Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 17, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
217251 4.3 警告 Thomas Doki-Thonon - WordPress 用 WPCB プラグインの facture.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-4581 2014-07-7 18:26 2014-06-4 Show GitHub Exploit DB Packet Storm
217252 4.3 警告 Yahoo! Updates for WordPress plugin project - WordPress 用 Yahoo! Updates for WordPress プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-4603 2014-07-7 18:26 2014-05-28 Show GitHub Exploit DB Packet Storm
217253 4.3 警告 Style It project - WordPress 用 Style It プラグインの fonts/font-form.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-4555 2014-07-7 18:26 2014-04-25 Show GitHub Exploit DB Packet Storm
217254 4.3 警告 Alipay - WordPress 用 Wu-Rating プラグインの wu-ratepost.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-4601 2014-07-7 18:26 2014-06-12 Show GitHub Exploit DB Packet Storm
217255 4.3 警告 WP Timersys - WordPress 用 WP Social Invitations プラグインの test.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-4597 2014-07-7 18:26 2014-01-30 Show GitHub Exploit DB Packet Storm
217256 4.3 警告 Stranger Studios - WordPress 用 SS Downloads プラグインの templates/download.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-4554 2014-07-7 18:26 2014-05-28 Show GitHub Exploit DB Packet Storm
217257 4.3 警告 ZeenShare project - WordPress 用 ZeenShare プラグインの redirect_to_zeenshare.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-4606 2014-07-7 18:26 2014-01-11 Show GitHub Exploit DB Packet Storm
217258 4.3 警告 Smackcoders - WordPress 用 WP Ultimate Email Marketer プラグインの contact/edit.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-4600 2014-07-7 18:26 2014-04-25 Show GitHub Exploit DB Packet Storm
217259 4.3 警告 RuslanY Blog - WordPress 用 WP Silverlight Media Player プラグインの uploader.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-4589 2014-07-7 18:26 2014-04-25 Show GitHub Exploit DB Packet Storm
217260 4.3 警告 techteam internet services - WordPress 用 WP-Business Directory プラグインの forms/search.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-4599 2014-07-7 18:26 2014-04-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
296701 6.1 MEDIUM
Network 		php-form-builder-class_project php-form-builder-class A vulnerability has been found in manikandan170890 php-form-builder-class and classified as problematic. Affected by this vulnerability is an unknown functionality of the file PFBC/Element/Textarea.p… - CVE-2012-10005 2024-11-21 10:36 2023-01-13 Show GitHub Exploit DB Packet Storm
296702 6.1 MEDIUM
Network 		backdropcms basic_cart A vulnerability was found in backdrop-contrib Basic Cart on Drupal. It has been classified as problematic. Affected is the function basic_cart_checkout_form_submit of the file basic_cart.cart.inc. Th… - CVE-2012-10004 2024-11-21 10:36 2023-01-11 Show GitHub Exploit DB Packet Storm
296703 6.1 MEDIUM
Network 		rivettracker_project rivettracker A vulnerability, which was classified as problematic, has been found in ahmyi RivetTracker. This issue affects some unknown processing. The manipulation of the argument $_SERVER['PHP_SELF'] leads to … - CVE-2012-10003 2024-11-21 10:36 2023-01-3 Show GitHub Exploit DB Packet Storm
296704 6.1 MEDIUM
Network 		rivettracker_project rivettracker A vulnerability was found in ahmyi RivetTracker. It has been declared as problematic. Affected by this vulnerability is the function changeColor of the file css.php. The manipulation of the argument … - CVE-2012-10002 2024-11-21 10:36 2023-01-3 Show GitHub Exploit DB Packet Storm
296705 7.5 HIGH
Network 		xml\ \ It was discovered that the XML::Atom Perl module before version 0.39 did not disable external entities when parsing XML from potentially untrusted sources. This may allow attackers to gain read acces… - CVE-2012-1102 2024-11-21 10:36 2021-07-9 Show GitHub Exploit DB Packet Storm
296706 9.8 CRITICAL
Network 		limit_login_attempts_project limit_login_attempts The Limit Login Attempts plugin before 1.7.1 for WordPress does not clear auth cookies upon a lockout, which might make it easier for remote attackers to conduct brute-force authentication attempts. CWE-287
Improper Authentication 		CVE-2012-10001 2024-11-21 10:36 2021-01-7 Show GitHub Exploit DB Packet Storm
296707 7.4 HIGH
Network 		canonical software-properties software-properties was vulnerable to a person-in-the-middle attack due to incorrect TLS certificate validation in softwareproperties/ppa.py. software-properties didn't check TLS certificates under p… CWE-295
Improper Certificate Validation  		CVE-2012-0955 2024-11-21 10:36 2020-12-2 Show GitHub Exploit DB Packet Storm
296708 5.0 MEDIUM
Local 		nvidia display_driver A race condition was discovered in the Linux drivers for Nvidia graphics which allowed an attacker to exfiltrate kernel memory to userspace. This issue was fixed in version 295.53. CWE-362
Race Condition 		CVE-2012-0953 2024-11-21 10:36 2020-05-8 Show GitHub Exploit DB Packet Storm
296709 5.0 MEDIUM
Local 		nvidia display_driver A heap buffer overflow was discovered in the device control ioctl in the Linux driver for Nvidia graphics cards, which may allow an attacker to overflow 49 bytes. This issue was fixed in version 295.… CWE-787
 Out-of-bounds Write 		CVE-2012-0952 2024-11-21 10:36 2020-05-8 Show GitHub Exploit DB Packet Storm
296710 5.5 MEDIUM
Local 		systemd_project systemd systemd 37-1 does not properly handle non-existent services, which causes a denial of service (failure of login procedure). NVD-CWE-Other
CVE-2012-1101 2024-11-21 10:36 2020-03-12 Show GitHub Exploit DB Packet Storm