Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 23, 2026, 2 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 242491 | 4.3 | 警告 | CMS Made Simple | - | CMS Made Simple (CMSMS) のバックエンドの admin/editprefs.php におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-1482 | 2012-06-26 16:19 | 2010-05-1 | Show | GitHub Exploit DB Packet Storm |
| 242492 | 6.8 | 警告 | alphaplug Joomla! |
- | Joomla! の alphauserpoints コンポーネントにおけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2010-1476 | 2012-06-26 16:19 | 2010-04-19 | Show | GitHub Exploit DB Packet Storm |
| 242493 | 7.5 | 危険 | B-Elektro Joomla! |
- | Joomla! の addressbook コンポーネントにおけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2010-1471 | 2012-06-26 16:19 | 2010-04-19 | Show | GitHub Exploit DB Packet Storm |
| 242494 | 7.5 | 危険 | dev.pucit.edu.pk Joomla! |
- | Joomla! 用の Web TV コンポーネントにおけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2010-1470 | 2012-06-26 16:19 | 2010-04-19 | Show | GitHub Exploit DB Packet Storm |
| 242495 | 7.5 | 危険 | Joomla! focusdev |
- | Joomla! の mv_restaurantmenumanager コンポーネントにおける SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2010-1468 | 2012-06-26 16:19 | 2010-04-19 | Show | GitHub Exploit DB Packet Storm |
| 242496 | 7.5 | 危険 | francois raynaud | - | openUrgence Vaccin における PHP リモートファイルインクルージョンの脆弱性 |
CWE-94
コード・インジェクション |
CVE-2010-1467 | 2012-06-26 16:19 | 2010-04-16 | Show | GitHub Exploit DB Packet Storm |
| 242497 | 6.8 | 警告 | francois raynaud | - | openUrgence Vaccin の scr/soustab.php におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2010-1466 | 2012-06-26 16:19 | 2010-04-16 | Show | GitHub Exploit DB Packet Storm |
| 242498 | 5 | 警告 | gogoritas Joomla! |
- | Joomla! 用の Photo Battle コンポーネントにおけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2010-1461 | 2012-06-26 16:19 | 2010-04-16 | Show | GitHub Exploit DB Packet Storm |
| 242499 | 4.9 | 警告 | GNUstep | - | GNUstep Base の gdomap の s/gdomap.c における任意のファイルを読まれる脆弱性 |
CWE-200
情報漏えい |
CVE-2010-1457 | 2012-06-26 16:19 | 2010-05-12 | Show | GitHub Exploit DB Packet Storm |
| 242500 | 5 | 警告 | エフ・セキュア | - | F-Secure Internet Security 2010 における検知を回避される脆弱性 |
CWE-Other
その他 |
CVE-2010-1425 | 2012-06-26 16:19 | 2010-04-15 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 23, 2026, 4:08 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 268751 | 9.8 |
CRITICAL
Network |
codepeople | appointment_booking_calendar | The appointment-booking-calendar plugin before 1.1.24 for WordPress has SQL injection, a different vulnerability than CVE-2015-7319. |
CWE-89
SQL Injection |
CVE-2016-10916 | 2024-11-21 11:45 | 2019-08-22 | Show | GitHub Exploit DB Packet Storm |
| 268752 | 6.1 |
MEDIUM
Network |
pojo | activity_log | The aryo-activity-log plugin before 2.3.3 for WordPress has XSS. |
CWE-79
Cross-site Scripting |
CVE-2016-10891 | 2024-11-21 11:45 | 2019-08-22 | Show | GitHub Exploit DB Packet Storm |
| 268753 | 6.1 |
MEDIUM
Network |
matchboxdesigngroup | universal_analytics | The universal-analytics plugin before 1.3.1 for WordPress has XSS. |
CWE-79
Cross-site Scripting |
CVE-2016-10912 | 2024-11-21 11:45 | 2019-08-22 | Show | GitHub Exploit DB Packet Storm |
| 268754 | 6.1 |
MEDIUM
Network |
cozmoslabs | profile_builder | The profile-builder plugin before 2.4.2 for WordPress has multiple XSS issues. |
CWE-79
Cross-site Scripting |
CVE-2016-10911 | 2024-11-21 11:45 | 2019-08-22 | Show | GitHub Exploit DB Packet Storm |
| 268755 | 6.1 |
MEDIUM
Network |
formbuilder_project | formbuilder | The formbuilder plugin before 1.06 for WordPress has multiple XSS issues. |
CWE-79
Cross-site Scripting |
CVE-2016-10910 | 2024-11-21 11:45 | 2019-08-22 | Show | GitHub Exploit DB Packet Storm |
| 268756 | 9.8 |
CRITICAL
Network |
codepeople | booking_calendar_contact_form | The booking-calendar-contact-form plugin before 1.0.24 for WordPress has SQL injection. |
CWE-89
SQL Injection |
CVE-2016-10909 | 2024-11-21 11:45 | 2019-08-21 | Show | GitHub Exploit DB Packet Storm |
| 268757 | 6.1 |
MEDIUM
Network |
codepeople | booking_calendar_contact_form | The booking-calendar-contact-form plugin before 1.0.24 for WordPress has XSS. |
CWE-79
Cross-site Scripting |
CVE-2016-10908 | 2024-11-21 11:45 | 2019-08-21 | Show | GitHub Exploit DB Packet Storm |
| 268758 | 8.8 |
HIGH
Network |
godaddy | godaddy_email_marketing | The GoDaddy godaddy-email-marketing-sign-up-forms plugin before 1.1.3 for WordPress has CSRF. |
CWE-352
Origin Validation Error |
CVE-2016-10903 | 2024-11-21 11:45 | 2019-08-21 | Show | GitHub Exploit DB Packet Storm |
| 268759 | 8.8 |
HIGH
Network |
gowebsolutions | wp_customer_reviews | The wp-customer-reviews plugin before 3.0.9 for WordPress has CSRF in the admin tools. |
CWE-352
Origin Validation Error |
CVE-2016-10902 | 2024-11-21 11:45 | 2019-08-21 | Show | GitHub Exploit DB Packet Storm |
| 268760 | 6.1 |
MEDIUM
Network |
gowebsolutions | wp_customer_reviews | The wp-customer-reviews plugin before 3.0.9 for WordPress has XSS in the admin tools. |
CWE-79
Cross-site Scripting |
CVE-2016-10901 | 2024-11-21 11:45 | 2019-08-21 | Show | GitHub Exploit DB Packet Storm |