Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 16, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
259071	4.3	警告	アドビシステムズレッドハット	-	Adobe Reader および Acrobat におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-0190	2010-04-28 15:56	2010-04-13	Show	GitHub Exploit DB Packet Storm

259072	7.8	危険	サイバートラスト株式会社 Linux レッドハット	-	Linux kernel の r8169 ドライバにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2009-4537	2010-04-28 15:21	2010-01-12	Show	GitHub Exploit DB Packet Storm

259073	4.3	警告	IBM Apache Software Foundation アップルサイバートラスト株式会社ヒューレット・パッカードターボリナックスレッドハット	-	Apache の mod_proxy_ftp における UTF-7 エンコードに関するクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-0005	2010-04-28 15:18	2008-01-11	Show	GitHub Exploit DB Packet Storm

259074	10	危険	IntelliCom Innovation AB	-	IntelliCom NetBiter デバイスにおけるデフォルトパスワードの問題	CWE-255 証明書・パスワード管理	CVE-2009-4463	2010-04-27 16:10	2010-04-7	Show	GitHub Exploit DB Packet Storm

259075	9.3	危険	Foxit Software Inc	-	Foxit Reader に任意のコード実行が可能な脆弱性	CWE-94 コード・インジェクション	CVE-2010-1239	2010-04-27 16:10	2010-04-6	Show	GitHub Exploit DB Packet Storm

259076	10	危険	ヒューレット・パッカード	-	Broadcom NetXtreme 管理用ファームウェアにバッファオーバーフローの脆弱性	CWE-noinfo 情報不足	CVE-2010-0104	2010-04-27 16:09	2010-03-31	Show	GitHub Exploit DB Packet Storm

259077	6.8	警告	アップル	-	AirPort Utility におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-2822	2010-04-27 16:09	2010-03-31	Show	GitHub Exploit DB Packet Storm

259078	9.3	危険	アップル	-	Apple Safari の ColorSync における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2010-0040	2010-04-27 15:20	2010-03-15	Show	GitHub Exploit DB Packet Storm

259079	4	警告	Squid-cache.org サイバートラスト株式会社ターボリナックスレッドハット	-	Squid の lib/rfc1035.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-0308	2010-04-27 15:20	2010-01-28	Show	GitHub Exploit DB Packet Storm

259080	6.8	警告	アップル	-	Apple Mac OS X の QuickDraw Manager におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-2837	2010-04-27 15:20	2009-11-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
196981	6.8	MEDIUM Network	isc fedoraproject netapp siemens juniper	bind fedora h300s_firmware h500s_firmware h700s_firmware h300e_firmware h500e_firmware h700e_firmware h410s_firmware h410c_firmware sinec_ins junos	BIND 9.11.0 -> 9.11.36 9.12.0 -> 9.16.26 9.17.0 -> 9.18.0 BIND Supported Preview Editions: 9.11.4-S1 -> 9.11.36-S1 9.16.8-S1 -> 9.16.26-S1 Versions of BIND 9 earlier than those shown - back to 9.1.0,…	CWE-444 HTTP Request Smuggling	CVE-2021-25220	2024-11-21 14:54	2022-03-23	Show	GitHub Exploit DB Packet Storm

196982	6.1	MEDIUM Network	squirrly	seo_plugin_by_squirrly_seo	The SEO Plugin by Squirrly SEO WordPress plugin before 11.1.12 does not escape the type parameter before outputting it back in an attribute in an admin page, leading to a Reflected Cross-Site Scripti…	-	CVE-2021-25019	2024-11-21 14:54	2022-03-22	Show	GitHub Exploit DB Packet Storm

196983	5.5	MEDIUM Network	patreon	patreon_wordpress	The Patreon WordPress plugin before 1.8.2 does not sanitise and escape the field "Custom Patreon Page name", which could allow high privilege users to perform Cross-Site Scripting attacks even when t…	-	CVE-2021-25026	2024-11-21 14:54	2022-03-15	Show	GitHub Exploit DB Packet Storm

196984	9.8	CRITICAL Network	molie_instructure_canvas_linking_tool_project	molie_instructure_canvas_linking_tool	The MOLIE WordPress plugin through 0.5 does not validate and escape a post parameter before using in a SQL statement, leading to an SQL Injection	-	CVE-2021-25007	2024-11-21 14:54	2022-03-15	Show	GitHub Exploit DB Packet Storm

196985	6.1	MEDIUM Network	molie_instructure_canvas_linking_tool_project	molie_instructure_canvas_linking_tool	The MOLIE WordPress plugin through 0.5 does not escape the course_id parameter before outputting it back in the admin dashboard, leading to a Reflected Cross-Site Scripting issue	-	CVE-2021-25006	2024-11-21 14:54	2022-03-15	Show	GitHub Exploit DB Packet Storm

196986	9.8	CRITICAL Network	wptaskforce	wpcargo_track_\&_trace	The WPCargo Track & Trace WordPress plugin before 6.9.0 contains a file which could allow unauthenticated attackers to write a PHP file anywhere on the web server, leading to RCE	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2021-25003	2024-11-21 14:54	2022-03-15	Show	GitHub Exploit DB Packet Storm

196987	6.1	MEDIUM Network	wki	idpay_for_contact_form_7	The IDPay for Contact Form 7 WordPress plugin through 2.1.2 does not sanitise and escape the idpay_error parameter before outputting it back in the page leading to a Reflected Cross-Site Scripting	-	CVE-2021-24996	2024-11-21 14:54	2022-03-15	Show	GitHub Exploit DB Packet Storm

196988	4.8	MEDIUM Network	html5_responsive_faq_project	html5_responsive_faq	The HTML5 Responsive FAQ WordPress plugin through 2.8.5 does not properly sanitise and escape some of its settings, which could allow a high privilege users to perform Cross-Site Scripting attacks ev…	-	CVE-2021-24995	2024-11-21 14:54	2022-03-15	Show	GitHub Exploit DB Packet Storm

196989	6.4	MEDIUM Network	childtheme-generator	child_theme_generator	The Child Theme Generator WordPress plugin through 2.2.7 does not sanitise escape the parade parameter before outputting it back, leading to a Reflected Cross-Site Scripting in the admin dashboard	-	CVE-2021-24982	2024-11-21 14:54	2022-03-15	Show	GitHub Exploit DB Packet Storm

196990	4.9	MEDIUM Network	bestwebsoft	error_log_viewer	The Error Log Viewer WordPress plugin through 1.1.1 does not validate the path of the log file to clear, allowing high privilege users to clear arbitrary files on the web server, including those outs…	-	CVE-2021-24966	2024-11-21 14:54	2022-03-15	Show	GitHub Exploit DB Packet Storm