Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 14, 2026, 2:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
216461 6.8 警告 Debian
Canonical		 - reportbug における任意のコマンドを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2014-0479 2014-08-8 19:11 2014-08-5 Show GitHub Exploit DB Packet Storm
216462 4.3 警告 Mike Challis - WordPress 用 SI CAPTCHA Anti-Spam プラグインの captcha-secureimage/test/index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-5190 2014-08-8 18:59 2014-08-3 Show GitHub Exploit DB Packet Storm
216463 7.5 危険 Ariel Sanders - WordPress 用 Lead Octopus プラグインの lib/optin/optin_page.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-5189 2014-08-8 18:54 2014-07-28 Show GitHub Exploit DB Packet Storm
216464 5 警告 Tom M8te project - WordPress 用 Tom M8te プラグインにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-5187 2014-08-8 18:48 2014-05-28 Show GitHub Exploit DB Packet Storm
216465 6.5 警告 Vinoth Kumar - WordPress 用 All Video Gallery プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-5186 2014-08-8 18:46 2014-05-28 Show GitHub Exploit DB Packet Storm
216466 6 警告 Quartz plugin project - WordPress 用 Quartz プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-5185 2014-08-8 18:45 2014-05-28 Show GitHub Exploit DB Packet Storm
216467 6.5 警告 Brad Hawkins - WordPress 用 stripShow プラグインの stripshow-storylines ページにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-5184 2014-08-8 18:44 2014-05-28 Show GitHub Exploit DB Packet Storm
216468 6.5 警告 Jesse Cortez - WordPress 用 Simple Retail Menus プラグインの includes/mode-edit.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-5183 2014-08-8 18:43 2014-02-19 Show GitHub Exploit DB Packet Storm
216469 6 警告 ostenta - WordPress 用 yawpp プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-5182 2014-08-8 18:42 2014-01-7 Show GitHub Exploit DB Packet Storm
216470 5 警告 Last.fm Rotation plugin project - WordPress 用 Last.fm Rotation プラグインの lastfm-proxy.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-5181 2014-08-8 18:40 2014-05-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 14, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
295611 - qualcomm yagattatalk_messenger Unspecified vulnerability in the YagattaTalk Messenger (com.iskoot.yagatta.yagattatalk) application 1.00.01.08 for Android has unknown impact and attack vectors. NVD-CWE-noinfo
CVE-2012-1475 2024-11-21 10:37 2012-03-14 Show GitHub Exploit DB Packet Storm
295612 - sdo youni_sms Unspecified vulnerability in the Youni SMS (com.snda.youni) application 2.1.0c and 2.1.0d for Android has unknown impact and attack vectors. NVD-CWE-noinfo
CVE-2012-1474 2024-11-21 10:37 2012-03-14 Show GitHub Exploit DB Packet Storm
295613 - gnu gnutls Double free vulnerability in libgnutls in GnuTLS before 3.0.14 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted certifi… CWE-399
 Resource Management Errors 		CVE-2012-1663 2024-11-21 10:37 2012-03-14 Show GitHub Exploit DB Packet Storm
295614 - vmware vcenter_chargeback_manager VMware vCenter Chargeback Manager (aka CBM) before 2.0.1 does not properly handle XML API requests, which allows remote attackers to read arbitrary files or cause a denial of service via unspecified … CWE-20
 Improper Input Validation  		CVE-2012-1472 2024-11-21 10:37 2012-03-13 Show GitHub Exploit DB Packet Storm
295615 - yassl cyassl yaSSL CyaSSL before 2.0.8 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted X.509 certificate. CWE-399
 Resource Management Errors 		CVE-2012-1558 2024-11-21 10:37 2012-03-13 Show GitHub Exploit DB Packet Storm
295616 - parallels parallels_plesk_panel SQL injection vulnerability in admin/plib/api-rpc/Agent.php in Parallels Plesk Panel 7.x and 8.x before 8.6 MU#2, 9.x before 9.5 MU#11, 10.0.x before MU#13, 10.1.x before MU#22, 10.2.x before MU#16, … CWE-89
SQL Injection 		CVE-2012-1557 2024-11-21 10:37 2012-03-13 Show GitHub Exploit DB Packet Storm
295617 - microsoft ie
internet_explorer 		Microsoft Internet Explorer 6 through 9, and 10 Consumer Preview, allows remote attackers to bypass Protected Mode or cause a denial of service (memory corruption) by leveraging access to a Low integ… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-1545 2024-11-21 10:37 2012-03-9 Show GitHub Exploit DB Packet Storm
295618 - movabletype movable_type_open_source
movable_type_enterprise
movable_type_advanced
movable_type_pro 		The default configuration of Movable Type before 4.38, 5.0x before 5.07, and 5.1x before 5.13 supports the "mt:Include file=" attribute, which allows remote authenticated users to conduct directory t… CWE-22
Path Traversal 		CVE-2012-1497 2024-11-21 10:37 2012-03-3 Show GitHub Exploit DB Packet Storm
295619 9.8 CRITICAL
Network 		404like_project 404like A vulnerability was found in 404like Plugin up to 1.0.2 on WordPress. It has been classified as critical. Affected is the function checkPage of the file 404Like.php. The manipulation of the argument … - CVE-2012-10009 2024-11-21 10:36 2023-03-21 Show GitHub Exploit DB Packet Storm
295620 8.8 HIGH
Network 		bestwebsoft portfolio A vulnerability was found in BestWebSoft Portfolio Plugin up to 2.04 on WordPress. It has been classified as problematic. This affects an unknown part. The manipulation leads to cross-site request fo… - CVE-2012-10017 2024-11-21 10:36 2023-12-26 Show GitHub Exploit DB Packet Storm