Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 12, 2026, 12:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
258711 5 警告 サイバートラスト株式会社
OpenSSL Project
IBM
レッドハット		 - OpenSSL の dtls1_process_out_of_seq_message 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-1378 2010-03-12 14:44 2009-05-19 Show GitHub Exploit DB Packet Storm
258712 5 警告 サイバートラスト株式会社
OpenSSL Project
IBM
レッドハット		 - OpenSSL の dtls1_buffer_record 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2009-1377 2010-03-12 14:43 2009-05-19 Show GitHub Exploit DB Packet Storm
258713 5 警告 アップル
サイバートラスト株式会社
OpenSSL Project
Apache Software Foundation
レッドハット		 - OpenSSL の zlib_stateful_init 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-1678 2010-03-12 14:43 2008-07-10 Show GitHub Exploit DB Packet Storm
258714 5.8 警告 OpenPNEプロジェクト - OpenPNE におけるアクセス制限回避の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-1040 2010-03-11 12:39 2010-03-5 Show GitHub Exploit DB Packet Storm
258715 10 危険 アドビシステムズ - Adobe Download Manager における任意のプログラムをダウンロードおよびインストールされる脆弱性 CWE-noinfo
情報不足 		CVE-2010-0189 2010-03-11 12:07 2010-02-23 Show GitHub Exploit DB Packet Storm
258716 7.2 危険 サイバートラスト株式会社
Linux
レッドハット		 - Linux kernel の collect_rx_frame 関数における脆弱性 CWE-119
バッファエラー 		CVE-2009-4005 2010-03-11 12:05 2009-11-20 Show GitHub Exploit DB Packet Storm
258717 7.8 危険 サイバートラスト株式会社
Linux
レッドハット		 - Linux kernel の RTL8169 NIC ドライバにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-1389 2010-03-11 12:04 2009-06-16 Show GitHub Exploit DB Packet Storm
258718 5 警告 サン・マイクロシステムズ
サイバートラスト株式会社
VMware
Net-SNMP
レッドハット		 - net-snmp の snmpd におけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2009-1887 2010-03-11 12:03 2009-06-25 Show GitHub Exploit DB Packet Storm
258719 7.1 危険 シスコシステムズ - 複数の Cisco 製品におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2010-0568 2010-03-10 11:23 2010-02-17 Show GitHub Exploit DB Packet Storm
258720 5 警告 シスコシステムズ - 複数の Cisco 製品におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2010-0567 2010-03-10 11:23 2010-02-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
196551 6.5 MEDIUM
Network 		themeum qubely The Qubely WordPress plugin before 1.7.8 does not have authorisation and CSRF check on the qubely_delete_saved_block AJAX action, and does not ensure that the block to be deleted belong to the plugin… CWE-352
 Origin Validation Error 		CVE-2021-25013 2024-11-21 14:54 2022-01-24 Show GitHub Exploit DB Packet Storm
196552 6.1 MEDIUM
Network 		codesnippets code_snippets The Code Snippets WordPress plugin before 2.14.3 does not escape the snippets-safe-mode parameter before outputting it back in attributes, leading to a Reflected Cross-Site Scripting issue - CVE-2021-25008 2024-11-21 14:54 2022-01-24 Show GitHub Exploit DB Packet Storm
196553 6.5 MEDIUM
Network 		wpplugin accept_donations_with_paypal The Accept Donations with PayPal WordPress plugin before 1.3.4 does not have CSRF check in place and does not ensure that the post to be deleted belongs to the plugin, allowing attackers to make a lo… - CVE-2021-24989 2024-11-21 14:54 2022-01-24 Show GitHub Exploit DB Packet Storm
196554 6.1 MEDIUM
Network 		yikesinc easy_forms_for_mailchimp The Easy Forms for Mailchimp WordPress plugin before 6.8.6 does not sanitise and escape the field_name and field_type parameters before outputting them back in attributes, leading to Reflected Cross-… - CVE-2021-24985 2024-11-21 14:54 2022-01-24 Show GitHub Exploit DB Packet Storm
196555 6.1 MEDIUM
Network 		wbolt smart_seo_tool The Smart SEO Tool WordPress plugin before 3.0.6 does not sanitise and escape the search parameter before outputting it back in an attribute when the TDK optimisation setting is enabled, leading to a… - CVE-2021-24976 2024-11-21 14:54 2022-01-24 Show GitHub Exploit DB Packet Storm
196556 5.4 MEDIUM
Network 		adtribes product_feed_pro_for_woocommerce The Product Feed PRO for WooCommerce WordPress plugin before 11.0.7 does not have authorisation and CSRF check in some of its AJAX actions, allowing any authenticated users to call then, which could … - CVE-2021-24974 2024-11-21 14:54 2022-01-24 Show GitHub Exploit DB Packet Storm
196557 5.7 MEDIUM
Network 		etoilewebdesign ultimate_faq The Ultimate FAQ WordPress plugin before 2.1.2 does not have capability and CSRF checks in the ewd_ufaq_welcome_add_faq and ewd_ufaq_welcome_add_faq_page AJAX actions, available to any authenticated … CWE-352
 Origin Validation Error 		CVE-2021-24968 2024-11-21 14:54 2022-01-24 Show GitHub Exploit DB Packet Storm
196558 5.4 MEDIUM
Network 		fivestarplugins five_star_restaurant_reservations The Five Star Restaurant Reservations WordPress plugin before 2.4.8 does not have capability and CSRF checks in the rtb_welcome_set_schedule AJAX action, allowing any authenticated users to call it. … - CVE-2021-24965 2024-11-21 14:54 2022-01-24 Show GitHub Exploit DB Packet Storm
196559 8.0 HIGH
Network 		wp_extra_file_types_project wp_extra_file_types The WP Extra File Types WordPress plugin before 0.5.1 does not have CSRF check when saving its settings, nor sanitise and escape some of them, which could allow attackers to make a logged in admin ch… - CVE-2021-24936 2024-11-21 14:54 2022-01-24 Show GitHub Exploit DB Packet Storm
196560 6.1 MEDIUM
Network 		brevo newsletter\
_smtp\
_email_marketing_and_subscribe 		The Newsletter, SMTP, Email marketing and Subscribe forms by Sendinblue WordPress plugin before 3.1.25 does not escape the sib-statistics-date parameter before outputting it back in an attribute, lea… - CVE-2021-24923 2024-11-21 14:54 2022-01-24 Show GitHub Exploit DB Packet Storm