Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 22, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
258951 9.3 危険 アドビシステムズ
レッドハット		 - Windows および Mac OS X 上で稼働する Adobe Reader および Acrobat における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-3619 2010-10-20 14:36 2010-10-5 Show GitHub Exploit DB Packet Storm
258952 9.3 危険 アドビシステムズ
レッドハット		 - Windows および Mac OS X 上で稼働する Adobe Reader および Acrobat における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-2890 2010-10-20 14:36 2010-10-5 Show GitHub Exploit DB Packet Storm
258953 9.3 危険 アドビシステムズ
レッドハット		 - Windows および Mac OS X 上で稼働する Adobe Reader および Acrobat における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-2889 2010-10-20 14:35 2010-10-5 Show GitHub Exploit DB Packet Storm
258954 9.3 危険 アドビシステムズ - Windows 上で稼働する Adobe Reader および Acrobat における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-2888 2010-10-20 14:35 2010-10-5 Show GitHub Exploit DB Packet Storm
258955 9.3 危険 アドビシステムズ
レッドハット		 - Linux 上で稼働する Adobe Reader および Acrobat における権限を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2010-2887 2010-10-20 14:35 2010-10-5 Show GitHub Exploit DB Packet Storm
258956 6.8 警告 pon software - Archive Decoder における実行ファイル読み込みに関する脆弱性 CWE-Other
その他 		CVE-2010-3160 2010-10-20 14:03 2010-10-20 Show GitHub Exploit DB Packet Storm
258957 5.1 警告 pon software - Explzh における実行ファイル読み込みに関する脆弱性 CWE-Other
その他 		CVE-2010-3159 2010-10-20 14:02 2010-10-20 Show GitHub Exploit DB Packet Storm
258958 6.8 警告 サイバートラスト株式会社
FreeType Project
ターボリナックス
レッドハット		 - FreeType のデモプログラムにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-2527 2010-10-19 15:22 2010-07-12 Show GitHub Exploit DB Packet Storm
258959 6.8 警告 サイバートラスト株式会社
FreeType Project
ターボリナックス
レッドハット		 - FreeType の ftmulti.c におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-2541 2010-10-19 15:20 2010-08-6 Show GitHub Exploit DB Packet Storm
258960 7.5 危険 The PHP Group
アップル
ターボリナックス		 - PHP の SplObjectStorage における重要な情報を取得される脆弱性 CWE-399
リソース管理の問題 		CVE-2010-2225 2010-10-19 15:20 2010-06-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 22, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
198211 5.4 MEDIUM
Network 		motopress timetable_and_event_schedule The Timetable and Event Schedule by MotoPress WordPress plugin before 2.3.19 does not sanitise some of its parameters, which could allow low privilege users such as author to perform XSS attacks agai… - CVE-2021-24724 2024-11-21 14:53 2021-09-14 Show GitHub Exploit DB Packet Storm
198212 4.8 MEDIUM
Network 		ticket-system wordpress_advanced_ticket_system The WordPress Advanced Ticket System, Elite Support Helpdesk WordPress plugin before 1.0.64 does not sanitize or escape form values before saving to the database or when outputting, which allows high… - CVE-2021-24623 2024-11-21 14:53 2021-09-14 Show GitHub Exploit DB Packet Storm
198213 4.8 MEDIUM
Network 		stratospheredigital wp_courses_lms The WP Courses LMS WordPress plugin before 2.0.44 does not sanitise its Video Embed Code, allowing malicious code to be injected in it by high privilege users, even when the unfiltered_html capabilit… CWE-79
Cross-site Scripting 		CVE-2021-24621 2024-11-21 14:53 2021-09-14 Show GitHub Exploit DB Packet Storm
198214 8.8 HIGH
Network 		simple-e-commerce-shopping-cart_project simple-e-commerce-shopping-cart The WordPress Simple Ecommerce Shopping Cart Plugin- Sell products through Paypal plugin through 2.2.5 does not check for the uploaded Downloadable Digital product file, allowing any file, such as PH… CWE-352
CWE-434
 Origin Validation Error
 Unrestricted Upload of File with Dangerous Type  		CVE-2021-24620 2024-11-21 14:53 2021-09-14 Show GitHub Exploit DB Packet Storm
198215 4.8 MEDIUM
Network 		evona per_page_add_to_head The Per page add to head WordPress plugin through 1.4.4 does not properly sanitise one of its setting, allowing malicious HTML to be inserted by high privilege users even when the unfiltered_html cap… - CVE-2021-24619 2024-11-21 14:53 2021-09-14 Show GitHub Exploit DB Packet Storm
198216 4.8 MEDIUM
Network 		oz-plugin book_appointment_online The Book appointment online WordPress plugin before 1.39 does not sanitise or escape Service Prices before outputting it in the List, which could allow high privilege users to perform Cross-Site Scri… - CVE-2021-24614 2024-11-21 14:53 2021-09-14 Show GitHub Exploit DB Packet Storm
198217 5.4 MEDIUM
Network 		custom_post_view_generator_project custom_post_view_generator The create_post_page AJAX action of the Custom Post View Generator WordPress plugin through 0.4.6 (available to authenticated user) does not sanitise or escape user input before outputting it back in… - CVE-2021-24605 2024-11-21 14:53 2021-09-14 Show GitHub Exploit DB Packet Storm
198218 4.3 MEDIUM
Network 		evona per_page_add_to_head The Per page add to head WordPress plugin before 1.4.4 is lacking any CSRF check when saving its settings, which could allow attackers to make a logged in admin change them. Furthermore, as the plugi… CWE-352
CWE-79
 Origin Validation Error
Cross-site Scripting 		CVE-2021-24586 2024-11-21 14:53 2021-09-14 Show GitHub Exploit DB Packet Storm
198219 6.1 MEDIUM
Network 		tipsandtricks-hq software_license_manager The Software License Manager WordPress plugin before 4.4.8 does not sanitise or escape the edit_record parameter before outputting it back in the page in the admin dashboard, leading to a Reflected C… - CVE-2021-24560 2024-11-21 14:53 2021-09-14 Show GitHub Exploit DB Packet Storm
198220 5.4 MEDIUM
Network 		mmrs151 daily_prayer_time The Daily Prayer Time WordPress plugin before 2021.08.10 does not sanitise or escape some of its settings before outputting them in the page, leading to Authenticated Stored Cross-Site Scripting issu… - CVE-2021-24523 2024-11-21 14:53 2021-09-14 Show GitHub Exploit DB Packet Storm