Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
260421 9.3 危険 アドビシステムズ
レッドハット		 - Adobe Reader および Acrobat における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-0194 2010-04-28 15:57 2010-04-13 Show GitHub Exploit DB Packet Storm
260422 9.3 危険 アドビシステムズ
レッドハット		 - Adobe Reader および Acrobat における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2010-0193 2010-04-28 15:57 2010-04-13 Show GitHub Exploit DB Packet Storm
260423 9.3 危険 アドビシステムズ
レッドハット		 - Adobe Reader および Acrobat における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2010-0192 2010-04-28 15:57 2010-04-13 Show GitHub Exploit DB Packet Storm
260424 9.3 危険 アドビシステムズ
レッドハット		 - Adobe Reader および Acrobat における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-0191 2010-04-28 15:56 2010-04-13 Show GitHub Exploit DB Packet Storm
260425 4.3 警告 アドビシステムズ
レッドハット		 - Adobe Reader および Acrobat におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-0190 2010-04-28 15:56 2010-04-13 Show GitHub Exploit DB Packet Storm
260426 7.8 危険 サイバートラスト株式会社
Linux
レッドハット		 - Linux kernel の r8169 ドライバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2009-4537 2010-04-28 15:21 2010-01-12 Show GitHub Exploit DB Packet Storm
260427 4.3 警告 IBM
Apache Software Foundation
アップル
サイバートラスト株式会社
ヒューレット・パッカード
ターボリナックス
レッドハット		 - Apache の mod_proxy_ftp における UTF-7 エンコードに関するクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-0005 2010-04-28 15:18 2008-01-11 Show GitHub Exploit DB Packet Storm
260428 10 危険 IntelliCom Innovation AB - IntelliCom NetBiter デバイスにおけるデフォルトパスワードの問題 CWE-255
証明書・パスワード管理 		CVE-2009-4463 2010-04-27 16:10 2010-04-7 Show GitHub Exploit DB Packet Storm
260429 9.3 危険 Foxit Software Inc - Foxit Reader に任意のコード実行が可能な脆弱性 CWE-94
コード・インジェクション 		CVE-2010-1239 2010-04-27 16:10 2010-04-6 Show GitHub Exploit DB Packet Storm
260430 10 危険 ヒューレット・パッカード - Broadcom NetXtreme 管理用ファームウェアにバッファオーバーフローの脆弱性 CWE-noinfo
情報不足 		CVE-2010-0104 2010-04-27 16:09 2010-03-31 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 27, 2026, 4:35 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
200041 4.3 MEDIUM
Network 		page\/post_content_shortcode_project page\/post_content_shortcode The Page/Post Content Shortcode WordPress plugin through 1.0 does not have proper authorisation in place, allowing users with a role as low as contributor to access draft/private/password protected/t… CWE-863
 Incorrect Authorization 		CVE-2021-24819 2024-11-21 14:53 2021-12-13 Show GitHub Exploit DB Packet Storm
200042 4.3 MEDIUM
Network 		wp_limits_project wp_limits The WP Limits WordPress plugin through 1.0 does not have CSRF check when saving its settings, allowing attacker to make a logged in admin change them, which could make the blog unstable by setting lo… - CVE-2021-24818 2024-11-21 14:53 2021-12-13 Show GitHub Exploit DB Packet Storm
200043 5.4 MEDIUM
Network 		ultimate_nofollow_project ultimate_nofollow The Ultimate NoFollow WordPress plugin through 1.4.8 does not sanitise and escape the href attribute of its shortcodes, allowing users with a role as low as contributor to perform Cross-Site Scriptin… - CVE-2021-24817 2024-11-21 14:53 2021-12-13 Show GitHub Exploit DB Packet Storm
200044 6.5 MEDIUM
Network 		phoeniixx filter_portfolio_gallery The Filter Portfolio Gallery WordPress plugin through 1.5 is lacking Cross-Site Request Forgery (CSRF) check when deleting a Gallery, which could allow attackers to make a logged in admin delete arbi… - CVE-2021-24795 2024-11-21 14:53 2021-12-13 Show GitHub Exploit DB Packet Storm
200045 6.1 MEDIUM
Network 		wpeden shiny_buttons The Shiny Buttons WordPress plugin through 1.1.0 does not have any authorisation and CSRF in place when saving a template (wpbtn_save_template function hooked to the init action), nor sanitise and es… - CVE-2021-24792 2024-11-21 14:53 2021-12-13 Show GitHub Exploit DB Packet Storm
200046 4.3 MEDIUM
Network 		contact_form_advanced_database_project contact_form_advanced_database The Contact Form Advanced Database WordPress plugin through 1.0.8 does not have any authorisation as well as CSRF checks in its delete_cf7_data and export_cf7_data AJAX actions, available to any auth… CWE-352
CWE-862
 Origin Validation Error
 Missing Authorization 		CVE-2021-24790 2024-11-21 14:53 2021-12-13 Show GitHub Exploit DB Packet Storm
200047 6.5 MEDIUM
Network 		wp_admin_logo_changer_project wp_admin_logo_changer The WP Admin Logo Changer WordPress plugin through 1.0 does not have CSRF check when saving its settings, which could allow attackers to make a logged in admin update them via a CSRF attack. - CVE-2021-24784 2024-11-21 14:53 2021-12-13 Show GitHub Exploit DB Packet Storm
200048 4.8 MEDIUM
Network 		flex_local_fonts_project flex_local_fonts The Flex Local Fonts WordPress plugin through 1.0.0 does not escape the Class Name field when adding a font, which could allow hight privilege users to perform Cross-Site Scripting attacks even when … - CVE-2021-24782 2024-11-21 14:53 2021-12-13 Show GitHub Exploit DB Packet Storm
200049 4.3 MEDIUM
Network 		single_post_exporter_project single_post_exporter The Single Post Exporter WordPress plugin through 1.1.1 does not have CSRF checks when saving its settings, which could allow attackers to make a logged in admin change them via a CSRF attack and giv… CWE-352
 Origin Validation Error 		CVE-2021-24780 2024-11-21 14:53 2021-12-13 Show GitHub Exploit DB Packet Storm
200050 4.8 MEDIUM
Network 		inspirational_quote_rotator_project inspirational_quote_rotator The Inspirational Quote Rotator WordPress plugin through 1.0.0 does not sanitize and escape some of its quote fields when adding/editing a quote as admin, leading to Stored Cross-Site scripting issue… - CVE-2021-24771 2024-11-21 14:53 2021-12-13 Show GitHub Exploit DB Packet Storm