Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 7, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
241331	6	警告	alilg	-	AlilG Application AliBoard Beta の usercp.php における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2008-7029	2012-06-26 16:10	2009-08-24	Show	GitHub Exploit DB Packet Storm

241332	7.5	危険	aves	-	RPG.Board における権限を取得される脆弱性	CWE-287 不適切な認証	CVE-2008-7028	2012-06-26 16:10	2009-08-21	Show	GitHub Exploit DB Packet Storm

241333	6.8	警告	eFront Learning	-	eFront の filesystem3.class.php における任意のコードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-7026	2012-06-26 16:10	2009-08-21	Show	GitHub Exploit DB Packet Storm

241334	4.3	警告	チェック・ポイント・ソフトウェア・テクノロジーズ	-	Check Point ZoneAlarm の TrueVector におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2008-7025	2012-06-26 16:10	2009-08-21	Show	GitHub Exploit DB Packet Storm

241335	6.8	警告	arzdev	-	Arz Development The Gemini Portal の admin.php における管理者権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-7024	2012-06-26 16:10	2009-08-21	Show	GitHub Exploit DB Packet Storm

241336	10	危険	アルバネットワークス株式会社	-	ArubaOS 上で稼動する Aruba Mobility Controller における認証を回避される脆弱性	CWE-310 暗号の問題	CVE-2008-7023	2012-06-26 16:10	2009-08-21	Show	GitHub Exploit DB Packet Storm

241337	9.3	危険	chilkatsoft	-	Chilkat Software IMAP ActiveX コントロールの ChilkatMail_v7_9.dll における任意のプログラムを実行される脆弱性	CWE-Other その他	CVE-2008-7022	2012-06-26 16:10	2009-08-21	Show	GitHub Exploit DB Packet Storm

241338	6	警告	availscript	-	AvailScript Jobs Portal Script の editlogo.php における任意のコードを実行される脆弱性	CWE-Other その他	CVE-2008-7021	2012-06-26 16:10	2009-08-21	Show	GitHub Exploit DB Packet Storm

241339	7.5	危険	esqlanelapse	-	Esqlanelapse における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2008-7019	2012-06-26 16:10	2009-08-21	Show	GitHub Exploit DB Packet Storm

241340	4.3	警告	cacert	-	CAcert の analyse.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-7017	2012-06-26 16:10	2009-08-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
267391	9.8	CRITICAL Network	duckdev	404_to_301	The 404-to-301 plugin before 2.0.3 for WordPress has SQL injection.	CWE-89 SQL Injection	CVE-2015-9323	2024-11-21 11:40	2019-08-17	Show	GitHub Exploit DB Packet Storm

267392	8.8	HIGH Network	erident_custom_login_and_dashboard_project	erident_custom_login_and_dashboard	The erident-custom-login-and-dashboard plugin before 3.5 for WordPress has CSRF.	CWE-352 Origin Validation Error	CVE-2015-9322	2024-11-21 11:40	2019-08-17	Show	GitHub Exploit DB Packet Storm

267393	9.8	CRITICAL Network	wpbusinessintelligence	wp_business_intelligence	The wp-business-intelligence-lite plugin before 1.6.3 for WordPress has SQL injection.	CWE-89 SQL Injection	CVE-2015-9326	2024-11-21 11:40	2019-08-16	Show	GitHub Exploit DB Packet Storm

267394	9.8	CRITICAL Network	bestwebsoft	visitors_online	The visitors-online plugin before 0.4 for WordPress has SQL injection.	CWE-89 SQL Injection	CVE-2015-9325	2024-11-21 11:40	2019-08-16	Show	GitHub Exploit DB Packet Storm

267395	9.8	CRITICAL Network	tipsandtricks-hq	all_in_one_wp_security_\&_firewall	The all-in-one-wp-security-and-firewall plugin before 3.9.1 for WordPress has multiple SQL injection issues.	CWE-89 SQL Injection	CVE-2015-9310	2024-11-21 11:40	2019-08-15	Show	GitHub Exploit DB Packet Storm

267396	8.8	HIGH Network	flippercode	wp_google_map	The wp-google-map-plugin plugin before 2.3.10 for WordPress has CSRF in the add/edit category feature.	CWE-352 Origin Validation Error	CVE-2015-9309	2024-11-21 11:40	2019-08-15	Show	GitHub Exploit DB Packet Storm

267397	8.8	HIGH Network	flippercode	wp_google_map	The wp-google-map-plugin plugin before 2.3.10 for WordPress has CSRF in the add/edit map feature.	CWE-352 Origin Validation Error	CVE-2015-9308	2024-11-21 11:40	2019-08-15	Show	GitHub Exploit DB Packet Storm

267398	8.8	HIGH Network	flippercode	wp_google_map	The wp-google-map-plugin plugin before 2.3.10 for WordPress has CSRF in the add/edit location feature.	CWE-352 Origin Validation Error	CVE-2015-9307	2024-11-21 11:40	2019-08-15	Show	GitHub Exploit DB Packet Storm

267399	9.8	CRITICAL Network	wpfastestcache	wp_fastest_cache	The wp-fastest-cache plugin before 0.8.4.9 for WordPress has SQL injection in wp-admin/admin-ajax.php?action=wpfc_wppolls_ajax_request via the poll_id parameter.	CWE-89 SQL Injection	CVE-2015-9316	2024-11-21 11:40	2019-08-15	Show	GitHub Exploit DB Packet Storm

267400	9.8	CRITICAL Network	newstatpress_project	newstatpress	The newstatpress plugin before 1.0.1 for WordPress has SQL injection.	CWE-89 SQL Injection	CVE-2015-9315	2024-11-21 11:40	2019-08-15	Show	GitHub Exploit DB Packet Storm