Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 31, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
216191 5 警告 SVN Labs Softwares. - WordPress 用 HTML5 MP3 Player with Playlist Free プラグインにおけるインストールパスを取得される脆弱性 CWE-200
情報漏えい 		CVE-2014-9177 2014-12-3 16:07 2014-11-26 Show GitHub Exploit DB Packet Storm
216192 4.3 警告 InstaSqueeze.com - WordPress 用 InstaSqueeze Sexy Squeeze Pages プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-9176 2014-12-3 16:06 2014-11-26 Show GitHub Exploit DB Packet Storm
216193 7.5 危険 wpDataTables - WordPress 用 wpDataTables プラグインの wpdatatables.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-9175 2014-12-3 16:05 2014-11-22 Show GitHub Exploit DB Packet Storm
216194 4.3 警告 Team Yoast - WordPress 用 Google Analytics by Yoast プラグインおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-9174 2014-12-3 16:05 2014-11-26 Show GitHub Exploit DB Packet Storm
216195 7.5 危険 Google Doc Embedder - WordPress 用 Google Doc Embedder プラグインの view.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-9173 2014-12-3 16:05 2014-11-14 Show GitHub Exploit DB Packet Storm
216196 4.3 警告 Geardev - WordPress 用 Ad-Manager プラグインの track-click.php におけるオープンリダイレクトの脆弱性 CWE-Other
その他 		CVE-2014-8754 2014-12-3 16:04 2014-11-26 Show GitHub Exploit DB Packet Storm
216197 5 警告 Kennziffer.com - TYPO3 用 ke_questionnaire エクステンションにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2014-8874 2014-12-3 15:56 2014-12-1 Show GitHub Exploit DB Packet Storm
216198 5 警告 ZTE - ZTE ZXDSL 831CII における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2014-9184 2014-12-3 15:55 2014-11-7 Show GitHub Exploit DB Packet Storm
216199 10 危険 ZTE - ZTE ZXDSL 831CII における管理者権限を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2014-9183 2014-12-3 15:54 2014-11-7 Show GitHub Exploit DB Packet Storm
216200 4.3 警告 Anchor - Anchor CMS の models/comment.php におけるメールメッセージに任意のヘッダを挿入される脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-9182 2014-12-3 15:54 2014-11-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
292061 - suse studio_onsite
studio_extension_for_system_z 		SUSE Studio Onsite 1.3.x before 1.3.6 and SUSE Studio Extension for System z 1.3 uses "static" secret tokens, which has unspecified impact and vectors. CWE-310
Cryptographic Issues 		CVE-2013-3712 2024-11-21 10:54 2014-02-27 Show GitHub Exploit DB Packet Storm
292062 - ibm sametime The Meeting Server in IBM Sametime 8.5.2 through 8.5.2.1 and 9.x through 9.0.0.1 allows remote attackers to conduct clickjacking attacks via unspecified vectors. CWE-20
 Improper Input Validation  		CVE-2013-3988 2024-11-21 10:54 2014-02-14 Show GitHub Exploit DB Packet Storm
292063 - ibm sametime The Meeting Server in IBM Sametime 8.5.2 through 8.5.2.1 and 9.x through 9.0.0.1 does not validate URLs in Cookie headers before using them in redirects, which has unspecified impact and remote attac… CWE-20
 Improper Input Validation  		CVE-2013-3983 2024-11-21 10:54 2014-02-14 Show GitHub Exploit DB Packet Storm
292064 - ibm sametime The Meeting Server in IBM Sametime 8.5.2 through 8.5.2.1 and 9.x through 9.0.0.1 does not send the appropriate HTTP response headers to prevent unwanted caching by a web browser, which allows remote … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-3978 2024-11-21 10:54 2014-02-14 Show GitHub Exploit DB Packet Storm
292065 - maxxmarketing joomshopping Cross-site scripting (XSS) vulnerability in the JoomShopping (com_joomshopping) component before 4.3.1 for Joomla! allows remote attackers to inject arbitrary web script or HTML via the user_name par… CWE-79
Cross-site Scripting 		CVE-2013-3933 2024-11-21 10:54 2014-02-12 Show GitHub Exploit DB Packet Storm
292066 - xaraya xaraya Multiple cross-site scripting (XSS) vulnerabilities in Xaraya 2.4.0-b1 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) id, (2) interface, (3) name, or (4) tabmod… CWE-79
Cross-site Scripting 		CVE-2013-3639 2024-11-21 10:54 2014-02-6 Show GitHub Exploit DB Packet Storm
292067 - ibm spss_collaboration_and_deployment_services The server in IBM SPSS Collaboration and Deployment Services 4.x before 4.2.1.3 IF3, 5.x before 5.0 FP3, and 6.x before 6.0 IF1 allows remote attackers to read arbitrary files via an unspecified HTTP… CWE-200
Information Exposure 		CVE-2013-4043 2024-11-21 10:54 2014-02-2 Show GitHub Exploit DB Packet Storm
292068 - springsource
vmware 		spring_framework The Spring OXM wrapper in Spring Framework before 3.2.4 and 4.0.0.M1, when using the JAXB marshaller, does not disable entity resolution, which allows context-dependent attackers to read arbitrary fi… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-4152 2024-11-21 10:54 2014-01-24 Show GitHub Exploit DB Packet Storm
292069 - littlecms little_cms_color_engine Little CMS (lcms2) before 2.5, as used in OpenJDK 7 and possibly other products, allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via vectors related to (1) c… NVD-CWE-Other
CVE-2013-4160 2024-11-21 10:54 2014-01-22 Show GitHub Exploit DB Packet Storm
292070 - ibm integrated_management_module_2
bladecenter
flex_system_manager_node_7955
flex_system_manager_node_8731
flex_system_manager_node_8734
flex_system_x220_compute_node
flex_system_x240_c… 		Integrated Management Module (IMM) 2 1.00 through 2.00 on IBM System X and Flex System servers supports SSL cipher suites with short keys, which makes it easier for remote attackers to defeat cryptog… CWE-310
Cryptographic Issues 		CVE-2013-4030 2024-11-21 10:54 2014-01-21 Show GitHub Exploit DB Packet Storm