Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 2, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
256981	6.8	警告	アップル	-	Apple Mac OS X の QuickTime におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0516	2010-04-15 18:39	2010-03-29	Show	GitHub Exploit DB Packet Storm

256982	6.8	警告	アップル	-	Apple Mac OS X の QuickTime における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-0515	2010-04-15 18:39	2010-03-29	Show	GitHub Exploit DB Packet Storm

256983	6.8	警告	アップル	-	Apple Mac OS X の QuickTime におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0514	2010-04-15 18:38	2010-03-29	Show	GitHub Exploit DB Packet Storm

256984	6.8	警告	アップル	-	Apple Mac OS X の PS Normalizer におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0513	2010-04-15 18:38	2010-03-29	Show	GitHub Exploit DB Packet Storm

256985	9.3	危険	アップル	-	Apple Mac OS X のアカウント環境設定の実装におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0512	2010-04-15 18:38	2010-03-29	Show	GitHub Exploit DB Packet Storm

256986	5	警告	アップル	-	Apple Mac OS X の Podcast プロデューサーにおけるワークフローにアクセスされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0511	2010-04-15 18:38	2010-03-29	Show	GitHub Exploit DB Packet Storm

256987	9	危険	アップル	-	Apple Mac OS X のパスワードサーバにおけるログインアクセスを取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2010-0510	2010-04-15 18:37	2010-03-29	Show	GitHub Exploit DB Packet Storm

256988	7.2	危険	アップル	-	Apple Mac OS X の SFLServer における権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0509	2010-04-15 18:37	2010-03-29	Show	GitHub Exploit DB Packet Storm

256989	7.8	危険	アップル	-	Apple Mac OS X の Mail における重要な情報を取得される脆弱性	CWE-310 暗号の問題	CVE-2010-0525	2010-04-15 18:36	2010-03-29	Show	GitHub Exploit DB Packet Storm

256990	4	警告	アップルサイバートラスト株式会社 MySQL AB レッドハット	-	MySQL の mysqld におけるサービス運用妨害 (DoS) の脆弱性	CWE-DesignError	CVE-2009-4019	2010-04-15 18:16	2009-11-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
194871	8.8	HIGH Network	easy-form-builder-by-bitware_project	easy-form-builder-by-bitware	The EFBP_verify_upload_file AJAX action of the Easy Form Builder WordPress plugin through 1.0, available to authenticated users, does not have any security in place to verify uploaded files, allowing…	-	CVE-2021-24224	2024-11-21 14:52	2021-04-12	Show	GitHub Exploit DB Packet Storm

194872	9.8	CRITICAL Network	n5_upload_form_project	n5_upload_form	The N5 Upload Form WordPress plugin through 1.0 suffers from an arbitrary file upload issue in page where a Form from the plugin is embed, as any file can be uploaded. The uploaded filename might be …	-	CVE-2021-24223	2024-11-21 14:52	2021-04-12	Show	GitHub Exploit DB Packet Storm

194873	9.8	CRITICAL Network	williamluis	wp-curriculo_vitae_free	The WP-Curriculo Vitae Free WordPress plugin through 6.3 suffers from an arbitrary file upload issue in page where the [formCadastro] is embed. The form allows unauthenticated user to register and su…	-	CVE-2021-24222	2024-11-21 14:52	2021-04-12	Show	GitHub Exploit DB Packet Storm

194874	8.8	HIGH Network	facebook	facebook	The wp_ajax_save_fbe_settings and wp_ajax_delete_fbe_settings AJAX actions of the Facebook for WordPress plugin before 3.0.4 were vulnerable to CSRF due to a lack of nonce protection. The settings in…	-	CVE-2021-24218	2024-11-21 14:52	2021-04-12	Show	GitHub Exploit DB Packet Storm

194875	8.8	HIGH Network	expresstech	quiz_and_survey_master	The Quiz And Survey Master – Best Quiz, Exam and Survey Plugin for WordPress plugin before 7.1.12 did not sanitise the result_id GET parameter on pages with the [qsm_result] shortcode without id attr…	-	CVE-2021-24221	2024-11-21 14:52	2021-04-12	Show	GitHub Exploit DB Packet Storm

194876	9.1	CRITICAL Network	thrivethemes	ignition luxe minus performag pressive rise squared storied voice focusblog	Thrive “Legacy” Rise by Thrive Themes WordPress theme before 2.0.0, Luxe by Thrive Themes WordPress theme before 2.0.0, Minus by Thrive Themes WordPress theme before 2.0.0, Ignition by Thrive Themes …	-	CVE-2021-24220	2024-11-21 14:52	2021-04-12	Show	GitHub Exploit DB Packet Storm

194877	5.3	MEDIUM Network	thrivethemes	thrive_ovation thrive_dashboard thrive_visual_editor thrive_apprentice thrive_quiz_builder thrive_headline_optimizer thrive_comments thrive_optimize thrive_clever_widgets f…	The Thrive Optimize WordPress plugin before 1.4.13.3, Thrive Comments WordPress plugin before 1.4.15.3, Thrive Headline Optimizer WordPress plugin before 1.3.7.3, Thrive Leads WordPress plugin before…	CWE-306 Missing Authentication for Critical Function	CVE-2021-24219	2024-11-21 14:52	2021-04-12	Show	GitHub Exploit DB Packet Storm

194878	8.1	HIGH Network	facebook	facebook	The run_action function of the Facebook for WordPress plugin before 3.0.0 deserializes user supplied data making it possible for PHP objects to be supplied creating an Object Injection vulnerability.…	-	CVE-2021-24217	2024-11-21 14:52	2021-04-12	Show	GitHub Exploit DB Packet Storm

194879	9.8	CRITICAL Network	wpruby	controlled_admin_access	An Improper Access Control vulnerability was discovered in the Controlled Admin Access WordPress plugin before 1.5.2. Uncontrolled access to the website customization functionality and global CMS set…	CWE-425 Direct Request ('Forced Browsing')	CVE-2021-24215	2024-11-21 14:52	2021-04-12	Show	GitHub Exploit DB Packet Storm

194880	6.1	MEDIUM Network	givewp	givewp	The GiveWP – Donation Plugin and Fundraising Platform WordPress plugin before 2.10.0 was affected by a reflected Cross-Site Scripting vulnerability inside of the administration panel, via the 's' GET…	-	CVE-2021-24213	2024-11-21 14:52	2021-04-12	Show	GitHub Exploit DB Packet Storm