Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 24, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
250981 5.8 警告 Opera Software ASA - Opera における任意の Cookie を上書きおよび削除される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-7297 2012-03-27 18:42 2011-08-9 Show GitHub Exploit DB Packet Storm
250982 5.8 警告 アップル - Apple の Safari における任意のクッキーを上書きまたは削除される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-7296 2012-03-27 18:42 2011-08-9 Show GitHub Exploit DB Packet Storm
250983 5.8 警告 マイクロソフト - Microsoft Internet Explorer における任意のクッキーを上書きされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-7295 2012-03-27 18:42 2011-08-9 Show GitHub Exploit DB Packet Storm
250984 5.8 警告 Google - Google Chrome における任意のクッキーを上書きまたは削除される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-7294 2012-03-27 18:42 2011-08-9 Show GitHub Exploit DB Packet Storm
250985 5.8 警告 Mozilla Foundation - Mozilla Firefox における任意のクッキーを上書きまたは削除される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-7293 2012-03-27 18:42 2011-08-9 Show GitHub Exploit DB Packet Storm
250986 2.1 注意 Mozilla Foundation - Bugzilla における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2008-7292 2012-03-27 18:42 2011-08-9 Show GitHub Exploit DB Packet Storm
250987 4 警告 IBM - IBM TDS の ldap_explode_rdn API 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-7290 2012-03-27 18:42 2011-04-10 Show GitHub Exploit DB Packet Storm
250988 4 警告 IBM - IBM TDS におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2008-7289 2012-03-27 18:42 2011-04-10 Show GitHub Exploit DB Packet Storm
250989 5 警告 IBM - IBM TDS におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-7288 2012-03-27 18:42 2011-04-21 Show GitHub Exploit DB Packet Storm
250990 4 警告 IBM - IBM TDS の API 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-7287 2012-03-27 18:42 2011-04-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
268711 8.8 HIGH
Network 		peepso peepso The peepso-core plugin before 1.6.1 for WordPress has PeepSoProfilePreferencesAjax->save() privilege escalation. CWE-269
 Improper Privilege Management 		CVE-2016-10968 2024-11-21 11:45 2019-09-16 Show GitHub Exploit DB Packet Storm
268712 6.1 MEDIUM
Network 		creativeinteractivemedia real3d_flipbook The real3d-flipbook-lite plugin 1.0 for WordPress has XSS via the wp-content/plugins/real3d-flipbook/includes/flipbooks.php bookId parameter. CWE-79
Cross-site Scripting 		CVE-2016-10967 2024-11-21 11:45 2019-09-16 Show GitHub Exploit DB Packet Storm
268713 7.5 HIGH
Network 		creativeinteractivemedia real3d_flipbook The real3d-flipbook-lite plugin 1.0 for WordPress has bookName=../ directory traversal for file upload. CWE-22
Path Traversal 		CVE-2016-10966 2024-11-21 11:45 2019-09-16 Show GitHub Exploit DB Packet Storm
268714 7.5 HIGH
Network 		creativeinteractivemedia real3d_flipbook The real3d-flipbook-lite plugin 1.0 for WordPress has deleteBook=../ directory traversal for file deletion. CWE-22
Path Traversal 		CVE-2016-10965 2024-11-21 11:45 2019-09-16 Show GitHub Exploit DB Packet Storm
268715 6.1 MEDIUM
Network 		findshorty dwnldr The dwnldr plugin before 1.01 for WordPress has XSS via the User-Agent HTTP header. CWE-79
Cross-site Scripting 		CVE-2016-10964 2024-11-21 11:45 2019-09-16 Show GitHub Exploit DB Packet Storm
268716 6.1 MEDIUM
Network 		icegram icegram_engage The icegram plugin before 1.9.19 for WordPress has XSS. CWE-79
Cross-site Scripting 		CVE-2016-10963 2024-11-21 11:45 2019-09-16 Show GitHub Exploit DB Packet Storm
268717 6.5 MEDIUM
Network 		icegram icegram_engage The icegram plugin before 1.9.19 for WordPress has CSRF via the wp-admin/edit.php option_name parameter. CWE-352
 Origin Validation Error 		CVE-2016-10962 2024-11-21 11:45 2019-09-16 Show GitHub Exploit DB Packet Storm
268718 6.1 MEDIUM
Network 		inkthemes colorway The colorway theme before 3.4.2 for WordPress has XSS via the contactName parameter. CWE-79
Cross-site Scripting 		CVE-2016-10961 2024-11-21 11:45 2019-09-16 Show GitHub Exploit DB Packet Storm
268719 8.8 HIGH
Network 		joomlaserviceprovider wsecure The wsecure plugin before 2.4 for WordPress has remote code execution via shell metacharacters in the wsecure-config.php publish parameter. CWE-20
 Improper Input Validation  		CVE-2016-10960 2024-11-21 11:45 2019-09-16 Show GitHub Exploit DB Packet Storm
268720 6.5 MEDIUM
Network 		estatik estatik The estatik plugin before 2.3.1 for WordPress has authenticated arbitrary file upload (exploitable with CSRF) via es_media_images[] to wp-admin/admin-ajax.php. CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2016-10959 2024-11-21 11:45 2019-09-16 Show GitHub Exploit DB Packet Storm