Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 4:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
202981 9.8 緊急
Network
Exponent CMS project - Exponent CMS の install/index.php における任意のコマンドを実行される脆弱性 CWE-284
不適切なアクセス制御
CVE-2016-7565 2017-03-6 14:37 2016-09-22 Show GitHub Exploit DB Packet Storm
202982 8.6 重要
Network
CZ.NIC Labs - Knot DNS におけるサービス運用妨害 (DoS) の脆弱性 CWE-400
リソースの枯渇
CVE-2016-6171 2017-03-6 14:36 2016-08-9 Show GitHub Exploit DB Packet Storm
202983 8.1 重要
Network
NetApp - NetApp OnCommand Workflow Automation における認証を回避される脆弱性 CWE-284
不適切なアクセス制御
CVE-2016-1894 2017-03-6 14:36 2016-03-11 Show GitHub Exploit DB Packet Storm
202984 6.1 警告
Network
OTRS プロジェクト - Open Ticket Request System におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2016-9139 2017-03-6 14:35 2016-11-1 Show GitHub Exploit DB Packet Storm
202985 5.5 警告
Local
Webkit - WebKit の JavaScriptCore におけるサービス運用妨害 (DoS) の脆弱性 CWE-125
境界外読み取り
CVE-2016-9642 2017-03-6 14:34 2016-11-26 Show GitHub Exploit DB Packet Storm
202986 5.4 警告
Network
IBM - IBM WebSphere Application Server におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2017-1121 2017-03-6 14:30 2017-02-9 Show GitHub Exploit DB Packet Storm
202987 7.8 重要
Local
IBM - IBM AIX における root 権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2016-6079 2017-03-6 14:30 2016-11-7 Show GitHub Exploit DB Packet Storm
202988 5.9 警告
Network
IBM - IBM Tealeaf Customer Experience on Cloud Network Capture Add-On における重要な情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2016-5900 2017-03-6 14:29 2016-12-12 Show GitHub Exploit DB Packet Storm
202989 5.4 警告
Network
IBM - IBM Cognos Analytics における格納型クロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2016-0217 2017-03-6 14:29 2017-01-13 Show GitHub Exploit DB Packet Storm
202990 7.5 重要
Network
サムスン - Android 搭載の Samsung デバイス製品におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認
CVE-2016-4547 2017-03-6 14:02 2016-05-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
292291 - xen_carousel_plugin_project xen_carousel Multiple cross-site scripting (XSS) vulnerabilities in xencarousel-admin.js.php in the XEN Carousel plugin 0.12.2 and earlier for WordPress allow remote attackers to inject arbitrary web script or HT… CWE-79
Cross-site Scripting
CVE-2014-4602 2024-11-21 11:10 2014-07-1 Show GitHub Exploit DB Packet Storm
292292 - mnt-tech wp-facethumb Cross-site scripting (XSS) vulnerability in the WP-FaceThumb plugin possibly 1.0 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the ajax_url parameter to… CWE-79
Cross-site Scripting
CVE-2014-4585 2024-11-21 11:10 2014-07-1 Show GitHub Exploit DB Packet Storm
292293 - wp-easybooking_plugin_project wp-easybooking Cross-site scripting (XSS) vulnerability in admin/editFacility.php in the wp-easybooking plugin 1.0.3 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the … CWE-79
Cross-site Scripting
CVE-2014-4584 2024-11-21 11:10 2014-07-1 Show GitHub Exploit DB Packet Storm
292294 - wp-contact_plugin_project wp-contact-sidebar-widget Multiple cross-site scripting (XSS) vulnerabilities in forms/messages.php in the WP-Contact (wp-contact-sidebar-widget) plugin 1.0 and earlier for WordPress allow remote attackers to inject arbitrary… CWE-79
Cross-site Scripting
CVE-2014-4583 2024-11-21 11:10 2014-07-1 Show GitHub Exploit DB Packet Storm
292295 - wikipop_plugin_project wikipop Cross-site scripting (XSS) vulnerability in js/window.php in the Wikipop plugin 2.0 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the s parameter. CWE-79
Cross-site Scripting
CVE-2014-4575 2024-11-21 11:10 2014-07-1 Show GitHub Exploit DB Packet Storm
292296 - videowhisper videowhisper_live_streaming_integration Cross-site scripting (XSS) vulnerability in ls/vv_login.php in the VideoWhisper Live Streaming Integration plugin 4.27.2 and earlier for WordPress allows remote attackers to inject arbitrary web scri… CWE-79
Cross-site Scripting
CVE-2014-4569 2024-11-21 11:10 2014-07-1 Show GitHub Exploit DB Packet Storm
292297 - validated_plugin_project validated_plugin Cross-site scripting (XSS) vulnerability in check.php in the Validated plugin 1.0.2 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the slug parameter. CWE-79
Cross-site Scripting
CVE-2014-4564 2024-11-21 11:10 2014-07-1 Show GitHub Exploit DB Packet Storm
292298 - swipe_checkout_for_eshop_project swipe_checkout_for_eshop Cross-site scripting (XSS) vulnerability in test-plugin.php in the Swipe Checkout for eShop plugin 3.7.0 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via t… CWE-79
Cross-site Scripting
CVE-2014-4556 2024-11-21 11:10 2014-07-1 Show GitHub Exploit DB Packet Storm
292299 - pro_quoter_plugin_project pro_quoter Multiple cross-site scripting (XSS) vulnerabilities in pq_dialog.php in the Pro Quoter plugin 1.0 and earlier for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) l… CWE-79
Cross-site Scripting
CVE-2014-4545 2024-11-21 11:10 2014-07-1 Show GitHub Exploit DB Packet Storm
292300 - malware_finder_plugin_project malware_finder Cross-site scripting (XSS) vulnerability in process.php in the Malware Finder plugin 1.1 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the query paramet… CWE-79
Cross-site Scripting
CVE-2014-4538 2024-11-21 11:10 2014-07-1 Show GitHub Exploit DB Packet Storm