Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 1, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252891 7.2 危険 VMware - 複数の VMware 製品におけるメモリ破損の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-4917 2010-09-13 16:01 2008-12-2 Show GitHub Exploit DB Packet Storm
252892 6.8 警告 VMware - 複数の VMware 製品の CPU ハードウェアエミュレーションにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-4279 2010-09-13 16:01 2008-10-3 Show GitHub Exploit DB Packet Storm
252893 2.1 注意 VMware - VMware ESX の VMware Consolidated Backup コマンドラインユーティリティにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2008-2101 2010-09-13 16:01 2008-08-29 Show GitHub Exploit DB Packet Storm
252894 9 危険 VMware - VMware ESXi および ESX の openwsman management service におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-2097 2010-09-13 16:01 2008-06-4 Show GitHub Exploit DB Packet Storm
252895 6.9 警告 VMware - Windows 上で稼働する複数の VMware 製品の VMCI における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2008-2099 2010-09-13 16:00 2008-05-30 Show GitHub Exploit DB Packet Storm
252896 6.9 警告 VMware - 複数の VMware 製品の HGFS におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-2098 2010-09-13 16:00 2008-05-30 Show GitHub Exploit DB Packet Storm
252897 5 警告 VMware - 複数の VMware 製品の VMware Authentication Daemon におけるサービス運用妨害 (DoS) の脆弱性 CWE-134
書式文字列の問題 		CVE-2009-4811 2010-09-13 16:00 2010-04-27 Show GitHub Exploit DB Packet Storm
252898 7.2 危険 VMware - Windows 上で稼働する複数の VMware 製品の OpenProcess 関数における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-3698 2010-09-13 15:59 2008-08-29 Show GitHub Exploit DB Packet Storm
252899 10 危険 VMware - 複数の VMware 製品の ActiveX コントロールにおける脆弱性 CWE-noinfo
情報不足 		CVE-2008-3696 2010-09-13 15:59 2008-08-28 Show GitHub Exploit DB Packet Storm
252900 10 危険 VMware - 複数の VMware 製品の ActiveX コントロールにおける脆弱性 CWE-noinfo
情報不足 		CVE-2008-3695 2010-09-13 15:59 2008-08-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 1, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
255871 9.8 CRITICAL
Network 		eventr_project eventr Vulnerability in wordpress plugin eventr v1.02.2, The edit.php form and event_form.php code do not sanitize input, this allows for blind SQL injection via the event parameter. CWE-89
SQL Injection 		CVE-2017-1002019 2024-11-21 12:04 2017-09-14 Show GitHub Exploit DB Packet Storm
255872 9.8 CRITICAL
Network 		eventr_project eventr Vulnerability in wordpress plugin eventr v1.02.2, The edit.php form and attendees.php code do not sanitize input, this allows for blind SQL injection via the event parameter. CWE-89
SQL Injection 		CVE-2017-1002018 2024-11-21 12:04 2017-09-14 Show GitHub Exploit DB Packet Storm
255873 6.1 MEDIUM
Network 		bobcares gift-certificate-creator Vulnerability in wordpress plugin gift-certificate-creator v1.0, The code in gc-list.php doesn't sanitize user input to prevent a stored XSS vulnerability. CWE-79
Cross-site Scripting 		CVE-2017-1002017 2024-11-21 12:04 2017-09-14 Show GitHub Exploit DB Packet Storm
255874 9.8 CRITICAL
Network 		flickr_picture_backup_project flickr_picture_backup Vulnerability in wordpress plugin flickr-picture-backup v0.7, The code in flickr-picture-download.php doesn't check to see if the user is authenticated or that they have permission to upload files. CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2017-1002016 2024-11-21 12:04 2017-09-14 Show GitHub Exploit DB Packet Storm
255875 9.8 CRITICAL
Network 		anblik image-gallery-with-slideshow Vulnerability in wordpress plugin image-gallery-with-slideshow v1.5.2, Blind SQL Injection in image-gallery-with-slideshow/admin_setting.php via selectMulGallery parameter. CWE-89
SQL Injection 		CVE-2017-1002015 2024-11-21 12:04 2017-09-14 Show GitHub Exploit DB Packet Storm
255876 9.8 CRITICAL
Network 		anblik image-gallery-with-slideshow Vulnerability in wordpress plugin image-gallery-with-slideshow v1.5.2, Blind SQL Injection in image-gallery-with-slideshow/admin_setting.php via gallery_name parameter. CWE-89
SQL Injection 		CVE-2017-1002014 2024-11-21 12:04 2017-09-14 Show GitHub Exploit DB Packet Storm
255877 9.8 CRITICAL
Network 		anblik image-gallery-with-slideshow Vulnerability in wordpress plugin image-gallery-with-slideshow v1.5.2, Blind SQL Injection via imgid parameter in image-gallery-with-slideshow/admin_setting.php. CWE-89
SQL Injection 		CVE-2017-1002013 2024-11-21 12:04 2017-09-14 Show GitHub Exploit DB Packet Storm
255878 9.8 CRITICAL
Network 		anblik image-gallery-with-slideshow Vulnerability in wordpress plugin image-gallery-with-slideshow v1.5.2, In image-gallery-with-slideshow/admin_setting.php the following snippet of code does not sanitize input via the gid variable bef… CWE-89
SQL Injection 		CVE-2017-1002012 2024-11-21 12:04 2017-09-14 Show GitHub Exploit DB Packet Storm
255879 5.4 MEDIUM
Network 		anblik image-gallery-with-slideshow Vulnerability in wordpress plugin image-gallery-with-slideshow v1.5.2, There is a stored XSS vulnerability via the $value->gallery_name and $value->gallery_description where anyone with privileges to… CWE-79
Cross-site Scripting 		CVE-2017-1002011 2024-11-21 12:04 2017-09-14 Show GitHub Exploit DB Packet Storm
255880 9.8 CRITICAL
Network 		ontraport membership_simplified Vulnerability in wordpress plugin Membership Simplified v1.58, The code in membership-simplified-for-oap-members-only/updateDB.php is vulnerable to blind SQL injection because it doesn't sanitize use… CWE-89
SQL Injection 		CVE-2017-1002010 2024-11-21 12:04 2017-09-14 Show GitHub Exploit DB Packet Storm