Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
253541 4 警告 オラクル - Oracle PeopleSoft Enterprise PeopleTools における脆弱性 CWE-noinfo
情報不足 		CVE-2011-0840 2011-05-16 11:33 2011-04-19 Show GitHub Exploit DB Packet Storm
253542 4.3 警告 オラクル - Oracle Supply Chain Products Suite の Agile Technology Platform コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2011-0837 2011-05-16 11:32 2011-04-19 Show GitHub Exploit DB Packet Storm
253543 3.5 注意 オラクル - Oracle JD Edwards EnterpriseOne Tools および OneWorld Tools における脆弱性 CWE-noinfo
情報不足 		CVE-2011-0836 2011-05-16 11:31 2011-04-19 Show GitHub Exploit DB Packet Storm
253544 4.3 警告 オラクル - Oracle Siebel CRM の Siebel CRM Core コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2011-0834 2011-05-16 11:27 2011-04-19 Show GitHub Exploit DB Packet Storm
253545 4.3 警告 オラクル - Oracle Siebel CRM の Siebel CRM Core コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2011-0833 2011-05-16 11:27 2011-04-19 Show GitHub Exploit DB Packet Storm
253546 9.3 危険 サイバートラスト株式会社
Mozilla Foundation
レッドハット
オラクル		 - 複数の Mozilla 製品の navigator.plugins の実装における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2010-2767 2011-05-16 11:09 2010-09-7 Show GitHub Exploit DB Packet Storm
253547 9.3 危険 サイバートラスト株式会社
Mozilla Foundation
レッドハット
オラクル		 - 複数の Mozilla 製品の normalizeDocument 関数における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-2766 2011-05-16 11:08 2010-09-7 Show GitHub Exploit DB Packet Storm
253548 9.3 危険 サイバートラスト株式会社
Mozilla Foundation
レッドハット
オラクル		 - 複数の Mozilla 製品の FRAMESET 要素の実装における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2010-2765 2011-05-16 11:07 2010-09-7 Show GitHub Exploit DB Packet Storm
253549 9.3 危険 サイバートラスト株式会社
Mozilla Foundation
レッドハット
オラクル		 - 複数の Mozilla 製品の nsTreeSelection 関数における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2010-2760 2011-05-16 11:05 2010-09-7 Show GitHub Exploit DB Packet Storm
253550 3.7 注意 オラクル - Oracle Solaris における LOFS の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2011-0839 2011-05-13 11:37 2011-04-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
311741 6.1 MEDIUM
Network 		stellarwp the_events_calendar The The Events Calendar plugin for WordPress is vulnerable to Stored Cross-Site Scripting via RSVP name field in all versions up to, and including, 6.6.3 due to insufficient input sanitization and ou… CWE-79
Cross-site Scripting 		CVE-2024-6931 2024-10-5 04:08 2024-09-27 Show GitHub Exploit DB Packet Storm
311742 5.4 MEDIUM
Network 		leap13 premium_addons_for_elementor The Premium Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Media Grid widget in all versions up to, and including, 4.10.52 due to insufficient… CWE-79
Cross-site Scripting 		CVE-2024-8681 2024-10-5 04:04 2024-09-27 Show GitHub Exploit DB Packet Storm
311743 5.4 MEDIUM
Network 		codesupply absolute_reviews The Absolute Reviews plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'Name' field of a custom post criteria in all versions up to, and including, 1.1.3 due to insufficient i… CWE-79
Cross-site Scripting 		CVE-2024-8965 2024-10-5 04:04 2024-09-27 Show GitHub Exploit DB Packet Storm
311744 8.8 HIGH
Network 		advantech adam-5630_firmware Advantech ADAM-5630 contains a cross-site request forgery (CSRF) vulnerability. It allows an attacker to partly circumvent the same origin policy, which is designed to prevent different websites fro… CWE-352
 Origin Validation Error 		CVE-2024-28948 2024-10-5 03:58 2024-09-28 Show GitHub Exploit DB Packet Storm
311745 5.4 MEDIUM
Network 		hyumika openstreetmap The OSM – OpenStreetMap plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's osm_map and osm_map_v3 shortcodes in all versions up to, and including, 6.1.0 due to insuffi… CWE-79
Cross-site Scripting 		CVE-2024-8991 2024-10-5 03:56 2024-09-27 Show GitHub Exploit DB Packet Storm
311746 5.4 MEDIUM
Network 		fastlinemedia beaver_builder The Beaver Builder – WordPress Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Button Group module in all versions up to, and including, 2.8.3.6 due to… CWE-79
Cross-site Scripting 		CVE-2024-9049 2024-10-5 03:53 2024-09-27 Show GitHub Exploit DB Packet Storm
311747 4.3 MEDIUM
Network 		bg5sbk minicms A vulnerability was found in bg5sbk MiniCMS 1.11. It has been classified as problematic. Affected is an unknown function of the file page-edit.php. The manipulation leads to cross-site request forger… CWE-352
 Origin Validation Error 		CVE-2024-9282 2024-10-5 03:33 2024-09-27 Show GitHub Exploit DB Packet Storm
311748 7.5 HIGH
Network 		amirraminfar dozzle Dozzle is a realtime log viewer for docker containers. Before version 8.5.3, the app uses sha-256 as the hash for passwords, which leaves users susceptible to rainbow table attacks. The app switches … CWE-326
Inadequate Encryption Strength 		CVE-2024-47182 2024-10-5 03:31 2024-09-27 Show GitHub Exploit DB Packet Storm
311749 8.2 HIGH
Network 		openpetra openpetra Cross Site Scripting vulnerability in openPetra v.2023.02 allows a remote attacker to obtain sensitive information via the serverMCommon.asmx function. CWE-79
Cross-site Scripting 		CVE-2024-40510 2024-10-5 03:28 2024-09-28 Show GitHub Exploit DB Packet Storm
311750 8.8 HIGH
Network 		themewinter eventin The Event Manager, Events Calendar, Tickets, Registrations – Eventin plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 4.0.8 via multiple style paramete… CWE-22
Path Traversal 		CVE-2024-7149 2024-10-5 03:23 2024-09-27 Show GitHub Exploit DB Packet Storm