Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 24, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
213861	6.8	警告	Justin Klein	-	WordPress 用 WP-ViperGB プラグインにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2014-9460	2015-01-8 13:48	2014-11-27	Show	GitHub Exploit DB Packet Storm

213862	4.3	警告	Rinat Khaziev	-	WordPress 用 Frontend Uploader プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-9444	2015-01-8 13:47	2014-12-27	Show	GitHub Exploit DB Packet Storm

213863	4.3	警告	Mikko Saari	-	WordPress 用 Relevanssi プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-9443	2015-01-8 13:47	2014-12-16	Show	GitHub Exploit DB Packet Storm

213864	6.5	警告	Reality66	-	WordPress 用 Cart66 Lite プラグインの models/Cart66Ajax.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-9442	2015-01-8 13:46	2014-12-22	Show	GitHub Exploit DB Packet Storm

213865	6.8	警告	Lightbox Photo Gallery project	-	WordPress 用 Lightbox Photo Gallery プラグインにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2014-9441	2015-01-8 13:46	2014-12-12	Show	GitHub Exploit DB Packet Storm

213866	6.8	警告	Sliding Social Icons project	-	WordPress 用 Sliding Social Icons プラグインにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2014-9437	2015-01-8 13:46	2014-12-12	Show	GitHub Exploit DB Packet Storm

213867	6.8	警告	e107.org	-	e107 の e107_admin/users.php の AdminObserver 関数におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2014-9459	2015-01-8 12:20	2014-12-28	Show	GitHub Exploit DB Packet Storm

213868	10	危険	Hex-Rays	-	Hex-Rays IDA の GDB debugger モジュールにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2014-9458	2015-01-8 12:13	2014-12-24	Show	GitHub Exploit DB Packet Storm

213869	6.5	警告	PMB Services SAS.	-	PMB の classes/mono_display.class.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-9457	2015-01-8 12:03	2014-12-25	Show	GitHub Exploit DB Packet Storm

213870	5.8	警告	NYU	-	Ex Libris Patron Directory Services 用 NYU OpenSSO Integration のログインページにおけるオープンリダイレクトの脆弱性	CWE-Other その他	CVE-2014-7294	2015-01-8 11:53	2014-12-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
346661	-	mpm	mpm_guestbook	Cross-site scripting (XSS) vulnerability in MPM Guestbook 1.2 allows remote attackers to inject arbitrary web script or HTML via the lng parameter.	NVD-CWE-Other	CVE-2003-1182	2017-07-11 10:29	2003-11-3	Show	GitHub Exploit DB Packet Storm

346662	-	oracle	oracle_files	The WebCache component in Oracle Files 9.0.3.1.0, 9.0.3.2.0, and 9.0.3.3.0 of Oracle Collaboration Suite Release 1 caches files despite the cacheability rules imposed by Oracle Files, which allows lo…	NVD-CWE-Other	CVE-2003-1183	2017-07-11 10:29	2003-10-28	Show	GitHub Exploit DB Packet Storm

346663	-	-	-	Multiple cross-site scripting (XSS) vulnerabilities in ThWboard Beta 2.8 and 2.81 allow remote attackers to inject arbitrary web script or HTML via (1) time in board.php, (2) the profile Homepage-Fel…	NVD-CWE-Other	CVE-2003-1184	2017-07-11 10:29	2003-11-3	Show	GitHub Exploit DB Packet Storm

346664	-	thwboard	thwboard	Multiple SQL injection vulnerabilities in ThWboard before Beta 2.8.2 allow remote attackers to inject arbitrary SQL commands via various vectors including (1) Admin-Center, (2) Announcements, (3) adm…	NVD-CWE-Other	CVE-2003-1185	2017-07-11 10:29	2003-11-3	Show	GitHub Exploit DB Packet Storm

346665	-	telcondex	simplewebserver	Buffer overflow in TelCondex SimpleWebServer 2.12.30210 Build3285 allows remote attackers to execute arbitrary code via a long HTTP Referer header.	NVD-CWE-Other	CVE-2003-1186	2017-07-11 10:29	2003-10-29	Show	GitHub Exploit DB Packet Storm

346666	-	telcondex	simplewebserver	This was fixed in version 2.13.	NVD-CWE-Other	CVE-2003-1186	2017-07-11 10:29	2003-10-29	Show	GitHub Exploit DB Packet Storm

346667	-	unichat	unichat	Unichat allows remote attackers to cause a denial of service (crash) by adding extra chat characters (avatars) and logging in to a chat room, as demonstrated using duplicate ACTOR entries in u2res000…	NVD-CWE-Other	CVE-2003-1188	2017-07-11 10:29	2003-11-2	Show	GitHub Exploit DB Packet Storm

346668	-	nokia	ipso	Unknown vulnerability in Nokia IPSO 3.7, configured as IP Clusters, allows remote attackers to cause a denial of service via unknown attack vectors.	NVD-CWE-Other	CVE-2003-1189	2017-07-11 10:29	2003-10-29	Show	GitHub Exploit DB Packet Storm

346669	-	phprecipebook	phprecipebook	Cross-site scripting (XSS) vulnerability in PHPRecipeBook 1.24 through 2.17 allows remote attackers to inject arbitrary web script or HTML via a recipe.	NVD-CWE-Other	CVE-2003-1190	2017-07-11 10:29	2003-11-3	Show	GitHub Exploit DB Packet Storm

346670	-	phprecipebook	phprecipebook	This was fixed in PHPRecipeBook 2.18.	NVD-CWE-Other	CVE-2003-1190	2017-07-11 10:29	2003-11-3	Show	GitHub Exploit DB Packet Storm