Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
217781	4.3	警告	Make23	-	WordPress 用 ToolPage プラグインの includes/getTipo.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4560	2014-07-4 18:26	2014-04-25	Show	GitHub Exploit DB Packet Storm

217782	4.3	警告	Jigoshop	-	WordPress 用 Swipe Checkout for Jigoshop プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4557	2014-07-4 18:26	2014-05-28	Show	GitHub Exploit DB Packet Storm

217783	4.3	警告	Keyword Strategy Internal Links project	-	WordPress 用 Keyword Strategy Internal Links プラグインの inpage.tpl.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4537	2014-07-4 18:26	2014-05-28	Show	GitHub Exploit DB Packet Storm

217784	4.3	警告	Leo Eibler	-	WordPress 用 GarageSale プラグインの templates/printAdminUsersList_Footer.tpl.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4532	2014-07-4 18:26	2014-04-25	Show	GitHub Exploit DB Packet Storm

217785	4.3	警告	HC Consulting Group	-	WordPress 用 Spotlight プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4552	2014-07-4 18:26	2014-04-25	Show	GitHub Exploit DB Packet Storm

217786	4.3	警告	Flash Photo Gallery project	-	WordPress 用 Flash Photo Gallery プラグインの fpg_preview.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4529	2014-07-4 18:26	2014-04-25	Show	GitHub Exploit DB Packet Storm

217787	4.3	警告	Game tabs project	-	WordPress 用 Game tabs プラグインの main_page.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4531	2014-07-4 18:26	2014-04-25	Show	GitHub Exploit DB Packet Storm

217788	4.3	警告	Rodrigo Primo	-	WordPress 用 Social Connect プラグインの diagnostics/test.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4551	2014-07-4 18:26	2014-04-25	Show	GitHub Exploit DB Packet Storm

217789	4.3	警告	EnvialoSimple	-	WordPress 用 EnvialoSimple: Email Marketing and Newsletters プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4527	2014-07-4 18:26	2014-05-28	Show	GitHub Exploit DB Packet Storm

217790	4.3	警告	efence project	-	WordPress 用 efence プラグインの callback.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4526	2014-07-4 18:26	2014-05-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
296851	5.0	MEDIUM Local	nvidia	display_driver	A race condition was discovered in the Linux drivers for Nvidia graphics which allowed an attacker to exfiltrate kernel memory to userspace. This issue was fixed in version 295.53.	CWE-362 Race Condition	CVE-2012-0953	2024-11-21 10:36	2020-05-8	Show	GitHub Exploit DB Packet Storm

296852	5.0	MEDIUM Local	nvidia	display_driver	A heap buffer overflow was discovered in the device control ioctl in the Linux driver for Nvidia graphics cards, which may allow an attacker to overflow 49 bytes. This issue was fixed in version 295.…	CWE-787 Out-of-bounds Write	CVE-2012-0952	2024-11-21 10:36	2020-05-8	Show	GitHub Exploit DB Packet Storm

296853	5.5	MEDIUM Local	systemd_project	systemd	systemd 37-1 does not properly handle non-existent services, which causes a denial of service (failure of login procedure).	NVD-CWE-Other	CVE-2012-1101	2024-11-21 10:36	2020-03-12	Show	GitHub Exploit DB Packet Storm

296854	5.5	MEDIUM Local	gnome debian	networkmanager debian_linux	NetworkManager 0.9 and earlier allows local users to use other users' certificates or private keys when making a connection via the file path when adding a new connection.	CWE-295 Improper Certificate Validation	CVE-2012-1096	2024-11-21 10:36	2020-03-11	Show	GitHub Exploit DB Packet Storm

296855	7.5	HIGH Network	redhat	jboss_application_server	JBoss AS 7 prior to 7.1.1 and mod_cluster do not handle default hostname in the same way, which can cause the excluded-contexts list to be mismatched and the root context to be exposed.	CWE-200 Information Exposure	CVE-2012-1094	2024-11-21 10:36	2020-03-11	Show	GitHub Exploit DB Packet Storm

296856	7.8	HIGH Local	debian	debian_linux x11-common	The init script in the Debian x11-common package before 1:7.6+12 is vulnerable to a symlink attack that can lead to a privilege escalation during package installation.	CWE-59 Link Following	CVE-2012-1093	2024-11-21 10:36	2020-02-22	Show	GitHub Exploit DB Packet Storm

296857	7.8	HIGH Local	nvidia	display_driver	A Memory Corruption Vulnerability exists in NVIDIA Graphics Drivers 29549 due to an unknown function in the file proc/driver/nvidia/registry.	CWE-787 Out-of-bounds Write	CVE-2012-0951	2024-11-21 10:36	2020-02-13	Show	GitHub Exploit DB Packet Storm

296858	9.8	CRITICAL Network	phxeventmanager_project	phxeventmanager	SQL injection vulnerability in search.php in phxEventManager 2.0 beta 5 allows remote attackers to execute arbitrary SQL commands via the search_terms parameter.	CWE-89 SQL Injection	CVE-2012-1124	2024-11-21 10:36	2020-02-12	Show	GitHub Exploit DB Packet Storm

296859	7.4	HIGH Network	cisco	ironport_web_security_appliance	Cisco IronPort Web Security Appliance up to and including 7.5 does not validate the basic constraints of the certificate authority which could lead to MITM attacks	CWE-20 Improper Input Validation	CVE-2012-1326	2024-11-21 10:36	2020-01-15	Show	GitHub Exploit DB Packet Storm

296860	5.9	MEDIUM Network	cisco	ironport_web_security_appliance	Cisco IronPort Web Security Appliance does not check for certificate revocation which could lead to MITM attacks	CWE-295 Improper Certificate Validation	CVE-2012-1316	2024-11-21 10:36	2020-01-15	Show	GitHub Exploit DB Packet Storm