Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
250991	5.5	警告	オラクル	-	Oracle E-Business Suite の Oracle Advanced Product Catalog コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0915	2010-08-5 16:34	2010-07-13	Show	GitHub Exploit DB Packet Storm

250992	7.5	危険	オラクル	-	Oracle E-Business Suite の Oracle Applications Framework コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0908	2010-08-5 16:34	2010-07-13	Show	GitHub Exploit DB Packet Storm

250993	4.3	警告	オラクル	-	Oracle Enterprise Manager Grid Control の Console コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-2373	2010-08-5 16:33	2010-07-13	Show	GitHub Exploit DB Packet Storm

250994	4.3	警告	オラクル	-	Oracle Fusion Middleware の Oracle Business Process Management コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-2370	2010-08-5 16:33	2010-07-13	Show	GitHub Exploit DB Packet Storm

250995	5	警告	オラクル	-	Oracle Secure Backup における脆弱性	CWE-noinfo 情報不足	CVE-2010-0904	2010-08-5 16:33	2010-07-13	Show	GitHub Exploit DB Packet Storm

250996	9	危険	オラクル	-	Oracle Secure Backup における脆弱性	CWE-noinfo 情報不足	CVE-2010-0906	2010-08-5 16:32	2010-07-13	Show	GitHub Exploit DB Packet Storm

250997	9	危険	オラクル	-	Oracle Secure Backup における脆弱性	CWE-noinfo 情報不足	CVE-2010-0899	2010-08-5 16:32	2010-07-13	Show	GitHub Exploit DB Packet Storm

250998	10	危険	オラクル	-	Oracle Secure Backup における脆弱性	CWE-noinfo 情報不足	CVE-2010-0907	2010-08-5 16:32	2010-07-13	Show	GitHub Exploit DB Packet Storm

250999	10	危険	オラクル	-	Oracle Secure Backup における脆弱性	CWE-noinfo 情報不足	CVE-2010-0898	2010-08-5 16:31	2010-07-13	Show	GitHub Exploit DB Packet Storm

251000	5	警告	オラクル	-	Oracle TimesTen In-Memory Database の Data Server コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0910	2010-08-5 16:31	2010-07-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
249541	8.8	HIGH Network	-	-	The WooCommerce Support Ticket System plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the delete_uploaded_file() function in all versions up …	CWE-22 Path Traversal	CVE-2024-10626	2024-11-12 22:56	2024-11-9	Show	GitHub Exploit DB Packet Storm

249542	9.8	CRITICAL Network	-	-	The WooCommerce Support Ticket System plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the delete_tmp_uploaded_file() function in all versions…	CWE-22 Path Traversal	CVE-2024-10625	2024-11-12 22:56	2024-11-9	Show	GitHub Exploit DB Packet Storm

249543	5.5	MEDIUM Network	-	-	The Anih - Creative Agency WordPress Theme theme for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 2024 due to an incomplete blacklis…	CWE-79 Cross-site Scripting	CVE-2024-9775	2024-11-12 22:56	2024-11-9	Show	GitHub Exploit DB Packet Storm

249544	6.4	MEDIUM Network	-	-	The Cowidgets – Elementor Addons plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 1.2.0 due to insufficient input sanitizat…	CWE-79 Cross-site Scripting	CVE-2024-8960	2024-11-12 22:56	2024-11-9	Show	GitHub Exploit DB Packet Storm

249545	-		-	-	The Cowidgets – Elementor Addons plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.2.0 via the 'ce_template' shortcode due to insufficient restriction…	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2024-10779	2024-11-12 22:56	2024-11-9	Show	GitHub Exploit DB Packet Storm

249546	4.3	MEDIUM Network	-	-	The Debug Tool plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the info() function in all versions up to, and including, 2.2. This makes it poss…	CWE-862 Missing Authorization	CVE-2024-10588	2024-11-12 22:56	2024-11-9	Show	GitHub Exploit DB Packet Storm

249547	6.5	MEDIUM Network	-	-	The CE21 Suite plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'ce21_single_sign_on_save_api_settings' function in versions up to, and…	CWE-862 Missing Authorization	CVE-2024-10294	2024-11-12 22:56	2024-11-9	Show	GitHub Exploit DB Packet Storm

249548	9.8	CRITICAL Network	-	-	The CE21 Suite plugin for WordPress is vulnerable to sensitive information disclosure via the plugin-log.txt in versions up to, and including, 2.2.0. This makes it possible for unauthenticated attack…	CWE-200 Information Exposure	CVE-2024-10285	2024-11-12 22:56	2024-11-9	Show	GitHub Exploit DB Packet Storm

249549	-		-	-	A data.all admin team member who has access to the customer-owned AWS Account where data.all is deployed may be able to extract user data from data.all application logs in data.all via CloudWatch log…	-	CVE-2024-52314	2024-11-12 22:56	2024-11-9	Show	GitHub Exploit DB Packet Storm

249550	-		-	-	An authenticated data.all user is able to manipulate a getDataset query to fetch additional information regarding the parent Environment resource that the user otherwise would not able to fetch by di…	-	CVE-2024-52313	2024-11-12 22:56	2024-11-9	Show	GitHub Exploit DB Packet Storm