Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 24, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
240721 6.8 警告 Piwik - Piwik における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2011-4941 2012-09-20 16:04 2011-06-21 Show GitHub Exploit DB Packet Storm
240722 4 警告 OpenStack - OpenStack Keystone における取り消されたロールの特権を保持される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-4413 2012-09-20 15:59 2012-09-12 Show GitHub Exploit DB Packet Storm
240723 6.8 警告 FlexCMS - FlexCMS におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-1901 2012-09-20 15:31 2012-09-18 Show GitHub Exploit DB Packet Storm
240724 7.5 危険 Digium - Asterisk の main/utils.c におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-1184 2012-09-20 15:30 2012-03-15 Show GitHub Exploit DB Packet Storm
240725 10 危険 ヒューレット・パッカード - HP Operations Orchestration における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2012-3258 2012-09-20 15:27 2012-09-17 Show GitHub Exploit DB Packet Storm
240726 4.3 警告 シーメンス - Siemens WinCC の WebNavigator におけるユーザ名およびパスワードを取得される脆弱性 CWE-200
情報漏えい 		CVE-2012-3034 2012-09-20 12:38 2012-09-10 Show GitHub Exploit DB Packet Storm
240727 7.5 危険 シーメンス - Siemens WinCC の WebNavigator における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-3032 2012-09-20 12:37 2012-09-10 Show GitHub Exploit DB Packet Storm
240728 4.3 警告 シーメンス - Siemens WinCC の WebNavigator におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-3031 2012-09-20 12:24 2012-09-10 Show GitHub Exploit DB Packet Storm
240729 5 警告 シーメンス - Siemens WinCC の WebNavigator におけるファイルを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-3030 2012-09-20 12:23 2012-09-10 Show GitHub Exploit DB Packet Storm
240730 6.8 警告 シーメンス - Siemens WinCC の WebNavigator におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-3028 2012-09-20 12:17 2012-09-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
268771 8.8 HIGH
Network 		gowebsolutions wp_customer_reviews The wp-customer-reviews plugin before 3.0.9 for WordPress has CSRF in the admin tools. CWE-352
 Origin Validation Error 		CVE-2016-10902 2024-11-21 11:45 2019-08-21 Show GitHub Exploit DB Packet Storm
268772 6.1 MEDIUM
Network 		gowebsolutions wp_customer_reviews The wp-customer-reviews plugin before 3.0.9 for WordPress has XSS in the admin tools. CWE-79
Cross-site Scripting 		CVE-2016-10901 2024-11-21 11:45 2019-08-21 Show GitHub Exploit DB Packet Storm
268773 6.1 MEDIUM
Network 		wpmanage uji_countdown The uji-countdown plugin before 2.0.7 for WordPress has XSS. CWE-79
Cross-site Scripting 		CVE-2016-10900 2024-11-21 11:45 2019-08-21 Show GitHub Exploit DB Packet Storm
268774 5.3 MEDIUM
Network 		fabrix total_security The total-security plugin before 3.4.1 for WordPress has a settings-change vulnerability. CWE-20
 Improper Input Validation  		CVE-2016-10899 2024-11-21 11:45 2019-08-21 Show GitHub Exploit DB Packet Storm
268775 6.1 MEDIUM
Network 		fabrix total_security The total-security plugin before 3.4.1 for WordPress has XSS. CWE-79
Cross-site Scripting 		CVE-2016-10898 2024-11-21 11:45 2019-08-21 Show GitHub Exploit DB Packet Storm
268776 6.1 MEDIUM
Network 		sermon_browser_project sermon_browser The sermon-browser plugin before 0.45.16 for WordPress has multiple XSS issues. CWE-79
Cross-site Scripting 		CVE-2016-10897 2024-11-21 11:45 2019-08-21 Show GitHub Exploit DB Packet Storm
268777 6.1 MEDIUM
Network 		clogica seo_redirection The seo-redirection plugin before 4.3 for WordPress has stored XSS. CWE-79
Cross-site Scripting 		CVE-2016-10896 2024-11-21 11:45 2019-08-21 Show GitHub Exploit DB Packet Storm
268778 6.1 MEDIUM
Network 		optiontree_project optiontree The option-tree plugin before 2.6.0 for WordPress has XSS via an add_list_item or add_social_links AJAX request. CWE-79
Cross-site Scripting 		CVE-2016-10895 2024-11-21 11:45 2019-08-21 Show GitHub Exploit DB Packet Storm
268779 6.1 MEDIUM
Network 		kibokolabs chained_quiz The chained-quiz plugin before 1.0 for WordPress has multiple XSS issues. CWE-79
Cross-site Scripting 		CVE-2016-10892 2024-11-21 11:45 2019-08-21 Show GitHub Exploit DB Packet Storm
268780 8.8 HIGH
Network 		supsystic popup The popup-by-supsystic plugin before 1.7.9 for WordPress has CSRF. CWE-352
 Origin Validation Error 		CVE-2016-10915 2024-11-21 11:45 2019-08-21 Show GitHub Exploit DB Packet Storm