow any authenticated u…	-	CVE-2021-24770	2024-11-21 14:53	2021-11-1	Show	GitHub Exploit DB Packet Storm

195067	5.3	MEDIUM Network	stylishpricelist	stylish_price_list	The Stylish Price List WordPress plugin before 6.9.0 does not perform capability checks in its spl_upload_ser_img AJAX action (available to both unauthenticated and authenticated users), which could …	-	CVE-2021-24757	2024-11-21 14:53	2021-11-1	Show	GitHub Exploit DB Packet Storm

195068	6.5	MEDIUM Network	radiustheme	logo_slider_and_showcase	The Logo Slider and Showcase WordPress plugin before 1.3.37 allows Editor users to update the plugin's settings via the rtWLSSettings AJAX action because it uses a nonce for authorisation instead of …	-	CVE-2021-24742	2024-11-21 14:53	2021-11-1	Show	GitHub Exploit DB Packet Storm

195069	5.4	MEDIUM Network	wpreactions	wp_reactions_lite	The WP Reactions Lite WordPress plugin before 1.3.6 does not properly sanitize inputs within wp-admin pages, allowing users with sufficient access to inject XSS payloads within /wp-admin/ pages.	CWE-79 Cross-site Scripting	CVE-2021-24723	2024-11-21 14:53	2021-11-1	Show	GitHub Exploit DB Packet Storm

195070	4.8	MEDIUM Network	motopress	restaurant_menu	The Restaurant Menu by MotoPress WordPress plugin before 2.4.2 does not properly sanitize or escape inputs when creating new menu items, which could allow high privilege users to perform Cross-Site S…	CWE-79 Cross-site Scripting	CVE-2021-24722	2024-11-21 14:53	2021-11-1	Show	GitHub Exploit DB Packet Storm