Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 14, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
258591 9.3 危険 日立 - 複数の日立製品におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-4776 2010-05-28 18:42 2009-07-21 Show GitHub Exploit DB Packet Storm
258592 6.8 警告 サイバートラスト株式会社
レッドハット		 - TeX Live 2009 および teTeX の dvips における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2010-0827 2010-05-27 17:40 2010-05-6 Show GitHub Exploit DB Packet Storm
258593 6.8 警告 サイバートラスト株式会社
レッドハット		 - teTeX および TeXlive 2007 の hpc.c における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2007-5935 2010-05-27 17:40 2007-11-13 Show GitHub Exploit DB Packet Storm
258594 4.3 警告 サイバートラスト株式会社
レッドハット		 - dvipng および teTeX の set.c における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-0829 2010-05-27 17:40 2010-05-6 Show GitHub Exploit DB Packet Storm
258595 1.9 注意 IBM - IBM WebSphere Application Server における KeyRingPassword のパスワード情報が漏えいする脆弱性 CWE-255
証明書・パスワード管理 		CVE-2010-0769 2010-05-27 17:25 2010-04-1 Show GitHub Exploit DB Packet Storm
258596 4.3 警告 IBM - IBM WebSphere Application Server の管理コンソールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-0768 2010-05-27 17:25 2010-04-1 Show GitHub Exploit DB Packet Storm
258597 4 警告 IBM - IBM WebSphere Application Server におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-0770 2010-05-27 17:25 2010-04-1 Show GitHub Exploit DB Packet Storm
258598 5 警告 IBM - IBM WebSphere Application Server (WAS) の Administrative Console コンポーネントにおける WAS セッションの内容を読まれる脆弱性 CWE-200
情報漏えい 		CVE-2009-1898 2010-05-27 17:24 2009-06-3 Show GitHub Exploit DB Packet Storm
258599 6.8 警告 サイバートラスト株式会社
レッドハット		 - TeX Live 2009 および teTeX の dvipsk/dospecial.c における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2010-1440 2010-05-26 16:33 2010-05-6 Show GitHub Exploit DB Packet Storm
258600 6.8 警告 サイバートラスト株式会社
レッドハット		 - TeX Live および teTeX の predospecial 関数における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2010-0739 2010-05-26 16:32 2010-04-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
197801 5.4 MEDIUM
Network 		prothemedesign browser_screenshots The Browser Screenshots WordPress plugin before 1.7.6 allowed authenticated users with a role as low as Contributor to perform Stored Cross-Site Scripting attacks as the image_class parameter of the … - CVE-2021-24439 2024-11-21 14:53 2021-07-13 Show GitHub Exploit DB Packet Storm
197802 6.1 MEDIUM
Network 		codeblab glass The Glass WordPress plugin through 1.3.2 does not sanitise or escape its "Glass Pages" setting before outputting in a page, leading to a Stored Cross-Site Scripting issue. Furthermore, the plugin did… CWE-352
CWE-79
 Origin Validation Error
Cross-site Scripting 		CVE-2021-24434 2024-11-21 14:53 2021-07-13 Show GitHub Exploit DB Packet Storm
197803 6.1 MEDIUM
Network 		salonbookingsystem salon_booking_system The Salon booking system WordPress plugin before 6.3.1 does not properly sanitise and escape the First Name field when booking an appointment, allowing low privilege users such as subscriber to set J… - CVE-2021-24429 2024-11-21 14:53 2021-07-13 Show GitHub Exploit DB Packet Storm
197804 4.8 MEDIUM
Network 		boldgrid w3_total_cache The W3 Total Cache WordPress plugin before 2.1.3 did not sanitise or escape some of its CDN settings, allowing high privilege users to use JavaScript in them, which will be output in the page, leadin… CWE-79
Cross-site Scripting 		CVE-2021-24427 2024-11-21 14:53 2021-07-13 Show GitHub Exploit DB Packet Storm
197805 4.8 MEDIUM
Network 		web-dorado backup-wd The Backup by 10Web – Backup and Restore Plugin WordPress plugin through 1.0.20 does not sanitise or escape the tab parameter before outputting it back in the page, leading to a reflected Cross-Site … - CVE-2021-24426 2024-11-21 14:53 2021-07-13 Show GitHub Exploit DB Packet Storm
197806 5.4 MEDIUM
Network 		webfactoryltd wp_reset The WP Reset – Most Advanced WordPress Reset Tool WordPress plugin before 1.90 did not sanitise or escape its extra_data parameter when creating a snapshot via the admin dashboard, leading to an auth… CWE-79
Cross-site Scripting 		CVE-2021-24424 2024-11-21 14:53 2021-07-13 Show GitHub Exploit DB Packet Storm
197807 5.4 MEDIUM
Network 		eyecix jobsearch_wp_job_board The WP JobSearch WordPress plugin before 1.7.4 did not sanitise or escape multiple of its parameters from the my-resume page before outputting them in the page, allowing low privilege users to use Ja… - CVE-2021-24421 2024-11-21 14:53 2021-07-13 Show GitHub Exploit DB Packet Storm
197808 5.4 MEDIUM
Network 		emarketdesign request_a_quote The Request a Quote WordPress plugin before 2.3.4 did not sanitise and escape some of its quote fields when adding/editing a quote as admin, leading to Stored Cross-Site scripting issues when the quo… - CVE-2021-24420 2024-11-21 14:53 2021-07-13 Show GitHub Exploit DB Packet Storm
197809 4.8 MEDIUM
Network 		wp_youtube_lyte_project wp_youtube_lyte The WP YouTube Lyte WordPress plugin before 1.7.16 did not sanitise or escape its lyte_yt_api_key and lyte_notification settings before outputting them back in the page, allowing high privilege users… - CVE-2021-24419 2024-11-21 14:53 2021-07-13 Show GitHub Exploit DB Packet Storm
197810 4.8 MEDIUM
Network 		smooth_scroll_page_up\/down_buttons_project smooth_scroll_page_up\/down_buttons The Smooth Scroll Page Up/Down Buttons WordPress plugin through 1.4 does not properly sanitise and validate its psb_positioning settings, allowing high privilege users such as admin to set an XSS pay… - CVE-2021-24418 2024-11-21 14:53 2021-07-13 Show GitHub Exploit DB Packet Storm