Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 16, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
259411 9.3 危険 アップル - Apple Mac OS X の CoreAudio における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-0036 2010-02-16 11:45 2010-01-19 Show GitHub Exploit DB Packet Storm
259412 9.3 危険 アドビシステムズ - Adobe Shockwave Player における任意のコードを実行される脆弱性 CWE-189
数値処理の問題 		CVE-2009-4003 2010-02-16 11:44 2010-01-19 Show GitHub Exploit DB Packet Storm
259413 9.3 危険 アドビシステムズ - Adobe Shockwave Player における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2009-4002 2010-02-16 11:44 2010-01-19 Show GitHub Exploit DB Packet Storm
259414 6.9 警告 サイバートラスト株式会社
Linux
レッドハット		 - Linux kernel における競合状態の脆弱性 CWE-362
競合状態 		CVE-2009-3547 2010-02-16 11:44 2009-11-3 Show GitHub Exploit DB Packet Storm
259415 4.9 警告 サイバートラスト株式会社
Linux
レッドハット		 - Linux kernel の netlink サブシステムにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2005-4881 2010-02-16 11:43 2009-10-19 Show GitHub Exploit DB Packet Storm
259416 4.7 警告 サイバートラスト株式会社
Linux
レッドハット		 - Linux kernel の execve 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2009-2848 2010-02-16 11:43 2009-08-18 Show GitHub Exploit DB Packet Storm
259417 4.9 警告 サイバートラスト株式会社
Linux
レッドハット		 - Linux kernel の do_sigaltstack 関数における情報漏えいの脆弱性 CWE-noinfo
情報不足 		CVE-2009-2847 2010-02-16 11:43 2009-08-18 Show GitHub Exploit DB Packet Storm
259418 7.2 危険 サイバートラスト株式会社
Linux
レッドハット		 - Linux kernel の personality サブシステムにおける NULL ポインタ参照の脆弱性 CWE-16
環境設定 		CVE-2009-1895 2010-02-16 11:43 2009-07-16 Show GitHub Exploit DB Packet Storm
259419 4.3 警告 オラクル - BEA Product Suite の WebLogic Server コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0069 2010-02-15 19:32 2010-01-12 Show GitHub Exploit DB Packet Storm
259420 5 警告 オラクル - BEA Product Suite の WebLogic Server コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0078 2010-02-15 19:32 2010-01-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
197621 4.3 MEDIUM
Network 		tipsandtricks-hq simple_download_monitor The Simple Download Monitor WordPress plugin before 3.9.6 allows users with a role as low as Contributor to remove thumbnails from downloads they do not own, even if they cannot normally edit the dow… NVD-CWE-noinfo
CVE-2021-24698 2024-11-21 14:53 2021-11-9 Show GitHub Exploit DB Packet Storm
197622 6.1 MEDIUM
Network 		tipsandtricks-hq simple_download_monitor The Simple Download Monitor WordPress plugin before 3.9.5 does not escape the 1) sdm_active_tab GET parameter and 2) sdm_stats_start_date/sdm_stats_end_date POST parameters before outputting them bac… - CVE-2021-24697 2024-11-21 14:53 2021-11-9 Show GitHub Exploit DB Packet Storm
197623 7.5 HIGH
Network 		tipsandtricks-hq simple_download_monitor The Simple Download Monitor WordPress plugin before 3.9.6 saves logs in a predictable location, and does not have any authentication or authorisation in place to prevent unauthenticated users to down… - CVE-2021-24695 2024-11-21 14:53 2021-11-9 Show GitHub Exploit DB Packet Storm
197624 6.5 MEDIUM
Network 		genie_wp_favicon_project genie_wp_favicon The Genie WP Favicon WordPress plugin through 0.5.2 does not have CSRF in place when updating the favicon, which could allow attackers to make a logged in admin change it via a CSRF attack CWE-352
 Origin Validation Error 		CVE-2021-24674 2024-11-21 14:53 2021-11-9 Show GitHub Exploit DB Packet Storm
197625 8.8 HIGH
Network 		feataholic maz_loader The MAZ Loader – Preloader Builder for WordPress plugin before 1.3.3 does not validate or escape the loader_id parameter of the mzldr shortcode, which allows users with a role as low as Contributor t… - CVE-2021-24669 2024-11-21 14:53 2021-11-9 Show GitHub Exploit DB Packet Storm
197626 9.0 CRITICAL
Network 		tipsandtricks-hq simple_download_monitor The Simple Download Monitor WordPress plugin before 3.9.5 does not escape the "File Thumbnail" post meta before outputting it in some pages, which could allow users with a role as low as Contributor … - CVE-2021-24693 2024-11-21 14:53 2021-11-9 Show GitHub Exploit DB Packet Storm
197627 4.8 MEDIUM
Network 		igexsolutions wpschoolpress The School Management System – WPSchoolPress WordPress plugin before 2.1.17 sanitise some fields using sanitize_text_field() but does not escape them before outputting in attributes, resulting in Sto… - CVE-2021-24664 2024-11-21 14:53 2021-11-9 Show GitHub Exploit DB Packet Storm
197628 8.1 HIGH
Network 		genetechsolutions pie_register The Registration Forms – User profile, Content Restriction, Spam Protection, Payment Gateways, Invitation Codes WordPress plugin before 3.1.7.6 has a flaw in the social login implementation, allowing… - CVE-2021-24647 2024-11-21 14:53 2021-11-9 Show GitHub Exploit DB Packet Storm
197629 4.8 MEDIUM
Network 		bookingholdings booking.com_banner_creator The Booking.com Banner Creator WordPress plugin before 1.4.3 does not properly sanitize inputs when creating banners, which could allow high privilege users to perform Cross-Site Scripting attacks ev… - CVE-2021-24646 2024-11-21 14:53 2021-11-9 Show GitHub Exploit DB Packet Storm
197630 4.8 MEDIUM
Network 		bookingholdings booking.com_product_helper The Booking.com Product Helper WordPress plugin before 1.0.2 does not sanitize and escape Product Code when creating Product Shortcode, which could allow high privilege users to perform Cross-Site Sc… - CVE-2021-24645 2024-11-21 14:53 2021-11-9 Show GitHub Exploit DB Packet Storm