Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 14, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
258421 9.3 危険 アップル - Apple Safari の WebKit における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-1774 2010-07-14 16:44 2010-06-10 Show GitHub Exploit DB Packet Storm
258422 4.3 警告 アップル - Apple Safari の WebKit におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-1762 2010-07-14 16:44 2010-06-10 Show GitHub Exploit DB Packet Storm
258423 9.3 危険 アップル - Apple Safari の WebKit における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2010-1761 2010-07-14 16:44 2010-06-10 Show GitHub Exploit DB Packet Storm
258424 9.3 危険 アップル - Apple Safari の WebKit における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2010-1759 2010-07-14 16:42 2010-06-10 Show GitHub Exploit DB Packet Storm
258425 5 警告 アップル - Apple Safari の WebKit における重要な情報を取得される脆弱性 CWE-310
暗号の問題 		CVE-2010-1413 2010-07-14 16:40 2010-06-10 Show GitHub Exploit DB Packet Storm
258426 5.8 警告 アップル - Apple Safari の WebKit における IRC を経由してデータを公開される脆弱性 CWE-Other
その他 		CVE-2010-1409 2010-07-14 16:39 2010-06-10 Show GitHub Exploit DB Packet Storm
258427 4.3 警告 アップル - Apple Safari の WebKit における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-1406 2010-07-14 16:38 2010-06-10 Show GitHub Exploit DB Packet Storm
258428 9.3 危険 アップル - Apple Safari の WebKit における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2010-1404 2010-07-14 16:37 2010-06-10 Show GitHub Exploit DB Packet Storm
258429 9.3 危険 アップル - Apple Safari の WebKit における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2010-1402 2010-07-14 16:36 2010-06-10 Show GitHub Exploit DB Packet Storm
258430 9.3 危険 アップル - Apple Safari の WebKit の Cascading Style Sheets 実装における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2010-1401 2010-07-14 16:35 2010-06-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 15, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
197041 9.0 CRITICAL
Network 		fatcatapps pixel_cat The Pixel Cat WordPress plugin before 2.6.2 does not have CSRF check when saving its settings, and did not sanitise as well as escape some of them, which could allow attacker to make a logged in admi… - CVE-2021-24922 2024-11-21 14:54 2021-12-13 Show GitHub Exploit DB Packet Storm
197042 6.1 MEDIUM
Network 		10web photo_gallery The Photo Gallery by 10Web WordPress plugin before 1.5.68 is vulnerable to Reflected Cross-Site Scripting (XSS) issues via the bwg_album_breadcrumb_0 and shortcode_id GET parameters passed to the bwg… - CVE-2021-25041 2024-11-21 14:54 2021-12-7 Show GitHub Exploit DB Packet Storm
197043 9.8 CRITICAL
Network 		roundupwp registrations_for_the_events_calendar The Registrations for the Events Calendar WordPress plugin before 2.7.6 does not sanitise and escape the event_id in the rtec_send_unregister_link AJAX action (available to both unauthenticated and a… - CVE-2021-24943 2024-11-21 14:54 2021-12-7 Show GitHub Exploit DB Packet Storm
197044 6.1 MEDIUM
Network 		profilepress loginwp The LoginWP (Formerly Peter's Login Redirect) WordPress plugin before 3.0.0.5 does not sanitise and escape the rul_login_url and rul_logout_url parameter before outputting them back in attributes in … - CVE-2021-24939 2024-11-21 14:54 2021-12-7 Show GitHub Exploit DB Packet Storm
197045 6.1 MEDIUM
Network 		woocommerce woocommerce_currency_switcher The WOOCS WordPress plugin before 1.3.7.1 does not sanitise and escape the key parameter of the woocs_update_profiles_data AJAX action (available to any authenticated user) before outputting it back … - CVE-2021-24938 2024-11-21 14:54 2021-12-7 Show GitHub Exploit DB Packet Storm
197046 6.1 MEDIUM
Network 		wp_google_fonts_project wp_google_fonts The WP Google Fonts WordPress plugin before 3.1.5 does not escape the googlefont_ajax_name and googlefont_ajax_family parameter of the googlefont_action AJAx action (available to any authenticated us… - CVE-2021-24935 2024-11-21 14:54 2021-12-7 Show GitHub Exploit DB Packet Storm
197047 9.8 CRITICAL
Network 		ays-pro secure_copy_content_protection_and_content_locking The Secure Copy Content Protection and Content Locking WordPress plugin before 2.8.2 does not escape the sccp_id parameter of the ays_sccp_results_export_file AJAX action (available to both unauthent… - CVE-2021-24931 2024-11-21 14:54 2021-12-7 Show GitHub Exploit DB Packet Storm
197048 5.4 MEDIUM
Network 		booking-wp-plugin bookly The WordPress Online Booking and Scheduling Plugin WordPress plugin before 20.3.1 does not escape the Staff Full Name field before outputting it back in a page, which could lead to a Stored Cross-Sit… - CVE-2021-24930 2024-11-21 14:54 2021-12-7 Show GitHub Exploit DB Packet Storm
197049 6.1 MEDIUM
Network 		email_log_project email_log The Email Log WordPress plugin before 2.4.8 does not escape the d parameter before outputting it back in an attribute in the Log page, leading to a Reflected Cross-Site Scripting issue - CVE-2021-24924 2024-11-21 14:54 2021-12-7 Show GitHub Exploit DB Packet Storm
197050 7.5 HIGH
Network 		wpserveur wps_hide_login The WPS Hide Login WordPress plugin before 1.9.1 has a bug which allows to get the secret login page by setting a random referer string and making a request to /wp-admin/options.php as an unauthentic… CWE-863
 Incorrect Authorization 		CVE-2021-24917 2024-11-21 14:54 2021-12-7 Show GitHub Exploit DB Packet Storm