Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 2:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
257131 5 警告 Opera Software ASA - Opera における同一生成元ポリシーを回避される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2011-4681 2011-12-9 16:03 2011-12-7 Show GitHub Exploit DB Packet Storm
257132 7.5 危険 Webmaster-Tips - Joomla! 用 webmaster-tips.net Flash Gallery コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2010-4968 2011-12-9 14:45 2011-11-1 Show GitHub Exploit DB Packet Storm
257133 7.5 危険 BrotherScripts - BrotherScripts Business Directory の articlesdetails.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2010-4969 2011-12-9 14:44 2011-11-1 Show GitHub Exploit DB Packet Storm
257134 7.5 危険 wikiwebhelp - Wiki Web Help の handlers/getpage.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2010-4970 2011-12-9 14:44 2011-11-1 Show GitHub Exploit DB Packet Storm
257135 7.5 危険 YPNinc - YPNinc JokeScript の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2010-4972 2011-12-9 14:43 2011-11-1 Show GitHub Exploit DB Packet Storm
257136 4.3 警告 Sourcefabric - Campsite の検索機能におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2010-4973 2011-12-9 14:43 2011-11-1 Show GitHub Exploit DB Packet Storm
257137 7.5 危険 BrotherScripts - Auto Dealer の info.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2010-4974 2011-12-9 14:42 2011-11-1 Show GitHub Exploit DB Packet Storm
257138 7.5 危険 Techjoomla - Joomla! 用の Techjoomla SocialAds における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2010-4975 2011-12-9 14:41 2011-11-1 Show GitHub Exploit DB Packet Storm
257139 4.3 警告 MetInfo - MetInfo の search/search.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2010-4976 2011-12-9 14:40 2011-11-1 Show GitHub Exploit DB Packet Storm
257140 7.5 危険 Miniwork - Joomla! 用 Canteen コンポーネントの menu.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2010-4977 2011-12-9 14:39 2011-11-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
277541 6.1 MEDIUM
Network
elfsight instalinker The instalinker plugin before 1.1.2 for WordPress has includes/instalinker-admin-preview.php?client_id= XSS. CWE-79
Cross-site Scripting
CVE-2016-11005 2024-11-21 11:45 2019-09-21 Show GitHub Exploit DB Packet Storm
277542 8.8 HIGH
Network
elegantthemes monarch The Elegant Themes Monarch plugin before 1.2.7 for WordPress has privilege escalation. CWE-269
 Improper Privilege Management
CVE-2016-11004 2024-11-21 11:45 2019-09-21 Show GitHub Exploit DB Packet Storm
277543 8.8 HIGH
Network
elegantthemes monarch The Elegant Themes Bloom plugin before 1.1.1 for WordPress has privilege escalation. CWE-269
 Improper Privilege Management
CVE-2016-11003 2024-11-21 11:45 2019-09-21 Show GitHub Exploit DB Packet Storm
277544 8.8 HIGH
Network
elegantthemes extra The Elegant Themes Extra theme before 1.2.4 for WordPress has privilege escalation. CWE-269
 Improper Privilege Management
CVE-2016-11002 2024-11-21 11:45 2019-09-21 Show GitHub Exploit DB Packet Storm
277545 6.1 MEDIUM
Network
plugin-planet user_submitted_posts The user-submitted-posts plugin before 20160215 for WordPress has XSS via the user-submitted-content field. CWE-79
Cross-site Scripting
CVE-2016-11001 2024-11-21 11:45 2019-09-21 Show GitHub Exploit DB Packet Storm
277546 9.8 CRITICAL
Network
smackcoders ultimate_exporter The wp-ultimate-exporter plugin through 1.1 for WordPress has SQL injection via the export_type_name parameter. CWE-89
SQL Injection
CVE-2016-11000 2024-11-21 11:45 2019-09-21 Show GitHub Exploit DB Packet Storm
277547 6.1 MEDIUM
Network
momizat goodnews The Goodnews theme through 2016-02-28 for WordPress has XSS via the s parameter. CWE-79
Cross-site Scripting
CVE-2016-10999 2024-11-21 11:45 2019-09-21 Show GitHub Exploit DB Packet Storm
277548 6.1 MEDIUM
Network
ocimscripts ocim-mp3 The ocim-mp3 plugin through 2016-03-07 for WordPress has wp-content/plugins/ocim-mp3/source/pages.php?id= XSS. CWE-79
Cross-site Scripting
CVE-2016-10998 2024-11-21 11:45 2019-09-21 Show GitHub Exploit DB Packet Storm
277549 6.5 MEDIUM
Network
yourinspirationweb beauty-premium The beauty-premium theme 1.0.8 for WordPress has CSRF with resultant arbitrary file upload in includes/sendmail.php. CWE-352
 Origin Validation Error
CVE-2016-10997 2024-11-21 11:45 2019-09-21 Show GitHub Exploit DB Packet Storm
277550 5.3 MEDIUM
Network
optinmonster optinmonster The optinmonster plugin before 1.1.4.6 for WordPress has incorrect access control for shortcodes because of a nonce leak. CWE-863
 Incorrect Authorization
CVE-2016-10996 2024-11-21 11:45 2019-09-21 Show GitHub Exploit DB Packet Storm