Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 15, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
257451 5.4 警告 マイクロソフト - 複数の Microsoft 製品の Netlogon RPC Service におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2010-2742 2011-01-17 15:09 2010-12-14 Show GitHub Exploit DB Packet Storm
257452 7.2 危険 マイクロソフト - 複数の Microsoft 製品の Consent User Interface における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-3961 2011-01-17 15:06 2010-12-14 Show GitHub Exploit DB Packet Storm
257453 7.2 危険 マイクロソフト - Microsoft Windows 製品の Routing and Remote Access NDProxy コンポーネントにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-3963 2011-01-17 15:03 2010-12-14 Show GitHub Exploit DB Packet Storm
257454 7.2 危険 マイクロソフト - Microsoft Windows のカーネルモードドライバ内にある win32k.sys における権限昇格の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-3944 2011-01-17 14:45 2010-12-14 Show GitHub Exploit DB Packet Storm
257455 7.2 危険 マイクロソフト - Microsoft Windows のカーネルモードドライバ内にある win32k.sys における権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-3943 2011-01-17 14:38 2010-12-14 Show GitHub Exploit DB Packet Storm
257456 7.2 危険 マイクロソフト - Microsoft Windows のカーネルモードドライバ内にある win32k.sys における権限昇格の脆弱性 CWE-119
バッファエラー 		CVE-2010-3942 2011-01-17 14:35 2010-12-14 Show GitHub Exploit DB Packet Storm
257457 7.2 危険 マイクロソフト - Microsoft Windows のカーネルモードドライバ内にある win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-3941 2011-01-17 14:29 2010-12-14 Show GitHub Exploit DB Packet Storm
257458 7.2 危険 マイクロソフト - Microsoft Windows のカーネルモードドライバ内にある win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-3940 2011-01-14 15:55 2010-12-14 Show GitHub Exploit DB Packet Storm
257459 7.2 危険 マイクロソフト - Microsoft Windows のカーネルモードドライバ内にある win32k.sys におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-3939 2011-01-14 15:53 2010-12-14 Show GitHub Exploit DB Packet Storm
257460 9.3 危険 マイクロソフト - Microsoft Windows の Internet Connection Signup Wizard における権限昇格の脆弱性 CWE-Other
その他 		CVE-2010-3144 2011-01-14 15:49 2010-12-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 15, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
196991 6.5 MEDIUM
Network 		aioseo all_in_one_seo The All in One SEO WordPress plugin before 4.1.5.3 is affected by an authenticated SQL injection issue, which was discovered during an internal audit by the Jetpack Scan team, and could grant attacke… - CVE-2021-25037 2024-11-21 14:54 2022-01-17 Show GitHub Exploit DB Packet Storm
196992 8.8 HIGH
Network 		aioseo all_in_one_seo The All in One SEO WordPress plugin before 4.1.5.3 is affected by a Privilege Escalation issue, which was discovered during an internal audit by the Jetpack Scan team, and may grant bad actors access… CWE-178
 Improper Handling of Case Sensitivity 		CVE-2021-25036 2024-11-21 14:54 2022-01-17 Show GitHub Exploit DB Packet Storm
196993 4.3 MEDIUM
Network 		theeventscalendar eventcalendar The EventCalendar WordPress plugin before 1.1.51 does not have proper authorisation and CSRF checks in the add_calendar_event AJAX actions, allowing users with a role as low as subscriber to create e… - CVE-2021-25025 2024-11-21 14:54 2022-01-17 Show GitHub Exploit DB Packet Storm
196994 6.1 MEDIUM
Network 		theeventscalendar eventcalendar The EventCalendar WordPress plugin before 1.1.51 does not escape some user input before outputting it back in attributes, leading to Reflected Cross-SIte Scripting issues - CVE-2021-25024 2024-11-21 14:54 2022-01-17 Show GitHub Exploit DB Packet Storm
196995 4.8 MEDIUM
Network 		seur_oficial_project seur_oficial The SEUR Oficial WordPress plugin before 1.7.0 does not sanitize and escape some of its settings allowing high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html ca… CWE-79
Cross-site Scripting 		CVE-2021-25005 2024-11-21 14:54 2022-01-17 Show GitHub Exploit DB Packet Storm
196996 8.8 HIGH
Network 		wow-company wpcalc The WPcalc WordPress plugin through 2.1 does not sanitize user input into the 'did' parameter and uses it in a SQL statement, leading to an authenticated SQL Injection vulnerability. - CVE-2021-25054 2024-11-21 14:54 2022-01-11 Show GitHub Exploit DB Packet Storm
196997 8.8 HIGH
Network 		wow-company wp_coder The WP Coder WordPress plugin before 2.5.2 within the wow-company admin menu page allows to include() arbitrary file with PHP extension (as well as with data:// or http:// protocols), thus leading to… - CVE-2021-25053 2024-11-21 14:54 2022-01-11 Show GitHub Exploit DB Packet Storm
196998 8.8 HIGH
Network 		wow-company button_generator The Button Generator WordPress plugin before 2.3.3 within the wow-company admin menu page allows to include() arbitrary file with PHP extension (as well as with data:// or http:// protocols), thus le… - CVE-2021-25052 2024-11-21 14:54 2022-01-11 Show GitHub Exploit DB Packet Storm
196999 8.8 HIGH
Network 		wow-company modal_window The Modal Window WordPress plugin before 5.2.2 within the wow-company admin menu page allows to include() arbitrary file with PHP extension (as well as with data:// or http:// protocols), thus leadin… CWE-352
 Origin Validation Error 		CVE-2021-25051 2024-11-21 14:54 2022-01-11 Show GitHub Exploit DB Packet Storm
197000 6.1 MEDIUM
Network 		10web 10websocial The 10Web Social Photo Feed WordPress plugin before 1.4.29 was affected by a reflected Cross-Site Scripting (XSS) vulnerability in the wdi_apply_changes admin page, allowing an attacker to perform su… - CVE-2021-25047 2024-11-21 14:54 2022-01-11 Show GitHub Exploit DB Packet Storm