Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 11, 2026, 4:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
216631	4.3	警告	Oleggo LiveStream project	-	WordPress 用 Oleggo LiveStream プラグインの oleggo-twitter/twitter_login_form.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4540	2014-07-4 18:26	2014-05-28	Show	GitHub Exploit DB Packet Storm

216632	4.3	警告	Ooorl project	-	WordPress 用 Ooorl プラグインの redirect.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4542	2014-07-4 18:26	2014-04-25	Show	GitHub Exploit DB Packet Storm

216633	4.3	警告	OMFG Mobile Pro project	-	WordPress 用 OMFG Mobile Pro プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4541	2014-07-4 18:26	2014-05-28	Show	GitHub Exploit DB Packet Storm

216634	4.3	警告	Make23	-	WordPress 用 ToolPage プラグインの includes/getTipo.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4560	2014-07-4 18:26	2014-04-25	Show	GitHub Exploit DB Packet Storm

216635	4.3	警告	Jigoshop	-	WordPress 用 Swipe Checkout for Jigoshop プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4557	2014-07-4 18:26	2014-05-28	Show	GitHub Exploit DB Packet Storm

216636	4.3	警告	Keyword Strategy Internal Links project	-	WordPress 用 Keyword Strategy Internal Links プラグインの inpage.tpl.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4537	2014-07-4 18:26	2014-05-28	Show	GitHub Exploit DB Packet Storm

216637	4.3	警告	Leo Eibler	-	WordPress 用 GarageSale プラグインの templates/printAdminUsersList_Footer.tpl.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4532	2014-07-4 18:26	2014-04-25	Show	GitHub Exploit DB Packet Storm

216638	4.3	警告	HC Consulting Group	-	WordPress 用 Spotlight プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4552	2014-07-4 18:26	2014-04-25	Show	GitHub Exploit DB Packet Storm

216639	4.3	警告	Flash Photo Gallery project	-	WordPress 用 Flash Photo Gallery プラグインの fpg_preview.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4529	2014-07-4 18:26	2014-04-25	Show	GitHub Exploit DB Packet Storm

216640	4.3	警告	Game tabs project	-	WordPress 用 Game tabs プラグインの main_page.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4531	2014-07-4 18:26	2014-04-25	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
292771	-	mozilla redhat canonical suse	firefox thunderbird_esr thunderbird seamonkey enterprise_linux_server enterprise_linux_workstation ubuntu_linux enterprise_linux_desktop enterprise_linux_eus linux_enterpri…	Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird ESR 10.x before 10.0.8, and SeaMonkey before 2.13 do not properly restrict JSAPI access to the GetPro…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-3991	2024-11-21 10:41	2012-10-11	Show	GitHub Exploit DB Packet Storm

292772	-	mozilla canonical suse	firefox thunderbird seamonkey ubuntu_linux linux_enterprise_desktop linux_enterprise_server	Mozilla Firefox before 16.0, Thunderbird before 16.0, and SeaMonkey before 2.13 do not properly perform a cast of an unspecified variable during use of the instanceof operator on a JavaScript object,…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-3989	2024-11-21 10:41	2012-10-11	Show	GitHub Exploit DB Packet Storm

292773	-	mozilla	firefox	Mozilla Firefox before 16.0 on Android assigns chrome privileges to Reader Mode pages, which allows user-assisted remote attackers to bypass intended access restrictions via a crafted web site.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-3987	2024-11-21 10:41	2012-10-11	Show	GitHub Exploit DB Packet Storm

292774	-	mozilla canonical suse	firefox thunderbird seamonkey ubuntu_linux linux_enterprise_desktop linux_enterprise_server	Mozilla Firefox before 16.0, Thunderbird before 16.0, and SeaMonkey before 2.13 do not properly implement the HTML5 Same Origin Policy, which allows remote attackers to conduct cross-site scripting (…	CWE-79 Cross-site Scripting	CVE-2012-3985	2024-11-21 10:41	2012-10-11	Show	GitHub Exploit DB Packet Storm

292775	-	mozilla canonical suse	firefox thunderbird seamonkey ubuntu_linux linux_enterprise_desktop linux_enterprise_server	Mozilla Firefox before 16.0, Thunderbird before 16.0, and SeaMonkey before 2.13 do not properly handle navigation away from a web page that has a SELECT element's menu active, which allows remote att…	NVD-CWE-Other	CVE-2012-3984	2024-11-21 10:41	2012-10-11	Show	GitHub Exploit DB Packet Storm

292776	-	mozilla redhat canonical suse debian	firefox thunderbird_esr thunderbird seamonkey enterprise_linux_server enterprise_linux_workstation ubuntu_linux enterprise_linux_desktop enterprise_linux_eus linux_enterpri…	Use-after-free vulnerability in the IME State Manager implementation in Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird ESR 10.x before 10.0.8, and S…	CWE-416 Use After Free	CVE-2012-3990	2024-11-21 10:41	2012-10-11	Show	GitHub Exploit DB Packet Storm

292777	-	mozilla redhat canonical suse	firefox thunderbird_esr thunderbird seamonkey enterprise_linux_server enterprise_linux_workstation ubuntu_linux enterprise_linux_desktop enterprise_linux_eus linux_enterpri…	Use-after-free vulnerability in Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird ESR 10.x before 10.0.8, and SeaMonkey before 2.13 might allow user-as…	CWE-416 Use After Free	CVE-2012-3988	2024-11-21 10:41	2012-10-11	Show	GitHub Exploit DB Packet Storm

292778	-	mozilla redhat canonical suse debian	firefox thunderbird_esr thunderbird seamonkey enterprise_linux_server enterprise_linux_workstation ubuntu_linux enterprise_linux_desktop enterprise_linux_eus linux_enterpri…	Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird ESR 10.x before 10.0.8, and SeaMonkey before 2.13 do not properly restrict calls to DOMWindowUtils (a…	CWE-20 Improper Input Validation	CVE-2012-3986	2024-11-21 10:41	2012-10-11	Show	GitHub Exploit DB Packet Storm

292779	-	mozilla canonical suse	firefox thunderbird seamonkey ubuntu_linux linux_enterprise_desktop linux_enterprise_server	Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 16.0, Thunderbird before 16.0, and SeaMonkey before 2.13 allow remote attackers to cause a denial of service (memo…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-3983	2024-11-21 10:41	2012-10-11	Show	GitHub Exploit DB Packet Storm

292780	-	mozilla redhat canonical suse debian	firefox thunderbird_esr thunderbird seamonkey enterprise_linux_server enterprise_linux_workstation ubuntu_linux enterprise_linux_desktop enterprise_linux_eus linux_enterpri…	Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird ESR 10.x before 10.0.8, and SeaMonkey b…	NVD-CWE-noinfo	CVE-2012-3982	2024-11-21 10:41	2012-10-11	Show	GitHub Exploit DB Packet Storm