Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
258721 4.3 警告 Apache Software Foundation - Apache Struts におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2008-2025 2011-06-9 10:20 2009-04-9 Show GitHub Exploit DB Packet Storm
258722 4.3 警告 Stichting NLnet Labs - Unbound DNS リゾルバにサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題
CVE-2011-1922 2011-06-8 11:55 2011-05-26 Show GitHub Exploit DB Packet Storm
258723 7.8 危険 ERLANG - Erlang/OTP SSH ライブラリで生成される乱数が推測可能な問題 CWE-310
暗号の問題
CVE-2011-0766 2011-06-8 11:54 2011-05-26 Show GitHub Exploit DB Packet Storm
258724 10 危険 Google - Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー
CVE-2010-3415 2011-06-8 11:52 2010-09-14 Show GitHub Exploit DB Packet Storm
258725 10 危険 Google - Mac OS X 上で稼働する Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー
CVE-2010-3414 2011-06-8 11:52 2010-09-14 Show GitHub Exploit DB Packet Storm
258726 5 警告 Google - Google Chrome のポップアップブロック機能におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足
CVE-2010-3413 2011-06-8 11:51 2010-09-14 Show GitHub Exploit DB Packet Storm
258727 9.3 危険 Google - Google Chrome のコンソール実装における競合状態の脆弱性 CWE-362
競合状態
CVE-2010-3412 2011-06-8 11:51 2010-09-14 Show GitHub Exploit DB Packet Storm
258728 5 警告 Google - Linux 上で稼働する Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認
CVE-2010-3411 2011-06-8 11:50 2010-09-14 Show GitHub Exploit DB Packet Storm
258729 9.3 危険 Google
レッドハット
- Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー
CVE-2010-4206 2011-06-8 11:50 2010-11-4 Show GitHub Exploit DB Packet Storm
258730 9.3 危険 Google - Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認
CVE-2010-4205 2011-06-8 11:49 2010-11-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
279781 4.3 MEDIUM
Network
kibokolabs watupro The Watu Pro plugin before 4.9.0.8 for WordPress has CSRF that allows an attacker to delete quizzes. CWE-352
 Origin Validation Error
CVE-2015-9418 2024-11-21 11:40 2019-09-26 Show GitHub Exploit DB Packet Storm
279782 6.5 MEDIUM
Network
slidervilla testimonial_slider The testimonial-slider plugin through 1.2.1 for WordPress has CSRF with resultant XSS. CWE-352
 Origin Validation Error
CVE-2015-9417 2024-11-21 11:40 2019-09-26 Show GitHub Exploit DB Packet Storm
279783 6.1 MEDIUM
Network
onthegosystems sitepress-multilingual-cms The sitepress-multilingual-cms (WPML) plugin 2.9.3 to 3.2.6 for WordPress has XSS via the Accept-Language HTTP header. CWE-79
Cross-site Scripting
CVE-2015-9416 2024-11-21 11:40 2019-09-26 Show GitHub Exploit DB Packet Storm
279784 7.5 HIGH
Network
angrycreative bj_lazy_load The bj-lazy-load plugin before 1.0 for WordPress has Remote File Inclusion. CWE-20
 Improper Input Validation 
CVE-2015-9415 2024-11-21 11:40 2019-09-26 Show GitHub Exploit DB Packet Storm
279785 6.1 MEDIUM
Network
wpsymposiumpro wp-symposium The wp-symposium plugin through 15.8.1 for WordPress has XSS via the wp-content/plugins/wp-symposium/get_album_item.php?size parameter. CWE-79
Cross-site Scripting
CVE-2015-9414 2024-11-21 11:40 2019-09-26 Show GitHub Exploit DB Packet Storm
279786 6.5 MEDIUM
Network
eshop_project eshop The eshop plugin through 6.3.13 for WordPress has CSRF with resultant XSS via the wp-admin/admin.php?page=eshop-downloads.php title parameter. CWE-352
 Origin Validation Error
CVE-2015-9413 2024-11-21 11:40 2019-09-26 Show GitHub Exploit DB Packet Storm
279787 6.1 MEDIUM
Network
royal-slider_project royal-slider The Royal-Slider plugin before 3.2.7 for WordPress has XSS via the rstype parameter. CWE-79
Cross-site Scripting
CVE-2015-9412 2024-11-21 11:40 2019-09-26 Show GitHub Exploit DB Packet Storm
279788 6.1 MEDIUM
Network
gopostmatic replyable The Postmatic plugin before 1.4.6 for WordPress has XSS. CWE-79
Cross-site Scripting
CVE-2015-9411 2024-11-21 11:40 2019-09-26 Show GitHub Exploit DB Packet Storm
279789 5.4 MEDIUM
Network
blubrry powerpress The Blubrry PowerPress Podcasting plugin 6.0.4 for WordPress has XSS via the tab parameter. CWE-79
Cross-site Scripting
CVE-2015-9410 2024-11-21 11:40 2019-09-26 Show GitHub Exploit DB Packet Storm
279790 6.5 MEDIUM
Network
alo-easymail_project alo-easymail The alo-easymail plugin before 2.6.01 for WordPress has CSRF with resultant XSS in pages/alo-easymail-admin-options.php. CWE-352
 Origin Validation Error
CVE-2015-9409 2024-11-21 11:40 2019-09-26 Show GitHub Exploit DB Packet Storm