Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 11, 2026, 6:13 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
258401 5.8 警告 オラクル - Oracle Sun Product Suite の Sun Management Center コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0891 2010-05-14 18:41 2010-04-13 Show GitHub Exploit DB Packet Storm
258402 5.8 警告 オラクル - Oracle Sun Product Suite の Sun Java System Access Manager コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0894 2010-05-14 18:41 2010-04-13 Show GitHub Exploit DB Packet Storm
258403 6.8 警告 オラクル - Oracle Sun Product Suite の Sun Java System Communications Express コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0885 2010-05-14 18:41 2010-04-13 Show GitHub Exploit DB Packet Storm
258404 7.1 危険 オラクル - Oracle Sun Product Suite の Sun Convergence コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0896 2010-05-14 18:41 2010-04-13 Show GitHub Exploit DB Packet Storm
258405 7.2 危険 サン・マイクロシステムズ
オラクル		 - Oracle Sun Product Suite の Solaris コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0882 2010-05-14 18:40 2010-04-13 Show GitHub Exploit DB Packet Storm
258406 7.5 危険 オラクル - Oracle Sun Product Suite の Sun Java System Directory Server コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0897 2010-05-14 18:40 2010-04-13 Show GitHub Exploit DB Packet Storm
258407 10 危険 オラクル - Oracle Sun Product Suite の Sun Ray Server Software コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0888 2010-05-14 18:40 2010-04-13 Show GitHub Exploit DB Packet Storm
258408 5 警告 サン・マイクロシステムズ
Pidgin
レッドハット		 - Pidgin の gtkimhtml.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-0423 2010-05-14 18:39 2010-02-18 Show GitHub Exploit DB Packet Storm
258409 4.3 警告 サン・マイクロシステムズ
Pidgin
レッドハット		 - Pidgin の libpurple におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-0420 2010-05-14 18:38 2010-02-18 Show GitHub Exploit DB Packet Storm
258410 7.5 危険 Carnegie Mellon University (Project Cyrus)
アップル
サイバートラスト株式会社
サン・マイクロシステムズ
オラクル
レッドハット		 - Cyrus SASL ライブラリにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-0688 2010-05-14 18:37 2009-05-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1281 5.3 MEDIUM
Network 		- - The Helpfulcrowd Product Reviews plugin for WordPress is vulnerable to Authorization Bypass via PHP Type Juggling in versions up to, and including, 1.2.9. This is due to the `helpfulcrowd_validate_to… New CWE-843
Type Confusion 		CVE-2026-8499 2026-06-9 22:33 2026-06-9 Show GitHub Exploit DB Packet Storm
1282 6.4 MEDIUM
Network 		- - The Extra Settings for RocketChat plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'rocketchat' shortcode's 'title' attribute in versions up to, and including, 0.1. This is d… New CWE-79
Cross-site Scripting 		CVE-2026-8841 2026-06-9 22:33 2026-06-9 Show GitHub Exploit DB Packet Storm
1283 6.4 MEDIUM
Network 		- - The RomanCart Ecommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'blclass' attribute (and other attributes) of the romancart_button shortcode in versions up to, and i… New CWE-79
Cross-site Scripting 		CVE-2026-8880 2026-06-9 22:33 2026-06-9 Show GitHub Exploit DB Packet Storm
1284 6.4 MEDIUM
Network 		- - The WP ApplicantStack Jobs Display plugin for WordPress is vulnerable to Stored Cross-Site Scripting via Shortcode Attributes in all versions up to, and including, 1.1.1 due to insufficient input san… New CWE-79
Cross-site Scripting 		CVE-2026-8882 2026-06-9 22:33 2026-06-9 Show GitHub Exploit DB Packet Storm
1285 6.4 MEDIUM
Network 		- - The kk blog card plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'blog-card' shortcode in all versions up to, and including, 1.3. This is due to insufficient input … New CWE-79
Cross-site Scripting 		CVE-2026-8895 2026-06-9 22:33 2026-06-9 Show GitHub Exploit DB Packet Storm
1286 6.4 MEDIUM
Network 		- - The Global Body Mass Index Calculator plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'gbmicalc' shortcode in versions up to, and including, 1.2. This is due to insufficient… New CWE-79
Cross-site Scripting 		CVE-2026-8883 2026-06-9 22:33 2026-06-9 Show GitHub Exploit DB Packet Storm
1287 4.3 MEDIUM
Network 		- - The AJAX Report Comments plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.0.4. This is due to missing or incorrect nonce validation on the rc_o… New CWE-352
 Origin Validation Error 		CVE-2026-8902 2026-06-9 22:33 2026-06-9 Show GitHub Exploit DB Packet Storm
1288 4.3 MEDIUM
Network 		- - The FastPicker, an order picker and order management system (oms) for WooCommerce on steroids plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.… New CWE-352
 Origin Validation Error 		CVE-2026-8904 2026-06-9 22:33 2026-06-9 Show GitHub Exploit DB Packet Storm
1289 6.1 MEDIUM
Network 		- - The WP-Ultimate-Map plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.1. This is due to missing nonce validation on the process_init() function hook… New CWE-352
 Origin Validation Error 		CVE-2026-8907 2026-06-9 22:33 2026-06-9 Show GitHub Exploit DB Packet Storm
1290 4.3 MEDIUM
Network 		- - The WpMobi plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 0.0.3. This is due to missing or incorrect nonce validation on the handleSaveGeneralS… New CWE-352
 Origin Validation Error 		CVE-2026-8909 2026-06-9 22:33 2026-06-9 Show GitHub Exploit DB Packet Storm