Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 10, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
258151 6.9 警告 アップル - Apple Mac OS X の DesktopServices における disk-quota 制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0064 2010-04-13 15:17 2010-03-29 Show GitHub Exploit DB Packet Storm
258152 6.9 警告 アップル
ターボリナックス
CUPS		 - CUPS の _cupsGetlang 関数における権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0393 2010-04-13 15:17 2010-03-29 Show GitHub Exploit DB Packet Storm
258153 6.8 警告 アップル - Apple Mac OS X の CoreTypes における任意の JavaScript を実行される脆弱性 CWE-Other
その他 		CVE-2010-0063 2010-04-13 15:17 2010-03-29 Show GitHub Exploit DB Packet Storm
258154 6.8 警告 アップル - Apple Mac OS X の CoreMedia および QuickTime におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0062 2010-04-13 15:17 2010-03-29 Show GitHub Exploit DB Packet Storm
258155 6.8 警告 アップル - Apple Mac OS X の CoreAudio における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-0060 2010-04-13 15:16 2010-03-29 Show GitHub Exploit DB Packet Storm
258156 6.8 警告 アップル - Apple Mac OS X の CoreAudio における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-0059 2010-04-13 15:16 2010-03-29 Show GitHub Exploit DB Packet Storm
258157 6.4 警告 アップル - Apple Mac OS X の ClamAV におけるシステムにウィルスを取り込む脆弱性 CWE-16
環境設定 		CVE-2010-0058 2010-04-13 15:16 2010-03-29 Show GitHub Exploit DB Packet Storm
258158 7.5 危険 アップル - Apple Mac OS X の AFP サーバにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-0533 2010-04-13 15:16 2010-03-29 Show GitHub Exploit DB Packet Storm
258159 7.5 危険 アップル - Apple Mac OS X の AFP サーバにおけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0057 2010-04-13 15:16 2010-03-29 Show GitHub Exploit DB Packet Storm
258160 6.4 警告 アップル - Apple Mac OS X のアプリケーションファイアウォールにおけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-2801 2010-04-13 15:15 2010-03-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
196551 4.3 MEDIUM
Network 		gvectors wpdiscuz The wpDiscuz WordPress plugin before 7.3.4 does check for CSRF when adding, editing and deleting comments, which could allow attacker to make logged in users such as admin edit and delete arbitrary c… CWE-352
 Origin Validation Error 		CVE-2021-24806 2024-11-21 14:53 2021-11-9 Show GitHub Exploit DB Packet Storm
196552 4.3 MEDIUM
Network 		wp_survey_plus_project wp_survey_plus The WP Survey Plus WordPress plugin through 1.0 does not have any authorisation and CSRF checks in place in its AJAX actions, allowing any user to call them and add/edit/delete Surveys. Furthermore, … CWE-352
CWE-79
 Origin Validation Error
Cross-site Scripting 		CVE-2021-24801 2024-11-21 14:53 2021-11-9 Show GitHub Exploit DB Packet Storm
196553 6.1 MEDIUM
Network 		androidbubbles wp_header_images The WP Header Images WordPress plugin before 2.0.1 does not sanitise and escape the t parameter before outputting it back in the plugin's settings page, leading to a Reflected Cross-Site Scripting is… CWE-79
Cross-site Scripting 		CVE-2021-24798 2024-11-21 14:53 2021-11-9 Show GitHub Exploit DB Packet Storm
196554 7.2 HIGH
Network 		draftpress header_footer_code_manager The Header Footer Code Manager WordPress plugin before 1.1.14 does not validate and escape the "orderby" and "order" request parameters before using them in a SQL statement when viewing the Snippets … CWE-89
SQL Injection 		CVE-2021-24791 2024-11-21 14:53 2021-11-9 Show GitHub Exploit DB Packet Storm
196555 6.5 MEDIUM
Network 		batch_cat_project batch_cat The Batch Cat WordPress plugin through 0.3 defines 3 custom AJAX actions, which both require authentication but are available for all roles. As a result, any authenticated user (including simple subs… NVD-CWE-Other
CVE-2021-24788 2024-11-21 14:53 2021-11-9 Show GitHub Exploit DB Packet Storm
196556 6.5 MEDIUM
Network 		publishpress post_expirator The Post Expirator WordPress plugin before 2.6.0 does not have proper capability checks in place, which could allow users with a role as low as Contributor to schedule deletion of arbitrary posts. CWE-863
 Incorrect Authorization 		CVE-2021-24783 2024-11-21 14:53 2021-11-9 Show GitHub Exploit DB Packet Storm
196557 6.5 MEDIUM
Network 		fullworks redirect_404_error_page_to_homepage_or_custom_page_with_logs The Redirect 404 Error Page to Homepage or Custom Page with Logs WordPress plugin before 1.7.9 does not check for CSRF when deleting logs, which could allow attacker to make a logged in admin delete … - CVE-2021-24767 2024-11-21 14:53 2021-11-9 Show GitHub Exploit DB Packet Storm
196558 6.5 MEDIUM
Network 		404_to_301_project 404_to_301 The 404 to 301 – Redirect, Log and Notify 404 Errors WordPress plugin before 3.0.9 does not have CSRF check in place when cleaning the logs, which could allow attacker to make a logged in admin delet… - CVE-2021-24766 2024-11-21 14:53 2021-11-9 Show GitHub Exploit DB Packet Storm
196559 8.8 HIGH
Network 		wclovers frontend_manager_for_woocommerce_along_with_bookings_subscription_listings_compatible The WCFM – Frontend Manager for WooCommerce along with Bookings Subscription Listings Compatible WordPress plugin before 6.5.12, when used in combination with another WCFM - WooCommerce Multivendor p… CWE-89
SQL Injection 		CVE-2021-24835 2024-11-21 14:53 2021-11-9 Show GitHub Exploit DB Packet Storm
196560 9.8 CRITICAL
Network 		genetechsolutions pie_register The Registration Forms – User profile, Content Restriction, Spam Protection, Payment Gateways, Invitation Codes WordPress plugin before 3.7.1.6 does not properly escape user data before using it in a… - CVE-2021-24731 2024-11-21 14:53 2021-11-9 Show GitHub Exploit DB Packet Storm