Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 26, 2026, 4:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251071	7.8	危険	シスコシステムズ	-	Cisco WLC におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2010-0574	2012-03-27 18:42	2010-09-8	Show	GitHub Exploit DB Packet Storm

251072	3.5	注意	IBM	-	IBM PNMSS の load.php における CRLF インジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2010-0155	2012-03-27 18:42	2010-09-14	Show	GitHub Exploit DB Packet Storm

251073	4	警告	IBM	-	IBM PNMSS アプライアンスの sla/index.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-0154	2012-03-27 18:42	2010-09-14	Show	GitHub Exploit DB Packet Storm

251074	6.8	警告	IBM	-	IBM PNMSS アプライアンスの LMI におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2010-0153	2012-03-27 18:42	2010-09-14	Show	GitHub Exploit DB Packet Storm

251075	4.3	警告	IBM	-	IBM PNMSS アプライアンスの LMI におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-0152	2012-03-27 18:42	2010-09-14	Show	GitHub Exploit DB Packet Storm

251076	7.5	危険	シマンテック	-	Symantec SEP の fw_charts.php におけるレポート生成の制限を回避する脆弱性	CWE-20 不適切な入力確認	CVE-2010-0114	2012-03-27 18:42	2010-12-15	Show	GitHub Exploit DB Packet Storm

251077	7.5	危険	シマンテック	-	Symantec IM Manager の管理者インターフェースにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-0112	2012-03-27 18:42	2010-10-27	Show	GitHub Exploit DB Packet Storm

251078	5	警告	mhonarc	-	MHonArc におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-1677	2012-03-27 18:42	2011-01-3	Show	GitHub Exploit DB Packet Storm

251079	5.5	警告	レッドハット	-	RHN Satellite におけるサービス運用妨害 (DoS) の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-1171	2012-03-27 18:42	2011-04-11	Show	GitHub Exploit DB Packet Storm

251080	5.8	警告	zeacom	-	Zeacom Chat Server におけるセッションをハイジャックされるの脆弱性	CWE-310 暗号の問題	CVE-2010-0217	2012-03-27 18:42	2011-05-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 26, 2026, 4:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
308631	-		-	-	The SysBasics Customize My Account for WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘tab’ parameter in all versions up to, and including, 2.7.29 due to ins…	CWE-79 Cross-site Scripting	CVE-2024-10837	2024-11-12 22:56	2024-11-9	Show	GitHub Exploit DB Packet Storm

308632	7.3	HIGH Network	-	-	The The FOX – Currency Switcher Professional for WooCommerce plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 1.4.2.2. This is due to the soft…	CWE-94 Code Injection	CVE-2024-10640	2024-11-12 22:56	2024-11-9	Show	GitHub Exploit DB Packet Storm

308633	4.3	MEDIUM Network	-	-	The Magical Addons For Elementor plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.2.4 via the get_content_type function in includes/widgets…	CWE-200 Information Exposure	CVE-2024-10352	2024-11-12 22:56	2024-11-9	Show	GitHub Exploit DB Packet Storm

308634	7.3	HIGH Network	-	-	The The Paid Membership Subscriptions – Effortless Memberships, Recurring Payments & Content Restriction plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and…	CWE-94 Code Injection	CVE-2024-10261	2024-11-12 22:56	2024-11-9	Show	GitHub Exploit DB Packet Storm

308635	-		-	-	In the Linux kernel, the following vulnerability has been resolved: fork: do not invoke uffd on fork if error occurs Patch series "fork: do not expose incomplete mm on fork". During fork we may pl…	-	CVE-2024-50220	2024-11-12 22:56	2024-11-9	Show	GitHub Exploit DB Packet Storm

308636	-		-	-	In the Linux kernel, the following vulnerability has been resolved: ocfs2: pass u64 to ocfs2_truncate_inline maybe overflow Syzbot reported a kernel BUG in ocfs2_truncate_inline. There are two rea…	-	CVE-2024-50218	2024-11-12 22:56	2024-11-9	Show	GitHub Exploit DB Packet Storm

308637	-		-	-	In the Linux kernel, the following vulnerability has been resolved: xfs: fix finding a last resort AG in xfs_filestream_pick_ag When the main loop in xfs_filestream_pick_ag fails to find a suitable…	-	CVE-2024-50216	2024-11-12 22:56	2024-11-9	Show	GitHub Exploit DB Packet Storm

308638	-		-	-	In the Linux kernel, the following vulnerability has been resolved: lib: alloc_tag_module_unload must wait for pending kfree_rcu calls Ben Greear reports following splat: ------------[ cut here ]-…	-	CVE-2024-50212	2024-11-12 22:56	2024-11-9	Show	GitHub Exploit DB Packet Storm

308639	9.8	CRITICAL Network	-	-	The Category Ajax Filter plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 2.8.2 via the 'params[caf-post-layout]' parameter. This makes it possible for…	-	CVE-2024-10871	2024-11-12 22:56	2024-11-9	Show	GitHub Exploit DB Packet Storm

308640	-		-	-	The WordPress User Extra Fields plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the ajax_manage_file_chunk_upload() function in all versions up to,…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2024-10801	2024-11-12 22:56	2024-11-9	Show	GitHub Exploit DB Packet Storm