Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 13, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
241721	6.8	警告	AEF Group	-	AEF における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-2545	2012-06-26 16:10	2009-07-20	Show	GitHub Exploit DB Packet Storm

241722	7.8	危険	aigo	-	Aigo P8860 におけるサービス運用妨害 (DoS) の脆弱性	CWE-189 数値処理の問題	CVE-2009-2539	2012-06-26 16:10	2009-07-20	Show	GitHub Exploit DB Packet Storm

241723	7.2	危険	forkosh	-	mathTeX の mathtex.cgi における詳細不明な脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-2461	2012-06-26 16:10	2009-07-14	Show	GitHub Exploit DB Packet Storm

241724	10	危険	forkosh	-	mathTeX の mathtex.cgi におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-2460	2012-06-26 16:10	2009-07-14	Show	GitHub Exploit DB Packet Storm

241725	10	危険	forkosh	-	mimeTeX における詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2459	2012-06-26 16:10	2009-07-14	Show	GitHub Exploit DB Packet Storm

241726	4.3	警告	atmail pty ltd	-	@mail の webadmin/admin.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-2455	2012-06-26 16:10	2009-07-14	Show	GitHub Exploit DB Packet Storm

241727	4.3	警告	シトリックス・システムズ	-	Citrix Web Interface におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-2454	2012-06-26 16:10	2009-07-14	Show	GitHub Exploit DB Packet Storm

241728	7.5	危険	シトリックス・システムズ	-	Citrix XenApp におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-2453	2012-06-26 16:10	2009-04-22	Show	GitHub Exploit DB Packet Storm

241729	10	危険	シトリックス・システムズ	-	Citrix Licensing における詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2452	2012-06-26 16:10	2009-04-28	Show	GitHub Exploit DB Packet Storm

241730	7.5	危険	adbnewssender	-	ADbNewsSender の maillinglist/admin/change_config.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-2449	2012-06-26 16:10	2009-07-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
266891	5.3	MEDIUM Network	fabrix	total_security	The total-security plugin before 3.4.1 for WordPress has a settings-change vulnerability.	CWE-20 Improper Input Validation	CVE-2016-10899	2024-11-21 11:45	2019-08-21	Show	GitHub Exploit DB Packet Storm

266892	6.1	MEDIUM Network	fabrix	total_security	The total-security plugin before 3.4.1 for WordPress has XSS.	CWE-79 Cross-site Scripting	CVE-2016-10898	2024-11-21 11:45	2019-08-21	Show	GitHub Exploit DB Packet Storm

266893	6.1	MEDIUM Network	sermon_browser_project	sermon_browser	The sermon-browser plugin before 0.45.16 for WordPress has multiple XSS issues.	CWE-79 Cross-site Scripting	CVE-2016-10897	2024-11-21 11:45	2019-08-21	Show	GitHub Exploit DB Packet Storm

266894	6.1	MEDIUM Network	clogica	seo_redirection	The seo-redirection plugin before 4.3 for WordPress has stored XSS.	CWE-79 Cross-site Scripting	CVE-2016-10896	2024-11-21 11:45	2019-08-21	Show	GitHub Exploit DB Packet Storm

266895	6.1	MEDIUM Network	optiontree_project	optiontree	The option-tree plugin before 2.6.0 for WordPress has XSS via an add_list_item or add_social_links AJAX request.	CWE-79 Cross-site Scripting	CVE-2016-10895	2024-11-21 11:45	2019-08-21	Show	GitHub Exploit DB Packet Storm

266896	6.1	MEDIUM Network	kibokolabs	chained_quiz	The chained-quiz plugin before 1.0 for WordPress has multiple XSS issues.	CWE-79 Cross-site Scripting	CVE-2016-10892	2024-11-21 11:45	2019-08-21	Show	GitHub Exploit DB Packet Storm

266897	8.8	HIGH Network	supsystic	popup	The popup-by-supsystic plugin before 1.7.9 for WordPress has CSRF.	CWE-352 Origin Validation Error	CVE-2016-10915	2024-11-21 11:45	2019-08-21	Show	GitHub Exploit DB Packet Storm

266898	8.8	HIGH Network	add_from_server_project	add_from_server	The add-from-server plugin before 3.3.2 for WordPress has CSRF for importing a large file.	CWE-352 Origin Validation Error	CVE-2016-10914	2024-11-21 11:45	2019-08-21	Show	GitHub Exploit DB Packet Storm

266899	6.1	MEDIUM Network	joomunited	wp_latest_posts	The wp-latest-posts plugin before 3.7.5 for WordPress has XSS.	CWE-79 Cross-site Scripting	CVE-2016-10913	2024-11-21 11:45	2019-08-21	Show	GitHub Exploit DB Packet Storm

266900	6.1	MEDIUM Network	crayon_syntax_highlighter_project	crayon_syntax_highlighter	The crayon-syntax-highlighter plugin before 2.8.4 for WordPress has multiple XSS issues via AJAX requests.	CWE-79 Cross-site Scripting	CVE-2016-10893	2024-11-21 11:45	2019-08-21	Show	GitHub Exploit DB Packet Storm