Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 25, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
241111 6.9 警告 Smart Projects - IsoBuster における権限を取得される脆弱性 CWE-Other
その他 		CVE-2010-5259 2012-09-11 15:29 2012-09-7 Show GitHub Exploit DB Packet Storm
241112 6.9 警告 アドビシステムズ - Adobe Audition における権限を取得される脆弱性 CWE-Other
その他 		CVE-2010-5258 2012-09-11 15:29 2012-09-7 Show GitHub Exploit DB Packet Storm
241113 6.9 警告 Graphisoft - ArchiCAD における権限を取得される脆弱性 CWE-Other
その他 		CVE-2010-5257 2012-09-11 15:28 2012-09-7 Show GitHub Exploit DB Packet Storm
241114 6.9 警告 David Ayton - CDisplay における権限を取得される脆弱性 CWE-Other
その他 		CVE-2010-5256 2012-09-11 15:28 2012-09-7 Show GitHub Exploit DB Packet Storm
241115 6.9 警告 EZB Systems - UltraISO における権限を取得される脆弱性 CWE-Other
その他 		CVE-2010-5255 2012-09-11 15:27 2012-09-7 Show GitHub Exploit DB Packet Storm
241116 6.9 警告 GFI - GFI Backup における権限を取得される脆弱性 CWE-Other
その他 		CVE-2010-5254 2012-09-11 15:26 2012-09-7 Show GitHub Exploit DB Packet Storm
241117 6.9 警告 Gilles Vollant - WinImage における権限を取得される脆弱性 CWE-Other
その他 		CVE-2010-5253 2012-09-11 15:25 2012-09-7 Show GitHub Exploit DB Packet Storm
241118 6.9 警告 HTTrack - HTTrack における権限を取得される脆弱性 CWE-Other
その他 		CVE-2010-5252 2012-09-11 15:25 2012-09-7 Show GitHub Exploit DB Packet Storm
241119 6.9 警告 IBM - IBM Lotus Notes における権限を取得される脆弱性 CWE-Other
その他 		CVE-2010-5251 2012-09-11 15:24 2012-09-7 Show GitHub Exploit DB Packet Storm
241120 6.9 警告 ソフォス - Sophos Free Encryption および Sophos SafeGuard PrivateCrypto における権限を取得される脆弱性 CWE-Other
その他 		CVE-2010-5249 2012-09-11 15:22 2012-09-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
286901 6.1 MEDIUM
Network 		bestwebsoft contact_form The contact-form-plugin plugin before 3.3.5 for WordPress has XSS. CWE-79
Cross-site Scripting 		CVE-2013-7481 2024-11-21 11:01 2019-08-22 Show GitHub Exploit DB Packet Storm
286902 6.1 MEDIUM
Network 		pixelite events_manager The events-manager plugin before 5.3.6.1 for WordPress has XSS via the booking form and admin areas. CWE-79
Cross-site Scripting 		CVE-2013-7480 2024-11-21 11:01 2019-08-22 Show GitHub Exploit DB Packet Storm
286903 6.1 MEDIUM
Network 		pixelite events_manager The events-manager plugin before 5.3.9 for WordPress has XSS in the search form field. CWE-79
Cross-site Scripting 		CVE-2013-7479 2024-11-21 11:01 2019-08-22 Show GitHub Exploit DB Packet Storm
286904 6.1 MEDIUM
Network 		pixelite events_manager The events-manager plugin before 5.5 for WordPress has XSS via EM_Ticket::get_post. CWE-79
Cross-site Scripting 		CVE-2013-7478 2024-11-21 11:01 2019-08-22 Show GitHub Exploit DB Packet Storm
286905 6.1 MEDIUM
Network 		pixelite events_manager The events-manager plugin before 5.5.2 for WordPress has XSS in the booking form. CWE-79
Cross-site Scripting 		CVE-2013-7477 2024-11-21 11:01 2019-08-22 Show GitHub Exploit DB Packet Storm
286906 8.8 HIGH
Network 		simple_fields_project simple_fields The simple-fields plugin before 1.2 for WordPress has CSRF in the admin interface. CWE-352
 Origin Validation Error 		CVE-2013-7476 2024-11-21 11:01 2019-08-15 Show GitHub Exploit DB Packet Storm
286907 6.1 MEDIUM
Network 		bestwebsoft contact_form The contact-form-plugin plugin before 3.52 for WordPress has XSS. CWE-79
Cross-site Scripting 		CVE-2013-7475 2024-11-21 11:01 2019-08-14 Show GitHub Exploit DB Packet Storm
286908 6.1 MEDIUM
Network 		windu windu_cms Windu CMS 2.2 allows XSS via the name parameter to admin/content/edit or admin/content/add, or the username parameter to admin/users. CWE-79
Cross-site Scripting 		CVE-2013-7474 2024-11-21 11:01 2019-08-2 Show GitHub Exploit DB Packet Storm
286909 8.8 HIGH
Network 		windu windu_cms Windu CMS 2.2 allows CSRF via admin/users/?mn=admin.message.error to add an admin account. CWE-352
 Origin Validation Error 		CVE-2013-7473 2024-11-21 11:01 2019-08-2 Show GitHub Exploit DB Packet Storm
286910 6.1 MEDIUM
Network 		count_per_day_project count_per_day The "Count per Day" plugin before 3.2.6 for WordPress allows XSS via the wp-admin/?page=cpd_metaboxes daytoshow parameter. CWE-79
Cross-site Scripting 		CVE-2013-7472 2024-11-21 11:01 2019-06-16 Show GitHub Exploit DB Packet Storm