Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 13, 2026, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
216861	4.3	警告	The Foreman	-	Foreman におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-3491	2014-07-3 16:17	2014-06-10	Show	GitHub Exploit DB Packet Storm

216862	4.3	警告	XEN Carousel plugin project	-	WordPress 用 XEN Carousel プラグインの xencarousel-admin.js.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4602	2014-07-3 15:56	2014-05-28	Show	GitHub Exploit DB Packet Storm

216863	4.3	警告	MNT-TECH	-	WordPress 用 WP-FaceThumb プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4585	2014-07-3 15:56	2014-06-12	Show	GitHub Exploit DB Packet Storm

216864	4.3	警告	Easy Booking	-	WordPress 用 wp-easybooking プラグインの admin/editFacility.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4584	2014-07-3 15:55	2014-04-25	Show	GitHub Exploit DB Packet Storm

216865	4.3	警告	WP-Contact plugin project	-	WordPress 用 WP-Contact プラグインの forms/messages.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4583	2014-07-3 15:55	2014-04-25	Show	GitHub Exploit DB Packet Storm

216866	4.3	警告	Matthew Healy	-	WordPress 用 Wikipop プラグインの js/window.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4575	2014-07-3 15:54	2014-06-12	Show	GitHub Exploit DB Packet Storm

216867	4.3	警告	VideoWhisper.com	-	WordPress 用 VideoWhisper Live Streaming Integration プラグインの ls/vv_login.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4569	2014-07-3 15:54	2014-06-12	Show	GitHub Exploit DB Packet Storm

216868	4.3	警告	Validated plugin project	-	WordPress 用 Validated プラグインの check.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4564	2014-07-3 15:53	2014-04-25	Show	GitHub Exploit DB Packet Storm

216869	4.3	警告	Optimizer	-	WordPress 用 Swipe Checkout for eShop プラグインの test-plugin.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4556	2014-07-3 15:52	2014-04-25	Show	GitHub Exploit DB Packet Storm

216870	4.3	警告	Rob Myrick	-	WordPress 用 Malware Finder プラグインの process.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4538	2014-07-3 15:50	2014-05-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
294401	-	trevor_mckay redhat	cumin enterprise_mrg	Cumin before 0.1.5444, as used in Red Hat Enterprise Messaging, Realtime, and Grid (MRG) 2.0, allows remote authenticated users to cause a denial of service (memory consumption) via a large size in a…	CWE-399 Resource Management Errors	CVE-2012-2685	2024-11-21 10:39	2012-09-29	Show	GitHub Exploit DB Packet Storm

294402	-	trevor_mckay redhat	cumin enterprise_mrg	Multiple SQL injection vulnerabilities in the get_sample_filters_by_signature function in Cumin before 0.1.5444, as used in Red Hat Enterprise Messaging, Realtime, and Grid (MRG) 2.0, allow remote at…	CWE-89 SQL Injection	CVE-2012-2684	2024-11-21 10:39	2012-09-29	Show	GitHub Exploit DB Packet Storm

294403	-	trevor_mckay redhat	cumin enterprise_mrg	Multiple cross-site scripting (XSS) vulnerabilities in Cumin before 0.1.5444, as used in Red Hat Enterprise Messaging, Realtime, and Grid (MRG) 2.0, allow remote attackers to inject arbitrary web scr…	CWE-79 Cross-site Scripting	CVE-2012-2683	2024-11-21 10:39	2012-09-29	Show	GitHub Exploit DB Packet Storm

294404	-	trevor_mckay redhat	cumin enterprise_mrg	Cumin before 0.1.5444, as used in Red Hat Enterprise Messaging, Realtime, and Grid (MRG) 2.0, uses predictable random numbers to generate session keys, which makes it easier for remote attackers to g…	CWE-310 Cryptographic Issues	CVE-2012-2681	2024-11-21 10:39	2012-09-29	Show	GitHub Exploit DB Packet Storm

294405	-	trevor_mckay redhat	cumin enterprise_mrg	Cumin before 0.1.5444, as used in Red Hat Enterprise Messaging, Realtime, and Grid (MRG) 2.0, does not properly restrict access to resources, which allows remote attackers to obtain sensitive informa…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-2680	2024-11-21 10:39	2012-09-29	Show	GitHub Exploit DB Packet Storm

294406	-	google microsoft	chrome windows_7 windows_8 windows_rt windows_server_2003 windows_server_2008 windows_server_2012 windows_vista windows_xp	The kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, Windows 7 Gold and SP1, Windows 8, Windows Server 201…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-2897	2024-11-21 10:39	2012-09-26	Show	GitHub Exploit DB Packet Storm

294407	-	google	chrome	Integer overflow in the WebGL implementation in Google Chrome before 22.0.1229.79 on Mac OS X allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknow…	CWE-189 Numeric Errors	CVE-2012-2896	2024-11-21 10:39	2012-09-26	Show	GitHub Exploit DB Packet Storm

294408	-	google	chrome	The PDF functionality in Google Chrome before 22.0.1229.79 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that trigger out-of-bounds write …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-2895	2024-11-21 10:39	2012-09-26	Show	GitHub Exploit DB Packet Storm

294409	-	google	chrome	Google Chrome before 22.0.1229.79 does not properly handle graphics-context data structures, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecifie…	CWE-399 Resource Management Errors	CVE-2012-2894	2024-11-21 10:39	2012-09-26	Show	GitHub Exploit DB Packet Storm

294410	-	google	chrome	Double free vulnerability in libxslt, as used in Google Chrome before 22.0.1229.79, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related …	CWE-399 Resource Management Errors	CVE-2012-2893	2024-11-21 10:39	2012-09-26	Show	GitHub Exploit DB Packet Storm