Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 9, 2026, noon
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 252171 | 5 | 警告 | Zoho Corporation | - | ZOHO ManageEngine ADSelfService Plus における任意のユーザアカウントへのアクセスを取得される脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2010-3273 | 2012-03-27 18:42 | 2011-02-17 | Show | GitHub Exploit DB Packet Storm |
| 252172 | 4.3 | 警告 | Zoho Corporation | - | ZOHO ManageEngine ADSelfService Plus の security-questions 実装における任意のユーザアカウントへのアクセスを取得される脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2010-3272 | 2012-03-27 18:42 | 2011-02-17 | Show | GitHub Exploit DB Packet Storm |
| 252173 | 6.8 | 警告 | IBM | - | IBM WAS の Integrated Solutions Console におけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2010-3271 | 2012-03-27 18:42 | 2011-07-18 | Show | GitHub Exploit DB Packet Storm |
| 252174 | 6.8 | 警告 | シスコシステムズ | - | Cisco WebEx Meeting Center T27LB におけるスタックベースのバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2010-3270 | 2012-03-27 18:42 | 2011-02-1 | Show | GitHub Exploit DB Packet Storm |
| 252175 | 9.3 | 危険 | シスコシステムズ | - | Cisco WRF および ARF Player T27LB におけるスタックベースのバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2010-3269 | 2012-03-27 18:42 | 2011-02-1 | Show | GitHub Exploit DB Packet Storm |
| 252176 | 6.4 | 警告 | orbeon | - | Orbeon Forms の XForms サービスの xforms-server コンポーネントにおけるイントラネットサーバへ HTTP リクエストを送信される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2010-3260 | 2012-03-27 18:42 | 2011-04-26 | Show | GitHub Exploit DB Packet Storm |
| 252177 | 5 | 警告 | シマンテック インテル |
- | Symantec Antivirus Corporate Edition などで使用される Intel AMS の GetStringAMSHandler 関数におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2010-3268 | 2012-03-27 18:42 | 2010-12-22 | Show | GitHub Exploit DB Packet Storm |
| 252178 | 6.5 | 警告 | ifdefined | - | BugTracker.NET における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2010-3267 | 2012-03-27 18:42 | 2010-12-2 | Show | GitHub Exploit DB Packet Storm |
| 252179 | 3.5 | 注意 | ifdefined | - | BugTracker.NET におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-3266 | 2012-03-27 18:42 | 2010-12-2 | Show | GitHub Exploit DB Packet Storm |
| 252180 | 2.1 | 注意 | Novell | - | Novell Identity Manager のエンジンインストーラにおける重要な情報を取得される脆弱性 |
CWE-255
証明書・パスワード管理 |
CVE-2010-3264 | 2012-03-27 18:42 | 2010-08-23 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 9, 2026, 4:16 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 275061 | 8.8 |
HIGH
Network |
freetype debian |
freetype debian_linux |
FreeType before 2.6.1 has a heap-based buffer over-read in T1_Get_Private_Dict in type1/t1parse.c. |
CWE-125
Out-of-bounds Read |
CVE-2015-9381 | 2024-11-21 11:40 | 2019-09-3 | Show | GitHub Exploit DB Packet Storm |
| 275062 | 8.8 |
HIGH
Network |
10web | photo_gallery | The photo-gallery plugin before 1.2.42 for WordPress has CSRF. |
CWE-352
Origin Validation Error |
CVE-2015-9380 | 2024-11-21 11:40 | 2019-08-30 | Show | GitHub Exploit DB Packet Storm |
| 275063 | 6.1 |
MEDIUM
Network |
automattic | jetpack | The Jetpack plugin before 3.4.3 for WordPress has XSS via add_query_arg() and remove_query_arg(). |
CWE-79
Cross-site Scripting |
CVE-2015-9359 | 2024-11-21 11:40 | 2019-08-29 | Show | GitHub Exploit DB Packet Storm |
| 275064 | 6.1 |
MEDIUM
Network |
ithemes | builder_style_manager | iThemes Builder Style Manager before 0.7.7 for WordPress has XSS via add_query_arg() and remove_query_arg(). |
CWE-79
Cross-site Scripting |
CVE-2015-9379 | 2024-11-21 11:40 | 2019-08-28 | Show | GitHub Exploit DB Packet Storm |
| 275065 | 6.1 |
MEDIUM
Network |
ithemes | builder_theme_market | iThemes Builder Theme Market before 5.1.27 for WordPress has XSS via add_query_arg() and remove_query_arg(). |
CWE-79
Cross-site Scripting |
CVE-2015-9378 | 2024-11-21 11:40 | 2019-08-28 | Show | GitHub Exploit DB Packet Storm |
| 275066 | 6.1 |
MEDIUM
Network |
ithemes | builder_theme_depot | iThemes Builder Theme Depot before 5.0.30 for WordPress has XSS via add_query_arg() and remove_query_arg(). |
CWE-79
Cross-site Scripting |
CVE-2015-9377 | 2024-11-21 11:40 | 2019-08-28 | Show | GitHub Exploit DB Packet Storm |
| 275067 | 6.1 |
MEDIUM
Network |
ithemes | mobile | iThemes Mobile before 1.2.8 for WordPress has XSS via add_query_arg() and remove_query_arg(). |
CWE-79
Cross-site Scripting |
CVE-2015-9376 | 2024-11-21 11:40 | 2019-08-28 | Show | GitHub Exploit DB Packet Storm |
| 275068 | 6.1 |
MEDIUM
Network |
ithemes | table_rate_shipping | Table Rate Shipping Add-on for iThemes Exchange before 1.1.0 for WordPress has XSS via add_query_arg() and remove_query_arg(). |
CWE-79
Cross-site Scripting |
CVE-2015-9375 | 2024-11-21 11:40 | 2019-08-28 | Show | GitHub Exploit DB Packet Storm |
| 275069 | 6.1 |
MEDIUM
Network |
ithemes | stripe | Stripe Add-on for iThemes Exchange before 1.2.0 for WordPress has XSS via add_query_arg() and remove_query_arg(). |
CWE-79
Cross-site Scripting |
CVE-2015-9374 | 2024-11-21 11:40 | 2019-08-28 | Show | GitHub Exploit DB Packet Storm |
| 275070 | 6.1 |
MEDIUM
Network |
webdevstudios | ithemes_paypal_pro | PayPal Pro Add-on for iThemes Exchange before 1.1.0 for WordPress has XSS via add_query_arg() and remove_query_arg(). |
CWE-79
Cross-site Scripting |
CVE-2015-9373 | 2024-11-21 11:40 | 2019-08-28 | Show | GitHub Exploit DB Packet Storm |