Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 15, 2026, 12:08 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
257911 9.3 危険 アドビシステムズ - Adobe Shockwave Player の dirapi.dll におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-3655 2010-11-17 16:49 2010-10-28 Show GitHub Exploit DB Packet Storm
257912 9.3 危険 アドビシステムズ - Adobe Shockwave Player の TextXtra.x32 におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-2582 2010-11-17 16:49 2010-10-28 Show GitHub Exploit DB Packet Storm
257913 9.3 危険 アドビシステムズ - Adobe Shockwave Player の dirapi.dll における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-2581 2010-11-17 16:48 2010-10-28 Show GitHub Exploit DB Packet Storm
257914 9.3 危険 アドビシステムズ - Adobe Shockwave Player に脆弱性 CWE-119
バッファエラー 		CVE-2010-3653 2010-11-16 14:49 2010-10-25 Show GitHub Exploit DB Packet Storm
257915 7.5 危険 富士通 - Interstage Application Server におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-6258 2010-11-16 14:48 2008-02-19 Show GitHub Exploit DB Packet Storm
257916 6.5 警告 アップル
サイバートラスト株式会社
MySQL AB
ターボリナックス
レッドハット		 - MySQL におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-1848 2010-11-15 16:20 2010-05-5 Show GitHub Exploit DB Packet Storm
257917 5 警告 サイバートラスト株式会社
Zabbix		 - Zabbix サーバの trapper/trapper.c 内にある process_trap 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2009-4500 2010-11-15 15:41 2009-07-21 Show GitHub Exploit DB Packet Storm
257918 9.3 危険 サイバートラスト株式会社
Zabbix		 - Zabbix Agent の net.c 内にある NET_TCP_LISTEN 関数における任意のコマンドを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-4502 2010-11-15 15:41 2009-09-10 Show GitHub Exploit DB Packet Storm
257919 5 警告 サイバートラスト株式会社
Zabbix		 - Zabbix サーバの zbx_get_next_field 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2009-4501 2010-11-15 15:40 2009-11-25 Show GitHub Exploit DB Packet Storm
257920 7.5 危険 サイバートラスト株式会社
Zabbix		 - Zabbix サーバの get_history_lastid 関数における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4499 2010-11-15 15:40 2009-09-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 15, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
197641 6.1 MEDIUM
Network 		wpzoom recipe_card_blocks_for_gutenberg_\&_elementor The Recipe Card Blocks by WPZOOM WordPress plugin before 2.8.1 does not escape the message parameter before outputting it back in the admin dashboard, leading to a Reflected Cross-Site Scripting issue - CVE-2021-24632 2024-11-21 14:53 2021-09-28 Show GitHub Exploit DB Packet Storm
197642 4.8 MEDIUM
Network 		cozmoslabs translatepress The TranslatePress WordPress plugin before 2.0.9 does not implement a proper sanitisation on the translated strings. The 'trp_sanitize_string' function only removes script tag with a regex, still all… - CVE-2021-24610 2024-11-21 14:53 2021-09-28 Show GitHub Exploit DB Packet Storm
197643 4.8 MEDIUM
Network 		hu-manity cookie_notice_\&_compliance_for_gdpr_\/_ccpa The Cookie Notice & Compliance for GDPR / CCPA WordPress plugin before 2.1.2 does not escape the value of its Button Text setting when outputting it in an attribute in the frontend, allowing high pri… - CVE-2021-24569 2024-11-21 14:53 2021-09-28 Show GitHub Exploit DB Packet Storm
197644 9.8 CRITICAL
Network 		schiocco support_board_-_chat_and_help_desk The Support Board WordPress plugin before 3.3.4 does not escape multiple POST parameters (such as status_code, department, user_id, conversation_id, conversation_status_code, and recipient_id) before… - CVE-2021-24741 2024-11-21 14:53 2021-09-20 Show GitHub Exploit DB Packet Storm
197645 7.2 HIGH
Network 		simple_schools_staff_directory_project simple_schools_staff_directory The Simple Schools Staff Directory WordPress plugin through 1.1 does not validate uploaded logo pictures to ensure that are indeed images, allowing high privilege users such as admin to upload arbitr… - CVE-2021-24663 2024-11-21 14:53 2021-09-20 Show GitHub Exploit DB Packet Storm
197646 6.1 MEDIUM
Network 		limit_login_attempts_project limit_login_attempts The Limit Login Attempts WordPress plugin before 4.0.50 does not escape the IP addresses (which can be controlled by attacker via headers such as X-Forwarded-For) of attempted logins before outputtin… - CVE-2021-24657 2024-11-21 14:53 2021-09-20 Show GitHub Exploit DB Packet Storm
197647 5.4 MEDIUM
Network 		gutenslider gutenslider The WordPress Slider Block Gutenslider plugin before 5.2.0 does not escape the minWidth attribute of a Gutenburg block, which could allow users with a role as low as contributor to perform Cross-Site… - CVE-2021-24640 2024-11-21 14:53 2021-09-20 Show GitHub Exploit DB Packet Storm
197648 8.1 HIGH
Network 		ffw omgf The OMGF WordPress plugin before 4.5.4 does not enforce path validation, authorisation and CSRF checks in the omgf_ajax_empty_dir AJAX action, which allows any authenticated users to delete arbitrary… - CVE-2021-24639 2024-11-21 14:53 2021-09-20 Show GitHub Exploit DB Packet Storm
197649 9.1 CRITICAL
Network 		ffw omgf The OMGF WordPress plugin before 4.5.4 does not escape or validate the handle parameter of the REST API, which allows unauthenticated users to perform path traversal and overwrite arbitrary CSS file … - CVE-2021-24638 2024-11-21 14:53 2021-09-20 Show GitHub Exploit DB Packet Storm
197650 5.4 MEDIUM
Network 		fontsplugin fonts The Google Fonts Typography WordPress plugin before 3.0.3 does not escape and sanitise some of its block settings, allowing users with as role as low as Contributor to perform Stored Cross-Site Scrip… - CVE-2021-24637 2024-11-21 14:53 2021-09-20 Show GitHub Exploit DB Packet Storm