Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
241451	7.5	危険	gallium.inria	-	CamlImages の tiffread.c における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2009-3296	2012-06-26 16:18	2009-10-16	Show	GitHub Exploit DB Packet Storm

241452	4.4	警告	GNOME Project	-	glib の g_file_copy 関数における他のユーザファイルを変更される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-3289	2012-06-26 16:18	2009-08-28	Show	GitHub Exploit DB Packet Storm

241453	7.5	危険	アップル	-	Apple iPhone OS の iPhone Mail における SSL 電子メールサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2009-3273	2012-06-26 16:18	2009-09-21	Show	GitHub Exploit DB Packet Storm

241454	5	警告	アップル	-	Apple Safari の WebKit.dll におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2009-3272	2012-06-26 16:18	2009-09-21	Show	GitHub Exploit DB Packet Storm

241455	4.3	警告	アップル	-	iPhone OS 上で稼動する Apple Safari におけるサービス運用妨害 (アプリケーションクラッシュ) 状態となる脆弱性	CWE-20 不適切な入力確認	CVE-2009-3271	2012-06-26 16:18	2009-09-21	Show	GitHub Exploit DB Packet Storm

241456	7.5	危険	dave robinson	-	Rock Band CMS の news.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-3252	2012-06-26 16:18	2009-09-18	Show	GitHub Exploit DB Packet Storm

241457	7.2	危険	cameron morland	-	changetrack における任意のコマンドを実行される脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2009-3233	2012-06-26 16:18	2009-09-17	Show	GitHub Exploit DB Packet Storm

241458	9.3	危険	Debian Canonical	-	PAM の pam-auth-update における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2009-3232	2012-06-26 16:18	2009-03-16	Show	GitHub Exploit DB Packet Storm

241459	4.3	警告	almondsoft	-	AlmondSoft Almond Classifieds Ads Enterprise の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-3227	2012-06-26 16:18	2009-09-16	Show	GitHub Exploit DB Packet Storm

241460	7.5	危険	almondsoft	-	AlmondSoft Almond Classifieds Ads Enterprise の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-3226	2012-06-26 16:18	2009-09-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
266891	5.3	MEDIUM Network	fabrix	total_security	The total-security plugin before 3.4.1 for WordPress has a settings-change vulnerability.	CWE-20 Improper Input Validation	CVE-2016-10899	2024-11-21 11:45	2019-08-21	Show	GitHub Exploit DB Packet Storm

266892	6.1	MEDIUM Network	fabrix	total_security	The total-security plugin before 3.4.1 for WordPress has XSS.	CWE-79 Cross-site Scripting	CVE-2016-10898	2024-11-21 11:45	2019-08-21	Show	GitHub Exploit DB Packet Storm

266893	6.1	MEDIUM Network	sermon_browser_project	sermon_browser	The sermon-browser plugin before 0.45.16 for WordPress has multiple XSS issues.	CWE-79 Cross-site Scripting	CVE-2016-10897	2024-11-21 11:45	2019-08-21	Show	GitHub Exploit DB Packet Storm

266894	6.1	MEDIUM Network	clogica	seo_redirection	The seo-redirection plugin before 4.3 for WordPress has stored XSS.	CWE-79 Cross-site Scripting	CVE-2016-10896	2024-11-21 11:45	2019-08-21	Show	GitHub Exploit DB Packet Storm

266895	6.1	MEDIUM Network	optiontree_project	optiontree	The option-tree plugin before 2.6.0 for WordPress has XSS via an add_list_item or add_social_links AJAX request.	CWE-79 Cross-site Scripting	CVE-2016-10895	2024-11-21 11:45	2019-08-21	Show	GitHub Exploit DB Packet Storm

266896	6.1	MEDIUM Network	kibokolabs	chained_quiz	The chained-quiz plugin before 1.0 for WordPress has multiple XSS issues.	CWE-79 Cross-site Scripting	CVE-2016-10892	2024-11-21 11:45	2019-08-21	Show	GitHub Exploit DB Packet Storm

266897	8.8	HIGH Network	supsystic	popup	The popup-by-supsystic plugin before 1.7.9 for WordPress has CSRF.	CWE-352 Origin Validation Error	CVE-2016-10915	2024-11-21 11:45	2019-08-21	Show	GitHub Exploit DB Packet Storm

266898	8.8	HIGH Network	add_from_server_project	add_from_server	The add-from-server plugin before 3.3.2 for WordPress has CSRF for importing a large file.	CWE-352 Origin Validation Error	CVE-2016-10914	2024-11-21 11:45	2019-08-21	Show	GitHub Exploit DB Packet Storm

266899	6.1	MEDIUM Network	joomunited	wp_latest_posts	The wp-latest-posts plugin before 3.7.5 for WordPress has XSS.	CWE-79 Cross-site Scripting	CVE-2016-10913	2024-11-21 11:45	2019-08-21	Show	GitHub Exploit DB Packet Storm

266900	6.1	MEDIUM Network	crayon_syntax_highlighter_project	crayon_syntax_highlighter	The crayon-syntax-highlighter plugin before 2.8.4 for WordPress has multiple XSS issues via AJAX requests.	CWE-79 Cross-site Scripting	CVE-2016-10893	2024-11-21 11:45	2019-08-21	Show	GitHub Exploit DB Packet Storm