Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 19, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
258701	9.3	危険	アドビシステムズ	-	Adobe Shockwave Player における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-2877	2010-09-13 15:45	2010-08-24	Show	GitHub Exploit DB Packet Storm

258702	9.3	危険	アドビシステムズ	-	Adobe Shockwave Player における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-2876	2010-09-13 15:44	2010-08-24	Show	GitHub Exploit DB Packet Storm

258703	9.3	危険	アドビシステムズ	-	Adobe Shockwave Player における整数符号エラーの脆弱性	CWE-189 数値処理の問題	CVE-2010-2875	2010-09-13 15:44	2010-08-24	Show	GitHub Exploit DB Packet Storm

258704	9.3	危険	アドビシステムズ	-	Adobe Shockwave Player における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-2874	2010-09-13 15:44	2010-08-24	Show	GitHub Exploit DB Packet Storm

258705	9.3	危険	アドビシステムズ	-	Adobe Shockwave Player における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-2873	2010-09-13 15:43	2010-08-24	Show	GitHub Exploit DB Packet Storm

258706	9.3	危険	アドビシステムズ	-	Adobe Shockwave Player における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-2872	2010-09-10 15:17	2010-08-24	Show	GitHub Exploit DB Packet Storm

258707	9.3	危険	アドビシステムズ	-	Adobe Shockwave Player の 3D オブジェクト関数における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2010-2871	2010-09-10 15:17	2010-08-24	Show	GitHub Exploit DB Packet Storm

258708	9.3	危険	アドビシステムズ	-	Adobe Shockwave Player の DIRAPIX.dll における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-2870	2010-09-10 15:17	2010-08-24	Show	GitHub Exploit DB Packet Storm

258709	9.3	危険	アドビシステムズ	-	Adobe Shockwave Player の IML32.dll における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-2869	2010-09-10 15:16	2010-08-24	Show	GitHub Exploit DB Packet Storm

258710	9.3	危険	アドビシステムズ	-	Adobe Shockwave Player の IML32.dll における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-2868	2010-09-10 15:16	2010-08-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 20, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
198351	4.8	MEDIUM Network	boldgrid	w3_total_cache	The W3 Total Cache WordPress plugin before 2.1.3 did not sanitise or escape some of its CDN settings, allowing high privilege users to use JavaScript in them, which will be output in the page, leadin…	CWE-79 Cross-site Scripting	CVE-2021-24427	2024-11-21 14:53	2021-07-13	Show	GitHub Exploit DB Packet Storm

198352	4.8	MEDIUM Network	web-dorado	backup-wd	The Backup by 10Web – Backup and Restore Plugin WordPress plugin through 1.0.20 does not sanitise or escape the tab parameter before outputting it back in the page, leading to a reflected Cross-Site …	-	CVE-2021-24426	2024-11-21 14:53	2021-07-13	Show	GitHub Exploit DB Packet Storm

198353	5.4	MEDIUM Network	webfactoryltd	wp_reset	The WP Reset – Most Advanced WordPress Reset Tool WordPress plugin before 1.90 did not sanitise or escape its extra_data parameter when creating a snapshot via the admin dashboard, leading to an auth…	CWE-79 Cross-site Scripting	CVE-2021-24424	2024-11-21 14:53	2021-07-13	Show	GitHub Exploit DB Packet Storm

198354	5.4	MEDIUM Network	eyecix	jobsearch_wp_job_board	The WP JobSearch WordPress plugin before 1.7.4 did not sanitise or escape multiple of its parameters from the my-resume page before outputting them in the page, allowing low privilege users to use Ja…	-	CVE-2021-24421	2024-11-21 14:53	2021-07-13	Show	GitHub Exploit DB Packet Storm

198355	5.4	MEDIUM Network	emarketdesign	request_a_quote	The Request a Quote WordPress plugin before 2.3.4 did not sanitise and escape some of its quote fields when adding/editing a quote as admin, leading to Stored Cross-Site scripting issues when the quo…	-	CVE-2021-24420	2024-11-21 14:53	2021-07-13	Show	GitHub Exploit DB Packet Storm

198356	4.8	MEDIUM Network	wp_youtube_lyte_project	wp_youtube_lyte	The WP YouTube Lyte WordPress plugin before 1.7.16 did not sanitise or escape its lyte_yt_api_key and lyte_notification settings before outputting them back in the page, allowing high privilege users…	-	CVE-2021-24419	2024-11-21 14:53	2021-07-13	Show	GitHub Exploit DB Packet Storm

198357	4.8	MEDIUM Network	smooth_scroll_page_up\/down_buttons_project	smooth_scroll_page_up\/down_buttons	The Smooth Scroll Page Up/Down Buttons WordPress plugin through 1.4 does not properly sanitise and validate its psb_positioning settings, allowing high privilege users such as admin to set an XSS pay…	-	CVE-2021-24418	2024-11-21 14:53	2021-07-13	Show	GitHub Exploit DB Packet Storm

198358	6.1	MEDIUM Network	plugin-planet	prismatic	The Prismatic WordPress plugin before 2.8 does not escape the 'tab' GET parameter before outputting it back in an attribute, leading to a reflected Cross-Site Scripting issue which will be executed i…	-	CVE-2021-24409	2024-11-21 14:53	2021-07-13	Show	GitHub Exploit DB Packet Storm

198359	5.4	MEDIUM Network	plugin-planet	prismatic	The Prismatic WordPress plugin before 2.8 does not sanitise or validate some of its shortcode parameters, allowing users with a role as low as Contributor to set Cross-Site payload in them. A post ma…	-	CVE-2021-24408	2024-11-21 14:53	2021-07-13	Show	GitHub Exploit DB Packet Storm

198360	5.4	MEDIUM Network	deliciousbrains	wp_offload_ses_lite	The WP Offload SES Lite WordPress plugin before 1.4.5 did not escape some of the fields in the Activity page of the admin dashboard, such as the email's id, subject and recipient, which could lead to…	-	CVE-2021-24494	2024-11-21 14:53	2021-07-6	Show	GitHub Exploit DB Packet Storm