Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 29, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
218301	4.3	警告	Mike Challis	-	WordPress 用 SI CAPTCHA Anti-Spam プラグインの captcha-secureimage/test/index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-5190	2014-08-8 18:59	2014-08-3	Show	GitHub Exploit DB Packet Storm

218302	7.5	危険	Ariel Sanders	-	WordPress 用 Lead Octopus プラグインの lib/optin/optin_page.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-5189	2014-08-8 18:54	2014-07-28	Show	GitHub Exploit DB Packet Storm

218303	5	警告	Tom M8te project	-	WordPress 用 Tom M8te プラグインにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2014-5187	2014-08-8 18:48	2014-05-28	Show	GitHub Exploit DB Packet Storm

218304	6.5	警告	Vinoth Kumar	-	WordPress 用 All Video Gallery プラグインにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-5186	2014-08-8 18:46	2014-05-28	Show	GitHub Exploit DB Packet Storm

218305	6	警告	Quartz plugin project	-	WordPress 用 Quartz プラグインにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-5185	2014-08-8 18:45	2014-05-28	Show	GitHub Exploit DB Packet Storm

218306	6.5	警告	Brad Hawkins	-	WordPress 用 stripShow プラグインの stripshow-storylines ページにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-5184	2014-08-8 18:44	2014-05-28	Show	GitHub Exploit DB Packet Storm

218307	6.5	警告	Jesse Cortez	-	WordPress 用 Simple Retail Menus プラグインの includes/mode-edit.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-5183	2014-08-8 18:43	2014-02-19	Show	GitHub Exploit DB Packet Storm

218308	6	警告	ostenta	-	WordPress 用 yawpp プラグインにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-5182	2014-08-8 18:42	2014-01-7	Show	GitHub Exploit DB Packet Storm

218309	5	警告	Last.fm Rotation plugin project	-	WordPress 用 Last.fm Rotation プラグインの lastfm-proxy.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2014-5181	2014-08-8 18:40	2014-05-28	Show	GitHub Exploit DB Packet Storm

218310	6.5	警告	HDW Player	-	WordPress 用 HDW Player プラグインのビデオページにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-5180	2014-08-8 18:39	2014-05-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
290851	-	apple	mac_os_x	The kernel in Apple Mac OS X before 10.9 allows local users to cause a denial of service (panic) via an invalid iovec structure.	CWE-189 Numeric Errors	CVE-2013-5177	2024-11-21 10:57	2013-10-24	Show	GitHub Exploit DB Packet Storm

290852	-	apple	mac_os_x	The kernel in Apple Mac OS X before 10.9 does not properly handle integer values during unspecified tty device operations, which allows local users to cause a denial of service (system hang) by trigg…	CWE-189 Numeric Errors	CVE-2013-5176	2024-11-21 10:57	2013-10-24	Show	GitHub Exploit DB Packet Storm

290853	-	apple	mac_os_x	The kernel in Apple Mac OS X before 10.9 allows local users to obtain sensitive information or cause a denial of service (out-of-bounds read and system crash) via a crafted Mach-O file.	CWE-20 Improper Input Validation	CVE-2013-5175	2024-11-21 10:57	2013-10-24	Show	GitHub Exploit DB Packet Storm

290854	-	apple	mac_os_x	Integer signedness error in the kernel in Apple Mac OS X before 10.9 allows local users to cause a denial of service (system crash) via a crafted tty read operation.	CWE-189 Numeric Errors	CVE-2013-5174	2024-11-21 10:57	2013-10-24	Show	GitHub Exploit DB Packet Storm

290855	-	apple	mac_os_x	The random-number generator in the kernel in Apple Mac OS X before 10.9 provides lengthy exclusive access for processing of large requests, which allows local users to cause a denial of service (temp…	CWE-310 Cryptographic Issues	CVE-2013-5173	2024-11-21 10:57	2013-10-24	Show	GitHub Exploit DB Packet Storm

290856	-	apple	mac_os_x	The kernel in Apple Mac OS X before 10.9 does not properly determine the output length for SHA-2 digest function calls, which allows context-dependent attackers to cause a denial of service (panic) b…	CWE-189 Numeric Errors	CVE-2013-5172	2024-11-21 10:57	2013-10-24	Show	GitHub Exploit DB Packet Storm

290857	-	apple	mac_os_x	CoreGraphics in Apple Mac OS X before 10.9 allows local users to bypass secure input mode and log an arbitrary application's keystrokes via a hotkey event registration.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-5171	2024-11-21 10:57	2013-10-24	Show	GitHub Exploit DB Packet Storm

290858	-	apple	mac_os_x	Buffer underflow in CoreGraphics in Apple Mac OS X before 10.9 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted PDF document.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-5170	2024-11-21 10:57	2013-10-24	Show	GitHub Exploit DB Packet Storm

290859	-	apple	mac_os_x	CoreGraphics in Apple Mac OS X before 10.9, when display-sleep mode is used, does not ensure that screen locking blocks the visibility of all windows, which allows physically proximate attackers to o…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-5169	2024-11-21 10:57	2013-10-24	Show	GitHub Exploit DB Packet Storm

290860	-	apple	mac_os_x	Console in Apple Mac OS X before 10.9 allows user-assisted remote attackers to execute arbitrary applications by triggering a log entry with a crafted attached URL.	CWE-20 Improper Input Validation	CVE-2013-5168	2024-11-21 10:57	2013-10-24	Show	GitHub Exploit DB Packet Storm