Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 20, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
258211 5 警告 アップル
ターボリナックス
MySQL AB		 - MySQL の my_net_skip_rest 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2010-1849 2010-11-26 16:54 2010-05-5 Show GitHub Exploit DB Packet Storm
258212 9.3 危険 アップル - iPhone および iPod touch 上で稼動する Apple iOS の ImageIO における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-1811 2010-11-26 16:53 2010-09-8 Show GitHub Exploit DB Packet Storm
258213 6.8 警告 アップル - Apple iOS の CFNetwork におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-1752 2010-11-26 16:48 2010-06-22 Show GitHub Exploit DB Packet Storm
258214 6.8 警告 アップル - Apple Mac OS X の CoreText における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-1837 2010-11-26 15:39 2010-11-15 Show GitHub Exploit DB Packet Storm
258215 6.8 警告 アップル - Apple Mac OS X の CoreGraphics におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-1836 2010-11-26 15:37 2010-11-15 Show GitHub Exploit DB Packet Storm
258216 5.8 警告 アップル - Apple Mac OS X の CFNetwork におけるユーザを追跡可能な脆弱性 CWE-20
不適切な入力確認 		CVE-2010-1834 2010-11-26 15:36 2010-11-15 Show GitHub Exploit DB Packet Storm
258217 6.8 警告 アップル - Apple Mac OS X の Apple Type Services における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-1833 2010-11-26 15:34 2010-11-15 Show GitHub Exploit DB Packet Storm
258218 6.8 警告 アップル - Apple Mac OS X の Apple Type Services におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-1832 2010-11-26 15:32 2010-11-15 Show GitHub Exploit DB Packet Storm
258219 4.3 警告 Google - Google Chrome における情報漏えいの脆弱性 CWE-200
情報漏えい 		- 2010-11-26 11:02 2010-11-26 Show GitHub Exploit DB Packet Storm
258220 6.8 警告 アップル - Apple Mac OS X の Apple Type Services における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-1831 2010-11-25 15:17 2010-11-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 20, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
197431 5.3 MEDIUM
Network 		correosexpress_project correosexpress The CorreosExpress WordPress plugin through 2.6.0 generates log files which are publicly accessible, and contain sensitive information such as sender/receiver names, phone numbers, physical and email… - CVE-2021-25009 2024-11-21 14:54 2022-03-7 Show GitHub Exploit DB Packet Storm
197432 5.4 MEDIUM
Network 		iptanus wordpress_file_upload_pro
wordpress_file_upload 		The WordPress File Upload WordPress plugin before 4.16.3, wordpress-file-upload-pro WordPress plugin before 4.16.3 does not escape some of its shortcode argument, which could allow users with a role … CWE-79
Cross-site Scripting 		CVE-2021-24961 2024-11-21 14:54 2022-03-7 Show GitHub Exploit DB Packet Storm
197433 5.4 MEDIUM
Network 		iptanus wordpress_file_upload_pro
wordpress_file_upload 		The WordPress File Upload WordPress plugin before 4.16.3, wordpress-file-upload-pro WordPress plugin before 4.16.3 allows users with a role as low as Contributor to configure the upload form in a way… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2021-24960 2024-11-21 14:54 2022-03-7 Show GitHub Exploit DB Packet Storm
197434 6.1 MEDIUM
Network 		tinywebgallery advanced_iframe The Advanced iFrame WordPress plugin before 2022 does not sanitise and escape the ai_config_id parameter before outputting it back in an admin page, leading to a Reflected Cross-Site Scripting issue CWE-79
Cross-site Scripting 		CVE-2021-24953 2024-11-21 14:54 2022-03-7 Show GitHub Exploit DB Packet Storm
197435 8.8 HIGH
Network 		tatvic conversios.io The Conversios.io WordPress plugin before 4.6.2 does not sanitise, validate and escape the sync_progressive_data parameter for the tvcajax_product_sync_bantch_wise AJAX action before using it in a SQ… CWE-89
SQL Injection 		CVE-2021-24952 2024-11-21 14:54 2022-03-7 Show GitHub Exploit DB Packet Storm
197436 5.3 MEDIUM
Network 		yoast yoast_seo The Yoast SEO WordPress plugin (from versions 16.7 until 17.2) discloses the full internal path of featured images in posts via the wp/v2/posts REST endpoints which could help an attacker identify ot… - CVE-2021-25118 2024-11-21 14:54 2022-02-28 Show GitHub Exploit DB Packet Storm
197437 6.1 MEDIUM
Network 		i-plugins whmcs_bridge The WHMCS Bridge WordPress plugin before 6.4b does not sanitise and escape the error parameter before outputting it back in admin dashboard, leading to a Reflected Cross-Site Scripting - CVE-2021-25112 2024-11-21 14:54 2022-02-28 Show GitHub Exploit DB Packet Storm
197438 6.5 MEDIUM
Network 		wpgooglemap wp_google_map The Maps Plugin using Google Maps for WordPress plugin before 1.8.4 does not have CSRF checks in most of its AJAX actions, which could allow attackers to make logged in admins delete arbitrary posts … - CVE-2021-25081 2024-11-21 14:54 2022-02-28 Show GitHub Exploit DB Packet Storm
197439 5.4 MEDIUM
Network 		plugins-market wp_visitor_statistics_\(real_time_traffic\) The WP Visitor Statistics (Real Time Traffic) WordPress plugin before 5.5 does not have authorisation and CSRF checks in the updateIpAddress AJAX action, allowing any authenticated user to call it, o… - CVE-2021-25042 2024-11-21 14:54 2022-02-28 Show GitHub Exploit DB Packet Storm
197440 6.1 MEDIUM
Network 		wp_user_project wp_user The WP User WordPress plugin before 7.0 does not sanitise and escape some parameters in pages where the [wp_user] shortcode is used, leading to Reflected Cross-Site Scripting issues - CVE-2021-25034 2024-11-21 14:54 2022-02-28 Show GitHub Exploit DB Packet Storm