Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 13, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
257091	10	危険	IBM	-	IBM DB2 UDB の Administration Server コンポーネントにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-3731	2011-02-17 18:09	2010-10-5	Show	GitHub Exploit DB Packet Storm

257092	5	警告	IBM	-	IBM DB2 の SYSIBMADM スキーマにおける重要な情報を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-3197	2011-02-17 18:08	2010-08-31	Show	GitHub Exploit DB Packet Storm

257093	3.5	注意	IBM	-	IBM DB2 におけるサービス運用妨害 (DoS) の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-3196	2011-02-17 18:07	2010-03-9	Show	GitHub Exploit DB Packet Storm

257094	5	警告	IBM	-	Windows Server 2008 上で稼働する IBM DB2 におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2010-3195	2011-02-17 18:06	2010-02-4	Show	GitHub Exploit DB Packet Storm

257095	7.5	危険	IBM	-	IBM DB2 の DB2DART プログラムにおけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-3194	2011-02-17 18:06	2010-01-25	Show	GitHub Exploit DB Packet Storm

257096	10	危険	IBM	-	IBM DB2 の DB2STST プログラムにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-3193	2011-02-17 18:04	2010-01-5	Show	GitHub Exploit DB Packet Storm

257097	5	警告	IBM	-	IBM DB2 の kuddb2 におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2010-0472	2011-02-17 17:53	2010-02-2	Show	GitHub Exploit DB Packet Storm

257098	4.4	警告	オラクル	-	Oracle Solaris 10 および 11 Express の Kernel における脆弱性	CWE-noinfo 情報不足	CVE-2010-4442	2011-02-17 14:02	2011-01-18	Show	GitHub Exploit DB Packet Storm

257099	4.4	警告	オラクル	-	Oracle Solaris 10 および 11 Express の Kernel における脆弱性	CWE-noinfo 情報不足	CVE-2010-4440	2011-02-17 14:02	2011-01-18	Show	GitHub Exploit DB Packet Storm

257100	4.6	警告	オラクル	-	Oracle Solaris 11 Express の RDS および Kernel/InfiniBand における脆弱性	CWE-noinfo 情報不足	CVE-2010-4446	2011-02-17 14:01	2011-01-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
197611	8.8	HIGH Network	handsome_testimonials_\&_reviews_project	handsome_testimonials_\&_reviews	The hndtst_action_instance_callback AJAX call of the Handsome Testimonials & Reviews WordPress plugin before 2.1.1, available to any authenticated users, does not sanitise, validate or escape the hnd…	CWE-89 SQL Injection	CVE-2021-24492	2024-11-21 14:53	2021-08-2	Show	GitHub Exploit DB Packet Storm

197612	6.1	MEDIUM Network	pickplugins	post_grid	The slider import search feature and tab parameter of the Post Grid WordPress plugin before 2.1.8 settings are not properly sanitised before being output back in the pages, leading to Reflected Cross…	-	CVE-2021-24488	2024-11-21 14:53	2021-08-2	Show	GitHub Exploit DB Packet Storm

197613	7.2	HIGH Network	ays-pro	secure_copy_content_protection_and_content_locking	The get_reports() function in the Secure Copy Content Protection and Content Locking WordPress plugin before 2.6.7 did not use whitelist or validate the orderby parameter before using it in SQL state…	-	CVE-2021-24484	2024-11-21 14:53	2021-08-2	Show	GitHub Exploit DB Packet Storm

197614	7.2	HIGH Network	ays-pro	poll_maker	The get_poll_categories(), get_polls() and get_reports() functions in the Poll Maker WordPress plugin before 3.2.1 did not use whitelist or validate the orderby parameter before using it in SQL state…	-	CVE-2021-24483	2024-11-21 14:53	2021-08-2	Show	GitHub Exploit DB Packet Storm

197615	4.8	MEDIUM Network	any_hostname_project	any_hostname	The Any Hostname WordPress plugin through 1.0.6 does not sanitise or escape its "Allowed hosts" setting, leading to an authenticated stored XSS issue as high privilege users are able to set XSS paylo…	-	CVE-2021-24481	2024-11-21 14:53	2021-08-2	Show	GitHub Exploit DB Packet Storm

197616	4.8	MEDIUM Network	event_geek_project	event_geek	The Event Geek WordPress plugin through 2.5.2 does not sanitise or escape its "Use your own " setting before outputting it in the page, leading to an authenticated (admin+) stored Cross-Site Scriptin…	-	CVE-2021-24480	2024-11-21 14:53	2021-08-2	Show	GitHub Exploit DB Packet Storm

197617	4.8	MEDIUM Network	drawblog_project	drawblog	The DrawBlog WordPress plugin through 0.90 does not sanitise or validate some of its settings before outputting them back in the page, leading to an authenticated stored Cross-Site Scripting issue	-	CVE-2021-24479	2024-11-21 14:53	2021-08-2	Show	GitHub Exploit DB Packet Storm

197618	5.4	MEDIUM Network	bookshelf_project	bookshelf	The Bookshelf WordPress plugin through 2.0.4 does not sanitise or escape its "Paypal email address" setting before outputting it in the page, leading to an authenticated Stored Cross-Site Scripting i…	CWE-79 Cross-site Scripting	CVE-2021-24478	2024-11-21 14:53	2021-08-2	Show	GitHub Exploit DB Packet Storm

197619	6.1	MEDIUM Network	migrate_users_project	migrate_users	The Migrate Users WordPress plugin through 1.0.1 does not sanitise or escape its Delimiter option before outputting in a page, leading to a Stored Cross-Site Scripting issue. Furthermore, the plugin …	-	CVE-2021-24477	2024-11-21 14:53	2021-08-2	Show	GitHub Exploit DB Packet Storm

197620	5.4	MEDIUM Network	steam_group_viewer_project	steam_group_viewer	The Steam Group Viewer WordPress plugin through 2.1 does not sanitise or escape its "Steam Group Address" settings before outputting it in the page, leading to an authenticated Stored Cross-Site Scri…	-	CVE-2021-24476	2024-11-21 14:53	2021-08-2	Show	GitHub Exploit DB Packet Storm