Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 1, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
254001	6.8	警告	IBM	-	IBM WebSphere Application Server (WAS) におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2009-2746	2010-01-12 14:48	2009-11-13	Show	GitHub Exploit DB Packet Storm

254002	5	警告	アップル	-	Apple Safari におけるローカル HTML ファイルを読まれる脆弱性	CWE-Other その他	CVE-2009-2842	2010-01-7 12:09	2009-11-11	Show	GitHub Exploit DB Packet Storm

254003	5.5	警告	シックス・アパート株式会社	-	Movable Type におけるアクセス制限回避の脆弱性	CWE-264 認可・権限・アクセス制御	-	2010-01-6 15:01	2010-01-6	Show	GitHub Exploit DB Packet Storm

254004	9.3	危険	マイクロソフト	-	Microsoft Office Word および Open XML File Format Converter における、任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-3135	2010-01-6 14:44	2009-11-10	Show	GitHub Exploit DB Packet Storm

254005	5	警告	トレンドマイクロ日本電気 Apache Software Foundation 富士通サイバートラスト株式会社サン・マイクロシステムズヒューレット・パッカードレッドハット	-	Apache Tomcat の Apache HTTP Server との組合せによるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-0450	2010-01-6 14:43	2007-03-16	Show	GitHub Exploit DB Packet Storm

254006	9.3	危険	マイクロソフト	-	Microsoft Office Excel および Open XML File Format Converter におけるオブジェクトを含むスプレッドシートの処理に関する任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-3133	2010-01-5 16:18	2009-11-10	Show	GitHub Exploit DB Packet Storm

254007	9.3	危険	マイクロソフト	-	Microsoft Office Excel および Open XML File Format Converter における BIFF レコードの処理に関する任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-3130	2010-01-5 16:18	2009-11-10	Show	GitHub Exploit DB Packet Storm

254008	9.3	危険	マイクロソフト	-	複数の Microsoft 製品におけるエクセルファイルのフォーマットの処理に関する任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-3134	2010-01-5 16:18	2009-11-10	Show	GitHub Exploit DB Packet Storm

254009	9.3	危険	マイクロソフト	-	複数の Microsoft 製品における計算式を含むスプレッドシートの処理に関する任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-3132	2010-01-5 16:18	2009-11-10	Show	GitHub Exploit DB Packet Storm

254010	9.3	危険	マイクロソフト	-	複数の Microsoft 製品におけるセルに含まれる計算式の処理に関する任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-3131	2010-01-5 16:17	2009-11-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 2, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
248551	6.1	MEDIUM Network	wp-spamfree_anti-spam_project	wp-spamfree_anti-spam	A vulnerability classified as problematic has been found in WP-SpamFree Anti-Spam Plugin 2.1.1.4. This affects an unknown part. The manipulation leads to basic cross site scripting. It is possible to…	CWE-79 Cross-site Scripting	CVE-2017-20096	2024-11-21 12:22	2022-06-24	Show	GitHub Exploit DB Packet Storm

248552	9.8	CRITICAL Network	simple_ads_manager_project	simple_ads_manager	A vulnerability classified as critical was found in Simple Ads Manager Plugin. This vulnerability affects unknown code. The manipulation leads to code injection. The attack can be initiated remotely.	CWE-94 Code Injection	CVE-2017-20095	2024-11-21 12:22	2022-06-24	Show	GitHub Exploit DB Packet Storm

248553	5.4	MEDIUM Network	newstatpress_project	newstatpress	A vulnerability, which was classified as problematic, has been found in NewStatPress Plugin 1.2.4. This issue affects some unknown processing. The manipulation leads to basic cross site scripting (Pe…	CWE-79 Cross-site Scripting	CVE-2017-20094	2024-11-21 12:22	2022-06-24	Show	GitHub Exploit DB Packet Storm

248554	4.3	MEDIUM Network	wpdownloadmanager	wordpress_download_manager	A vulnerability, which was classified as problematic, was found in Download Manager Plugin 2.8.99. Affected is an unknown function. The manipulation leads to cross-site request forgery. It is possibl…	CWE-352 Origin Validation Error	CVE-2017-20093	2024-11-21 12:22	2022-06-24	Show	GitHub Exploit DB Packet Storm

248555	6.1	MEDIUM Network	yoast	google_analytics_dashboard	A vulnerability classified as problematic was found in Google Analytics Dashboard Plugin 2.1.1. Affected by this vulnerability is an unknown functionality. The manipulation leads to basic cross site …	CWE-79 Cross-site Scripting	CVE-2017-20092	2024-11-21 12:22	2022-06-24	Show	GitHub Exploit DB Packet Storm

248556	6.5	MEDIUM Network	wpjos	library_file_manager	A vulnerability was found in File Manager Plugin 3.0.1. It has been classified as problematic. This affects an unknown part. The manipulation leads to cross-site request forgery. It is possible to in…	CWE-352 Origin Validation Error	CVE-2017-20091	2024-11-21 12:22	2022-06-23	Show	GitHub Exploit DB Packet Storm

248557	8.8	HIGH Network	global_content_blocks_project	global_content_blocks	A vulnerability was found in Global Content Blocks Plugin 2.1.5. It has been declared as problematic. This vulnerability affects unknown code. The manipulation leads to cross-site request forgery. Th…	CWE-352 Origin Validation Error	CVE-2017-20090	2024-11-21 12:22	2022-06-23	Show	GitHub Exploit DB Packet Storm

248558	6.1	MEDIUM Network	gwolle_guestbook_project	gwolle_guestbook	A vulnerability was found in Gwolle Guestbook Plugin 1.7.4. It has been rated as problematic. This issue affects some unknown processing. The manipulation leads to basic cross site scripting. The att…	CWE-79 Cross-site Scripting	CVE-2017-20089	2024-11-21 12:22	2022-06-23	Show	GitHub Exploit DB Packet Storm

248559	4.3	MEDIUM Network	bytesforall	atahualpa	A vulnerability classified as problematic has been found in Atahualpa Theme. Affected is an unknown function. The manipulation leads to cross-site request forgery. It is possible to launch the attack…	CWE-352 Origin Validation Error	CVE-2017-20088	2024-11-21 12:22	2022-06-23	Show	GitHub Exploit DB Packet Storm

248560	6.1	MEDIUM Network	thealpinepress	alpine-photo-tile-for-instagram	A vulnerability, which was classified as problematic, has been found in Alpine PhotoTile for Instagram Plugin 1.2.7.7. Affected by this issue is some unknown functionality. The manipulation leads to …	CWE-79 Cross-site Scripting	CVE-2017-20087	2024-11-21 12:22	2022-06-23	Show	GitHub Exploit DB Packet Storm