Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 6, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
213731	4.3	警告	Webshop hun	-	Webshop hun におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2015-2244	2015-03-11 15:55	2015-03-4	Show	GitHub Exploit DB Packet Storm

213732	7.5	危険	Webshop hun	-	Webshop hun におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2015-2243	2015-03-11 15:54	2015-03-4	Show	GitHub Exploit DB Packet Storm

213733	7.5	危険	Webshop hun	-	Webshop hun における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2015-2242	2015-03-11 15:53	2015-03-4	Show	GitHub Exploit DB Packet Storm

213734	6.8	警告	CFDB Plugin	-	WordPress 用 Contact Form DB プラグインにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2015-1874	2015-03-11 15:13	2015-02-23	Show	GitHub Exploit DB Packet Storm

213735	7.5	危険	Agilent Technologies	-	Agilent Technologies Feature Extraction の AnnotationX.AnnList.1 の ActiveX コントロールにおける任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2015-2092	2015-03-11 14:58	2015-02-27	Show	GitHub Exploit DB Packet Storm

213736	4.3	警告	e-merge GmbH	-	unace における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2015-2063	2015-03-11 14:53	2015-03-2	Show	GitHub Exploit DB Packet Storm

213737	7.5	危険	PTC Inc.	-	PTC Creo View 用ブラウザプラグインにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2015-2061	2015-03-11 14:44	2015-02-27	Show	GitHub Exploit DB Packet Storm

213738	6.4	警告	Best Practical Solutions	-	RT におけるセッションをハイジャックされる脆弱性	CWE-Other その他	CVE-2015-1464	2015-03-11 14:39	2015-02-26	Show	GitHub Exploit DB Packet Storm

213739	5	警告	Best Practical Solutions	-	RT における重要な RSS フィードの URL およびチケットデータを取得される脆弱性	CWE-200 情報漏えい	CVE-2015-1165	2015-03-11 14:38	2015-02-26	Show	GitHub Exploit DB Packet Storm

213740	7.1	危険	Best Practical Solutions	-	RT の電子メールゲートウェイにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2014-9472	2015-03-11 14:38	2015-02-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
3191	7.1	HIGH Network	-	-	Authentication Bypass Using an Alternate Path or Channel vulnerability in Themeisle Disable Comments for Any Post Types (Remove comments) comments-plus allows Password Recovery Exploitation.This issu…	CWE-288 Authentication Bypass Using an Alternate Path or Channel	CVE-2026-42749	2026-05-27 23:50	2026-05-27	Show	GitHub Exploit DB Packet Storm

3192	6.5	MEDIUM Network	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Nexcess WPComplete wpcomplete allows Stored XSS.This issue affects WPComplete: from n/a through <…	CWE-79 Cross-site Scripting	CVE-2026-42750	2026-05-27 23:50	2026-05-27	Show	GitHub Exploit DB Packet Storm

3193	6.5	MEDIUM Network	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in wpdevelop Booking Manager booking-manager allows Stored XSS.This issue affects Booking Manager: f…	CWE-79 Cross-site Scripting	CVE-2026-42751	2026-05-27 23:50	2026-05-27	Show	GitHub Exploit DB Packet Storm

3194	7.3	HIGH Network	-	-	Missing Authorization vulnerability in WC Lovers WCFM Membership wc-multivendor-membership allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WCFM Membership: …	CWE-862 Missing Authorization	CVE-2026-42753	2026-05-27 23:50	2026-05-27	Show	GitHub Exploit DB Packet Storm

3195	7.1	HIGH Network	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in phbernard Favicon favicon-by-realfavicongenerator allows Reflected XSS.This issue affects Favicon…	CWE-79 Cross-site Scripting	CVE-2026-42754	2026-05-27 23:50	2026-05-27	Show	GitHub Exploit DB Packet Storm

3196	9.3	CRITICAL Network	-	-	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in RealMag777 TableOn posts-table-filterable allows Blind SQL Injection.This issue affects TableOn: …	CWE-89 SQL Injection	CVE-2026-42755	2026-05-27 23:50	2026-05-27	Show	GitHub Exploit DB Packet Storm

3197	9.9	CRITICAL Network	-	-	Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Ludwig You QuickWebP – Compress / Optimize Images & Convert WebP \| SEO Friendly quickwebp all…	CWE-22 Path Traversal	CVE-2026-42756	2026-05-27 23:50	2026-05-27	Show	GitHub Exploit DB Packet Storm

3198	9.9	CRITICAL Network	-	-	Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Saleswonder Team: Tobias WebinarIgnition webinar-ignition allows Path Traversal.This issue affects Webi…	CWE-22 Path Traversal	CVE-2026-42757	2026-05-27 23:50	2026-05-27	Show	GitHub Exploit DB Packet Storm

3199	9.8	CRITICAL Network	-	-	Incorrect Privilege Assignment vulnerability in Saleswonder Team: Tobias WebinarIgnition webinar-ignition allows Privilege Escalation.This issue affects WebinarIgnition: from n/a through < 4.08.253.	CWE-266 Incorrect Privilege Assignment	CVE-2026-42758	2026-05-27 23:50	2026-05-27	Show	GitHub Exploit DB Packet Storm

3200	7.1	HIGH Network	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Timo Affiliate Super Assistent amazonsimpleadmin allows Stored XSS.This issue affects Affiliate S…	CWE-79 Cross-site Scripting	CVE-2026-42759	2026-05-27 23:50	2026-05-27	Show	GitHub Exploit DB Packet Storm