Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 11, 2026, 12:16 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
216631 4.3 警告 Jigoshop - WordPress 用 Swipe Checkout for Jigoshop プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-4557 2014-07-4 18:26 2014-05-28 Show GitHub Exploit DB Packet Storm
216632 4.3 警告 Keyword Strategy Internal Links project - WordPress 用 Keyword Strategy Internal Links プラグインの inpage.tpl.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-4537 2014-07-4 18:26 2014-05-28 Show GitHub Exploit DB Packet Storm
216633 4.3 警告 Leo Eibler - WordPress 用 GarageSale プラグインの templates/printAdminUsersList_Footer.tpl.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-4532 2014-07-4 18:26 2014-04-25 Show GitHub Exploit DB Packet Storm
216634 4.3 警告 HC Consulting Group - WordPress 用 Spotlight プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-4552 2014-07-4 18:26 2014-04-25 Show GitHub Exploit DB Packet Storm
216635 4.3 警告 Flash Photo Gallery project - WordPress 用 Flash Photo Gallery プラグインの fpg_preview.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-4529 2014-07-4 18:26 2014-04-25 Show GitHub Exploit DB Packet Storm
216636 4.3 警告 Game tabs project - WordPress 用 Game tabs プラグインの main_page.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-4531 2014-07-4 18:26 2014-04-25 Show GitHub Exploit DB Packet Storm
216637 4.3 警告 Rodrigo Primo - WordPress 用 Social Connect プラグインの diagnostics/test.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-4551 2014-07-4 18:26 2014-04-25 Show GitHub Exploit DB Packet Storm
216638 4.3 警告 EnvialoSimple - WordPress 用 EnvialoSimple: Email Marketing and Newsletters プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-4527 2014-07-4 18:26 2014-05-28 Show GitHub Exploit DB Packet Storm
216639 4.3 警告 efence project - WordPress 用 efence プラグインの callback.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-4526 2014-07-4 18:26 2014-05-28 Show GitHub Exploit DB Packet Storm
216640 4.3 警告 WP Easy Post Types project - WordPress 用 WP Easy Post Types プラグインの classes/custom-image/media.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-4524 2014-07-4 18:26 2014-05-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
293041 - netsweeper netsweeper Unspecified vulnerability in the WebAdmin Portal in Netsweeper has unknown impact and attack vectors, a different vulnerability than CVE-2012-2446 and CVE-2012-2447. NVD-CWE-noinfo
CVE-2012-3859 2024-11-21 10:41 2012-07-10 Show GitHub Exploit DB Packet Storm
293042 - digium asterisk_business_edition
asterisk
asteriske
certified_asterisk 		channels/chan_sip.c in Asterisk Open Source 1.8.x before 1.8.13.1 and 10.x before 10.5.2, Asterisk Business Edition C.3.x before C.3.7.5, Certified Asterisk 1.8.11-certx before 1.8.11-cert4, and Aste… CWE-399
 Resource Management Errors 		CVE-2012-3863 2024-11-21 10:41 2012-07-9 Show GitHub Exploit DB Packet Storm
293043 - irfanview irfanview_plugins Heap-based buffer overflow in jpeg_ls.dll in the Jpeg_LS (aka JLS) plugin in the formats plugins in IrfanView PlugIns before 4.34 allows remote attackers to execute arbitrary code via a crafted JLS f… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-3585 2024-11-21 10:41 2012-07-6 Show GitHub Exploit DB Packet Storm
293044 - invensys wonderware_application_server
intouch 		slssvc.exe in Invensys Wonderware SuiteLink in Invensys InTouch 2012 and Wonderware Application Server 2012 allows remote attackers to cause a denial of service (resource consumption) via a long Unic… CWE-399
 Resource Management Errors 		CVE-2012-3847 2024-11-21 10:41 2012-07-5 Show GitHub Exploit DB Packet Storm
293045 - atmoner php-pastebin Cross-site scripting (XSS) vulnerability in index.php in PHP-pastebin 2.1 allows remote attackers to inject arbitrary web script or HTML via the title parameter. CWE-79
Cross-site Scripting 		CVE-2012-3846 2024-11-21 10:41 2012-07-4 Show GitHub Exploit DB Packet Storm
293046 - lan_messenger lan_messenger1.2.28 Buffer overflow in LAN Messenger 1.2.28 and earlier allows remote attackers to cause a denial of service (crash) via a long string in an initiation request. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-3845 2024-11-21 10:41 2012-07-4 Show GitHub Exploit DB Packet Storm
293047 - vbulletin vbulletin Cross-site scripting (XSS) vulnerability in vBulletin 4.1.12 allows remote attackers to inject arbitrary web script or HTML via a long string in the subject parameter when creating a post. CWE-79
Cross-site Scripting 		CVE-2012-3844 2024-11-21 10:41 2012-07-4 Show GitHub Exploit DB Packet Storm
293048 - e107 e107 Cross-site scripting (XSS) vulnerability in the registration page in e107, probably 1.0.1, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2012-3843 2024-11-21 10:41 2012-07-4 Show GitHub Exploit DB Packet Storm
293049 - jbmc-software directadmin Multiple cross-site scripting (XSS) vulnerabilities in CMD_DOMAIN in JBMC Software DirectAdmin 1.403 allow remote authenticated users with certain privileges to inject arbitrary web script or HTML vi… CWE-79
Cross-site Scripting 		CVE-2012-3842 2024-11-21 10:41 2012-07-4 Show GitHub Exploit DB Packet Storm
293050 - kmplayer kmplayer Untrusted search path vulnerability in KMPlayer 3.2.0.19 allows local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse ehtrace.dll that is located in the current w… NVD-CWE-Other
CVE-2012-3841 2024-11-21 10:41 2012-07-4 Show GitHub Exploit DB Packet Storm