Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 16, 2026, 4:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
258341	4.3	警告	Opera Software ASA	-	Opera の HTML コンテンツにおけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2010-2664	2010-09-27 16:20	2010-07-1	Show	GitHub Exploit DB Packet Storm

258342	4.3	警告	Opera Software ASA	-	Opera におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2010-2663	2010-09-27 16:20	2010-07-1	Show	GitHub Exploit DB Packet Storm

258343	4.3	警告	Opera Software ASA	-	Opera におけるポップアップブロッカーを回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-2662	2010-09-27 16:20	2010-07-1	Show	GitHub Exploit DB Packet Storm

258344	4.3	警告	Opera Software ASA	-	Opera における重要な情報を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-2661	2010-09-27 16:19	2010-06-21	Show	GitHub Exploit DB Packet Storm

258345	4.3	警告	Opera Software ASA	-	Opera における IDN ドメインになりすまされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-2660	2010-09-27 16:19	2010-06-21	Show	GitHub Exploit DB Packet Storm

258346	4.3	警告	Opera Software ASA	-	Opera における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-2659	2010-09-27 16:19	2010-03-2	Show	GitHub Exploit DB Packet Storm

258347	4.3	警告	Opera Software ASA	-	Opera における任意のファイルのアップロードを誘発させられる脆弱性	CWE-20 不適切な入力確認	CVE-2010-2658	2010-09-27 16:19	2010-07-1	Show	GitHub Exploit DB Packet Storm

258348	9.3	危険	Opera Software ASA	-	Windows および Mac OS X 上で稼働する Opera における任意のコードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-2657	2010-09-27 16:18	2010-07-1	Show	GitHub Exploit DB Packet Storm

258349	6.8	警告	Opera Software ASA	-	Opera における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-2576	2010-09-27 16:18	2010-08-12	Show	GitHub Exploit DB Packet Storm

258350	4.3	警告	Opera Software ASA	-	Opera におけるアドレスバーの処理に関する脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-2455	2010-09-27 16:18	2010-06-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
197011	6.1	MEDIUM Network	wpvivid	migration\ _backup\ _staging	The Migration, Backup, Staging WordPress plugin before 0.9.69 does not have authorisation when adding remote storages, and does not sanitise as well as escape a parameter from such unauthenticated re…	-	CVE-2021-24994	2024-11-21 14:54	2022-02-28	Show	GitHub Exploit DB Packet Storm

197012	6.1	MEDIUM Network	use_any_font_project	use_any_font	The Use Any Font \| Custom Font Uploader WordPress plugin before 6.2.1 does not have any authorisation checks when assigning a font, allowing unauthenticated users to sent arbitrary CSS which will the…	CWE-862 Missing Authorization	CVE-2021-24977	2024-11-21 14:54	2022-02-28	Show	GitHub Exploit DB Packet Storm

197013	5.4	MEDIUM Network	magnigenie	wp_responsive_menu	The WP Responsive Menu WordPress plugin before 3.1.7.1 does not have capability and CSRF checks in the wpr_live_update AJAX action, as well as do not sanitise and escape some of the data submitted. A…	-	CVE-2021-24971	2024-11-21 14:54	2022-02-28	Show	GitHub Exploit DB Packet Storm

197014	5.4	MEDIUM Network	bootstrapped	dynamic_widgets	The Dynamic Widgets WordPress plugin through 1.5.16 does not escape the prefix parameter before outputting it back in an attribute when using the term_tree AJAX action (available to any authenticated…	CWE-79 Cross-site Scripting	CVE-2021-24933	2024-11-21 14:54	2022-02-28	Show	GitHub Exploit DB Packet Storm

197015	4.8	MEDIUM Network	statcounter	statcounter	The StatCounter WordPress plugin before 2.0.7 does not sanitise and escape the Project ID and Secure Code settings, which could allow high privilege users to perform Cross-Site Scripting attacks even…	-	CVE-2021-24920	2024-11-21 14:54	2022-02-28	Show	GitHub Exploit DB Packet Storm

197016	4.3	MEDIUM Network	infornweb	logo_showcase_with_slick_slider	The Logo Showcase with Slick Slider WordPress plugin before 2.0.1 does not have CSRF check in the lswss_save_attachment_data AJAX action, allowing attackers to make a logged in high privilege user, c…	-	CVE-2021-24913	2024-11-21 14:54	2022-02-28	Show	GitHub Exploit DB Packet Storm

197017	4.8	MEDIUM Network	anti-malware_security_and_brute-force_firewall_project	anti-malware_security_and_brute-force_firewall	The Anti-Malware Security and Brute-Force Firewall WordPress plugin before 4.20.94 does not sanitise and escape the POST data before outputting it back in attributes of an admin page, leading to a Re…	-	CVE-2021-25101	2024-11-21 14:54	2022-02-21	Show	GitHub Exploit DB Packet Storm

197018	6.1	MEDIUM Network	givewp	givewp	The GiveWP WordPress plugin before 2.17.3 does not escape the s parameter before outputting it back in an attribute in the Donation Forms dashboard, leading to a Reflected Cross-Site Scripting	-	CVE-2021-25100	2024-11-21 14:54	2022-02-21	Show	GitHub Exploit DB Packet Storm

197019	6.1	MEDIUM Network	givewp	givewp	The GiveWP WordPress plugin before 2.17.3 does not sanitise and escape the form_id parameter before outputting it back in the response of an unauthenticated request via the give_checkout_login AJAX a…	-	CVE-2021-25099	2024-11-21 14:54	2022-02-21	Show	GitHub Exploit DB Packet Storm

197020	8.8	HIGH Network	sygnoos	popup_builder	The Popup Builder WordPress plugin before 4.0.7 does not validate and sanitise the sgpb_type parameter before using it in a require statement, leading to a Local File Inclusion issue. Furthermore, si…	-	CVE-2021-25082	2024-11-21 14:54	2022-02-21	Show	GitHub Exploit DB Packet Storm