Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 13, 2026, 4:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
241681	4.7	警告	FreeBSD	-	FreeBSD の IATA (ata) ドライバにおけるサービス運用妨害 (DoS) の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-2649	2012-06-26 16:10	2009-07-30	Show	GitHub Exploit DB Packet Storm

241682	5	警告	flashden	-	FlashDen Guestbook における設定情報を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-2648	2012-06-26 16:10	2009-07-30	Show	GitHub Exploit DB Packet Storm

241683	10	危険	DELL EMC (旧 EMC Corporation)	-	ISM Portmapper サービスの librpc.dll の認証機能における整数符号化エラーの脆弱性	CWE-189 数値処理の問題	CVE-2009-2754	2012-06-26 16:10	2010-03-5	Show	GitHub Exploit DB Packet Storm

241684	9.3	危険	ditcms	-	dit.cms におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-2784	2012-06-26 16:10	2009-08-17	Show	GitHub Exploit DB Packet Storm

241685	6	警告	Arab Portal	-	Arab Portal の forum.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-2781	2012-06-26 16:10	2009-08-17	Show	GitHub Exploit DB Packet Storm

241686	4.3	警告	68classifieds	-	68 Classifieds におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-2780	2012-06-26 16:10	2009-08-17	Show	GitHub Exploit DB Packet Storm

241687	7.5	危険	aj square	-	AJ Matrix DNA の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-2779	2012-06-26 16:10	2009-08-17	Show	GitHub Exploit DB Packet Storm

241688	4.3	警告	garagesalesjunkie	-	GarageSales Script の visitor/view.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-2778	2012-06-26 16:10	2009-08-14	Show	GitHub Exploit DB Packet Storm

241689	7.5	危険	desiscripts	-	Desi Short URL Script の index.php における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2009-2642	2012-06-26 16:10	2009-07-28	Show	GitHub Exploit DB Packet Storm

241690	9.3	危険	日本エイサー	-	acerctrl.ocx の Acer LunchApp ActiveX コントロールにおける任意のコマンドを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2627	2012-06-26 16:10	2009-08-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
266891	5.3	MEDIUM Network	fabrix	total_security	The total-security plugin before 3.4.1 for WordPress has a settings-change vulnerability.	CWE-20 Improper Input Validation	CVE-2016-10899	2024-11-21 11:45	2019-08-21	Show	GitHub Exploit DB Packet Storm

266892	6.1	MEDIUM Network	fabrix	total_security	The total-security plugin before 3.4.1 for WordPress has XSS.	CWE-79 Cross-site Scripting	CVE-2016-10898	2024-11-21 11:45	2019-08-21	Show	GitHub Exploit DB Packet Storm

266893	6.1	MEDIUM Network	sermon_browser_project	sermon_browser	The sermon-browser plugin before 0.45.16 for WordPress has multiple XSS issues.	CWE-79 Cross-site Scripting	CVE-2016-10897	2024-11-21 11:45	2019-08-21	Show	GitHub Exploit DB Packet Storm

266894	6.1	MEDIUM Network	clogica	seo_redirection	The seo-redirection plugin before 4.3 for WordPress has stored XSS.	CWE-79 Cross-site Scripting	CVE-2016-10896	2024-11-21 11:45	2019-08-21	Show	GitHub Exploit DB Packet Storm

266895	6.1	MEDIUM Network	optiontree_project	optiontree	The option-tree plugin before 2.6.0 for WordPress has XSS via an add_list_item or add_social_links AJAX request.	CWE-79 Cross-site Scripting	CVE-2016-10895	2024-11-21 11:45	2019-08-21	Show	GitHub Exploit DB Packet Storm

266896	6.1	MEDIUM Network	kibokolabs	chained_quiz	The chained-quiz plugin before 1.0 for WordPress has multiple XSS issues.	CWE-79 Cross-site Scripting	CVE-2016-10892	2024-11-21 11:45	2019-08-21	Show	GitHub Exploit DB Packet Storm

266897	8.8	HIGH Network	supsystic	popup	The popup-by-supsystic plugin before 1.7.9 for WordPress has CSRF.	CWE-352 Origin Validation Error	CVE-2016-10915	2024-11-21 11:45	2019-08-21	Show	GitHub Exploit DB Packet Storm

266898	8.8	HIGH Network	add_from_server_project	add_from_server	The add-from-server plugin before 3.3.2 for WordPress has CSRF for importing a large file.	CWE-352 Origin Validation Error	CVE-2016-10914	2024-11-21 11:45	2019-08-21	Show	GitHub Exploit DB Packet Storm

266899	6.1	MEDIUM Network	joomunited	wp_latest_posts	The wp-latest-posts plugin before 3.7.5 for WordPress has XSS.	CWE-79 Cross-site Scripting	CVE-2016-10913	2024-11-21 11:45	2019-08-21	Show	GitHub Exploit DB Packet Storm

266900	6.1	MEDIUM Network	crayon_syntax_highlighter_project	crayon_syntax_highlighter	The crayon-syntax-highlighter plugin before 2.8.4 for WordPress has multiple XSS issues via AJAX requests.	CWE-79 Cross-site Scripting	CVE-2016-10893	2024-11-21 11:45	2019-08-21	Show	GitHub Exploit DB Packet Storm