Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 8, 2026, noon
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 252041 | 2.6 | 注意 | 株式会社ロックオン | - | EC-CUBE におけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2011-1325 | 2011-05-10 11:01 | 2011-05-10 | Show | GitHub Exploit DB Packet Storm |
| 252042 | 4 | 警告 | バッファロー | - | 複数のバッファロー社製ルータにおけるクロスサイト・リクエスト・フォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2011-1324 | 2011-05-10 10:55 | 2011-04-19 | Show | GitHub Exploit DB Packet Storm |
| 252043 | 6.8 | 警告 | Mutt オラクル |
- | mutt の mutt_ssl.c における SSH サーバになりすまされる脆弱性 |
CWE-310
暗号の問題 |
CVE-2009-3765 | 2011-05-10 10:49 | 2009-10-23 | Show | GitHub Exploit DB Packet Storm |
| 252044 | 9.3 | 危険 | オラクル Erik de Castro Lopo Nullsoft |
- | Winamp などで利用される libsndfile の aiff_read_header におけるヒープベースのバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2009-1791 | 2011-05-10 10:49 | 2009-05-26 | Show | GitHub Exploit DB Packet Storm |
| 252045 | 9.3 | 危険 | オラクル Erik de Castro Lopo Nullsoft |
- | Winamp などで利用される libsndfile の voc_read_header におけるヒープベースのバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2009-1788 | 2011-05-10 10:48 | 2009-05-26 | Show | GitHub Exploit DB Packet Storm |
| 252046 | 9.3 | 危険 | オラクル Erik de Castro Lopo Nullsoft |
- | Winamp などで利用される libsndfile における整数オーバーフローの脆弱性 |
CWE-189
数値処理の問題 |
CVE-2009-0186 | 2011-05-10 10:47 | 2009-03-5 | Show | GitHub Exploit DB Packet Storm |
| 252047 | - | - | アップル | - | Apple Mac OS X における脆弱性に対するアップデート | - | - | 2011-05-10 10:46 | 2011-04-15 | Show | GitHub Exploit DB Packet Storm |
| 252048 | 10 | 危険 | BlackBerry アップル |
- | WebKit における任意のコードを実行される脆弱性 |
CWE-189
数値処理の問題 |
CVE-2011-1290 | 2011-05-10 10:43 | 2011-03-11 | Show | GitHub Exploit DB Packet Storm |
| 252049 | 10 | 危険 | MIT Kerberos レッドハット |
- | MIT Kerberos 5 の process_chpw_request 関数における任意のコードを実行される脆弱性 |
CWE-20 CWE-Other |
CVE-2011-0285 | 2011-05-10 10:40 | 2011-04-14 | Show | GitHub Exploit DB Packet Storm |
| 252050 | 9.3 | 危険 | リアルネットワークス | - | RealNetworks RealPlayer の rvrender.dll におけるヒープベースのバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2011-1525 | 2011-05-10 10:38 | 2011-04-6 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 8, 2026, 4:54 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 250701 | 6.1 |
MEDIUM
Network |
bestwebsoft | google_analytics | The bws-google-analytics plugin before 1.7.1 for WordPress has multiple XSS issues. |
CWE-79
Cross-site Scripting |
CVE-2017-18556 | 2024-11-21 12:20 | 2019-08-21 | Show | GitHub Exploit DB Packet Storm |
| 250702 | 6.1 |
MEDIUM
Network |
mediaburst | booking_calendar | The booking-sms plugin before 1.1.0 for WordPress has XSS. |
CWE-79
Cross-site Scripting |
CVE-2017-18555 | 2024-11-21 12:20 | 2019-08-21 | Show | GitHub Exploit DB Packet Storm |
| 250703 | 6.1 |
MEDIUM
Network |
analytics_tracker_project | analytics_tracker | The analytics-tracker plugin before 1.1.1 for WordPress has XSS via a search event. |
CWE-79
Cross-site Scripting |
CVE-2017-18554 | 2024-11-21 12:20 | 2019-08-21 | Show | GitHub Exploit DB Packet Storm |
| 250704 | 6.1 |
MEDIUM
Network |
ad_buttons_project | ad_buttons | The ad-buttons plugin before 2.3.2 for WordPress has XSS. |
CWE-79
Cross-site Scripting |
CVE-2017-18553 | 2024-11-21 12:20 | 2019-08-21 | Show | GitHub Exploit DB Packet Storm |
| 250705 | 6.1 |
MEDIUM
Network |
deepsoft | weblibrarian | The weblibrarian plugin before 3.4.8.7 for WordPress has XSS via front-end short codes. |
CWE-79
Cross-site Scripting |
CVE-2017-18540 | 2024-11-21 12:20 | 2019-08-21 | Show | GitHub Exploit DB Packet Storm |
| 250706 | 6.1 |
MEDIUM
Network |
deepsoft | weblibrarian | The weblibrarian plugin before 3.4.8.6 for WordPress has XSS via front-end short codes. |
CWE-79
Cross-site Scripting |
CVE-2017-18539 | 2024-11-21 12:20 | 2019-08-21 | Show | GitHub Exploit DB Packet Storm |
| 250707 | 6.1 |
MEDIUM
Network |
deepsoft | weblibrarian | The weblibrarian plugin before 3.4.8.5 for WordPress has XSS via front-end short codes. |
CWE-79
Cross-site Scripting |
CVE-2017-18538 | 2024-11-21 12:20 | 2019-08-21 | Show | GitHub Exploit DB Packet Storm |
| 250708 | 6.1 |
MEDIUM
Network |
bestwebsoft | visitors_online | The visitors-online plugin before 1.0.0 for WordPress has multiple XSS issues. |
CWE-79
Cross-site Scripting |
CVE-2017-18537 | 2024-11-21 12:20 | 2019-08-21 | Show | GitHub Exploit DB Packet Storm |
| 250709 | 6.1 |
MEDIUM
Network |
fullworks | stop_user_enumeration | The stop-user-enumeration plugin before 1.3.8 for WordPress has XSS. |
CWE-79
Cross-site Scripting |
CVE-2017-18536 | 2024-11-21 12:20 | 2019-08-21 | Show | GitHub Exploit DB Packet Storm |
| 250710 | 6.1 |
MEDIUM
Network |
share_on_diaspora_project | share_on_diaspora | The share-on-diaspora plugin before 0.7.2 for WordPress has reflected XSS in share URL parameters. |
CWE-79
Cross-site Scripting |
CVE-2017-18534 | 2024-11-21 12:20 | 2019-08-21 | Show | GitHub Exploit DB Packet Storm |