Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 24, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
201061 5.3 警告
Network 		Cloudera, Inc. - Cloudera HUE におけるユーザアカウントを列挙される脆弱性 CWE-200
情報漏えい 		CVE-2016-4947 2017-03-29 17:08 2016-10-25 Show GitHub Exploit DB Packet Storm
201062 6.1 警告
Network 		Cloudera, Inc. - Cloudera HUE におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-4946 2017-03-29 17:08 2016-10-19 Show GitHub Exploit DB Packet Storm
201063 5.5 警告
Local 		OpenBSD - OpenBSD におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2016-6247 2017-03-29 16:57 2016-07-14 Show GitHub Exploit DB Packet Storm
201064 7.5 重要
Network 		OpenBSD - OpenBSD のカーネルの kern/kern_sig.c の sys_thrsigdivert 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2016-6244 2017-03-29 16:57 2016-07-17 Show GitHub Exploit DB Packet Storm
201065 5.5 警告
Local 		OpenBSD - OpenBSD の kern/kern_synch.c の thrsleep におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2016-6243 2017-03-29 16:57 2016-07-14 Show GitHub Exploit DB Packet Storm
201066 5.5 警告
Local 		OpenBSD - OpenBSD におけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2016-6242 2017-03-29 16:57 2016-07-14 Show GitHub Exploit DB Packet Storm
201067 7.8 重要
Local 		OpenBSD - OpenBSD の amap_alloc1 関数における整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2016-6241 2017-03-29 16:57 2016-07-14 Show GitHub Exploit DB Packet Storm
201068 7.8 重要
Local 		OpenBSD - OpenBSD の amap_alloc 関数における整数切り捨てエラーの脆弱性 CWE-189
数値処理の問題 		CVE-2016-6240 2017-03-29 16:57 2016-07-14 Show GitHub Exploit DB Packet Storm
201069 5.5 警告
Local 		OpenBSD - OpenBSD の mmap 拡張子 __MAP_NOFAULT におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2016-6239 2017-03-29 16:57 2016-07-14 Show GitHub Exploit DB Packet Storm
201070 7.2 重要
Network 		ソフォス - Sophos Web Appliance の Web 管理インターフェースの MgrReport.php コンポーネントにおけるリモートコマンドインジェクションの脆弱性 CWE-77
コマンドインジェクション 		CVE-2016-9553 2017-03-29 16:35 2016-11-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 24, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
289651 - mnt-tech wp-facethumb Cross-site scripting (XSS) vulnerability in the WP-FaceThumb plugin possibly 1.0 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the ajax_url parameter to… CWE-79
Cross-site Scripting 		CVE-2014-4585 2024-11-21 11:10 2014-07-1 Show GitHub Exploit DB Packet Storm
289652 - wp-easybooking_plugin_project wp-easybooking Cross-site scripting (XSS) vulnerability in admin/editFacility.php in the wp-easybooking plugin 1.0.3 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the … CWE-79
Cross-site Scripting 		CVE-2014-4584 2024-11-21 11:10 2014-07-1 Show GitHub Exploit DB Packet Storm
289653 - wp-contact_plugin_project wp-contact-sidebar-widget Multiple cross-site scripting (XSS) vulnerabilities in forms/messages.php in the WP-Contact (wp-contact-sidebar-widget) plugin 1.0 and earlier for WordPress allow remote attackers to inject arbitrary… CWE-79
Cross-site Scripting 		CVE-2014-4583 2024-11-21 11:10 2014-07-1 Show GitHub Exploit DB Packet Storm
289654 - wikipop_plugin_project wikipop Cross-site scripting (XSS) vulnerability in js/window.php in the Wikipop plugin 2.0 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the s parameter. CWE-79
Cross-site Scripting 		CVE-2014-4575 2024-11-21 11:10 2014-07-1 Show GitHub Exploit DB Packet Storm
289655 - videowhisper videowhisper_live_streaming_integration Cross-site scripting (XSS) vulnerability in ls/vv_login.php in the VideoWhisper Live Streaming Integration plugin 4.27.2 and earlier for WordPress allows remote attackers to inject arbitrary web scri… CWE-79
Cross-site Scripting 		CVE-2014-4569 2024-11-21 11:10 2014-07-1 Show GitHub Exploit DB Packet Storm
289656 - validated_plugin_project validated_plugin Cross-site scripting (XSS) vulnerability in check.php in the Validated plugin 1.0.2 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the slug parameter. CWE-79
Cross-site Scripting 		CVE-2014-4564 2024-11-21 11:10 2014-07-1 Show GitHub Exploit DB Packet Storm
289657 - swipe_checkout_for_eshop_project swipe_checkout_for_eshop Cross-site scripting (XSS) vulnerability in test-plugin.php in the Swipe Checkout for eShop plugin 3.7.0 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via t… CWE-79
Cross-site Scripting 		CVE-2014-4556 2024-11-21 11:10 2014-07-1 Show GitHub Exploit DB Packet Storm
289658 - pro_quoter_plugin_project pro_quoter Multiple cross-site scripting (XSS) vulnerabilities in pq_dialog.php in the Pro Quoter plugin 1.0 and earlier for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) l… CWE-79
Cross-site Scripting 		CVE-2014-4545 2024-11-21 11:10 2014-07-1 Show GitHub Exploit DB Packet Storm
289659 - malware_finder_plugin_project malware_finder Cross-site scripting (XSS) vulnerability in process.php in the Malware Finder plugin 1.1 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the query paramet… CWE-79
Cross-site Scripting 		CVE-2014-4538 2024-11-21 11:10 2014-07-1 Show GitHub Exploit DB Packet Storm
289660 - geo_redirector_plugin_project geo_redirector Cross-site scripting (XSS) vulnerability in ajax_functions.php in the GEO Redirector plugin 1.0.1 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the hid_… CWE-79
Cross-site Scripting 		CVE-2014-4533 2024-11-21 11:10 2014-07-1 Show GitHub Exploit DB Packet Storm