Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 14, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
258841 7.5 危険 Haxx
アップル
サイバートラスト株式会社
レッドハット		 - cURL および libcurl における、任意の SSL サーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2009-2417 2010-04-13 14:46 2009-08-12 Show GitHub Exploit DB Packet Storm
258842 6.8 警告 Haxx
アップル
サイバートラスト株式会社
レッドハット		 - curl および libcurl の redirect 実装における任意のコマンドを実行される脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2009-0037 2010-04-13 14:45 2009-03-3 Show GitHub Exploit DB Packet Storm
258843 9.3 危険 ジャストシステム - 一太郎シリーズにおける任意のコードが実行される脆弱性 CWE-noinfo
情報不足 		CVE-2010-1424 2010-04-12 15:32 2010-04-12 Show GitHub Exploit DB Packet Storm
258844 4.4 警告 ヒューレット・パッカード - HP HP-UX におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2010-1030 2010-04-12 12:19 2010-03-26 Show GitHub Exploit DB Packet Storm
258845 10 危険 IntelliCom Innovation AB - IntelliCom NetBiter Config HICP におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-4462 2010-04-12 12:19 2010-03-29 Show GitHub Exploit DB Packet Storm
258846 7.5 危険 The PHP Group - PHP の セッション拡張子における open_basedir または safe_mode 制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-1130 2010-04-12 12:19 2010-03-26 Show GitHub Exploit DB Packet Storm
258847 4.3 警告 Zope Foundation - Zope におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-1104 2010-04-9 16:21 2010-03-25 Show GitHub Exploit DB Packet Storm
258848 4 警告 ヒューレット・パッカード - HP HP-UX の NFS/ONCplus にあるインストールプロセスにおけるファイルシステムのアクセス権を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0451 2010-04-9 16:21 2010-03-25 Show GitHub Exploit DB Packet Storm
258849 7.5 危険 GNU Project
サイバートラスト株式会社
レッドハット		 - GnuTLS の gnutls_x509_crt_get_serial 関数におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0731 2010-04-9 16:21 2010-03-25 Show GitHub Exploit DB Packet Storm
258850 4.3 警告 シスコシステムズ - Cisco Router and Security Device Manager におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-0594 2010-04-8 15:03 2010-04-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 15, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
197611 8.8 HIGH
Network 		tipsandtricks-hq software_license_manager The del_reistered_domains AJAX action of the Software License Manager WordPress plugin before 4.5.1 does not have any CSRF checks, and is vulnerable to a CSRF attack - CVE-2021-24711 2024-11-21 14:53 2021-10-11 Show GitHub Exploit DB Packet Storm
197612 4.8 MEDIUM
Network 		awplife weather_effect The Weather Effect WordPress plugin before 1.3.6 does not properly validate and escape some of its settings (like *_size_leaf, *_flakes_leaf, *_speed) which could lead to Stored Cross-Site Scripting … - CVE-2021-24709 2024-11-21 14:53 2021-10-11 Show GitHub Exploit DB Packet Storm
197613 4.8 MEDIUM
Network 		expresstech quiz_and_survey_master The Quiz And Survey Master WordPress plugin before 7.3.2 does not escape the Quiz Url Slug setting before outputting it in some pages, which could allow high privilege users to perform Cross-Site Scr… - CVE-2021-24691 2024-11-21 14:53 2021-10-11 Show GitHub Exploit DB Packet Storm
197614 5.4 MEDIUM
Network 		kibokolabs chained_quiz The Chained Quiz WordPress plugin before 1.2.7.2 does not properly sanitize or escape inputs in the plugin's settings. - CVE-2021-24690 2024-11-21 14:53 2021-10-11 Show GitHub Exploit DB Packet Storm
197615 5.4 MEDIUM
Network 		awplife weather_effect The Weather Effect WordPress plugin before 1.3.4 does not have any CSRF checks in place when saving its settings, and do not validate or escape them, which could lead to Stored Cross-Site Scripting i… CWE-352
CWE-79
 Origin Validation Error
Cross-site Scripting 		CVE-2021-24683 2024-11-21 14:53 2021-10-11 Show GitHub Exploit DB Packet Storm
197616 4.8 MEDIUM
Network 		duplicatepro duplicate_page The Duplicate Page WordPress plugin through 4.4.2 does not sanitise or escape the Duplicate Post Suffix settings before outputting it, which could allow high privilege users to perform Stored Cross-S… - CVE-2021-24681 2024-11-21 14:53 2021-10-11 Show GitHub Exploit DB Packet Storm
197617 4.8 MEDIUM
Network 		wpbrigade simple_social_buttons The Simple Social Media Share Buttons WordPress plugin before 3.2.4 does not escape the Share Title settings before outputting it in the frontend pages or posts (depending on the settings used), allo… - CVE-2021-24656 2024-11-21 14:53 2021-10-11 Show GitHub Exploit DB Packet Storm
197618 7.5 HIGH
Network 		ays-pro poll_maker The Poll Maker WordPress plugin before 3.4.2 allows unauthenticated users to perform SQL injection via the ays_finish_poll AJAX action. While the result is not disclosed in the response, it is possib… - CVE-2021-24651 2024-11-21 14:53 2021-10-11 Show GitHub Exploit DB Packet Storm
197619 5.4 MEDIUM
Network 		wpdevart coming_soon_and_maintenance_mode The Coming soon and Maintenance mode WordPress plugin before 3.5.3 does not properly sanitize inputs submitted by authenticated users when setting adding or modifying coming soon or maintenance mode … - CVE-2021-24577 2024-11-21 14:53 2021-10-11 Show GitHub Exploit DB Packet Storm
197620 5.4 MEDIUM
Network 		techearty easy_accordion The Easy Accordion WordPress plugin before 2.0.22 does not properly sanitize inputs when adding new items to an accordion. - CVE-2021-24576 2024-11-21 14:53 2021-10-11 Show GitHub Exploit DB Packet Storm