Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
218601 4.3 警告 オラクル - Oracle Hyperion の Hyperion BI+ における Web Analysis に関する脆弱性 CWE-noinfo
情報不足 		CVE-2014-0436 2014-07-18 15:20 2014-07-15 Show GitHub Exploit DB Packet Storm
218602 7.6 危険 オラクル - Oracle Database Server の Network Layer における脆弱性 CWE-noinfo
情報不足 		CVE-2013-3774 2014-07-18 15:13 2013-07-16 Show GitHub Exploit DB Packet Storm
218603 9 危険 オラクル - Oracle Database Server の XML Parser における脆弱性 CWE-noinfo
情報不足 		CVE-2013-3751 2014-07-18 15:09 2013-07-16 Show GitHub Exploit DB Packet Storm
218604 4 警告 オラクル - Oracle Database Server の RDBMS Core における脆弱性 CWE-noinfo
情報不足 		CVE-2014-4237 2014-07-18 14:41 2014-07-15 Show GitHub Exploit DB Packet Storm
218605 4 警告 オラクル - Oracle Sun Solaris における Common Agent Container に関する脆弱性 CWE-noinfo
情報不足 		CVE-2014-4239 2014-07-18 11:57 2014-07-15 Show GitHub Exploit DB Packet Storm
218606 6.9 警告 オラクル - Oracle Sun Solaris における Patch installation scripts に関する脆弱性 CWE-noinfo
情報不足 		CVE-2014-4225 2014-07-18 11:56 2014-07-15 Show GitHub Exploit DB Packet Storm
218607 4.9 警告 オラクル - Oracle Sun Solaris における sockfs に関する脆弱性 CWE-noinfo
情報不足 		CVE-2014-4224 2014-07-18 11:56 2014-07-15 Show GitHub Exploit DB Packet Storm
218608 4.9 警告 オラクル - Oracle Sun Solaris における CPU performance counters drivers に関する脆弱性 CWE-noinfo
情報不足 		CVE-2014-4215 2014-07-18 11:55 2014-07-15 Show GitHub Exploit DB Packet Storm
218609 3.6 注意 オラクル - Oracle MySQL の MySQL Server における SRREP に関する脆弱性 CWE-noinfo
情報不足 		CVE-2014-4240 2014-07-18 11:49 2014-07-15 Show GitHub Exploit DB Packet Storm
218610 4 警告 オラクル - Oracle MySQL の MySQL Server における SROPTZR に関する脆弱性 CWE-noinfo
情報不足 		CVE-2014-4238 2014-07-18 11:49 2014-07-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1401 9.8 CRITICAL
Network 		- - The Login with OTP plugin for WordPress is vulnerable to authentication bypass in all versions up to, and including, 1.6. This is due to an incomplete fix for CVE-2024-11178: the rate-limit/lockout c… CWE-307
mproper Restriction of Excessive Authentication Attempts 		CVE-2026-8760 2026-05-27 23:50 2026-05-27 Show GitHub Exploit DB Packet Storm
1402 8.8 HIGH
Network 		- - The Firebase Support & Chat Management plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 3.1.1. This is due to the `firebase_auth()` function authentica… CWE-269
 Improper Privilege Management 		CVE-2026-8787 2026-05-27 23:50 2026-05-27 Show GitHub Exploit DB Packet Storm
1403 6.4 MEDIUM
Network 		- - The Islamic Database plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'islamicDB-roqya' shortcode in versions up to, and including, 1.0. This is due to insufficient input san… CWE-79
Cross-site Scripting 		CVE-2026-8845 2026-05-27 23:50 2026-05-27 Show GitHub Exploit DB Packet Storm
1404 6.4 MEDIUM
Network 		- - The Tuxquote plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'TUXQUOTE' shortcode in versions up to, and including, 1.3. This is due to insufficient input sanitization and o… CWE-79
Cross-site Scripting 		CVE-2026-8846 2026-05-27 23:50 2026-05-27 Show GitHub Exploit DB Packet Storm
1405 6.4 MEDIUM
Network 		- - The Dideo plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'dideo' shortcode in version 1.0. This is due to insufficient input sanitization and output escaping on th… CWE-79
Cross-site Scripting 		CVE-2026-8847 2026-05-27 23:50 2026-05-27 Show GitHub Exploit DB Packet Storm
1406 6.4 MEDIUM
Network 		- - The jQuery googleslides plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'googleslides' shortcode in all versions up to, and including, 1.3. This is due to insufficient input… CWE-79
Cross-site Scripting 		CVE-2026-8866 2026-05-27 23:50 2026-05-27 Show GitHub Exploit DB Packet Storm
1407 6.4 MEDIUM
Network 		- - The Mutual Funds Data plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'title' shortcode attribute in versions up to, and including, 1.2.1. This is due to insufficient input … CWE-79
Cross-site Scripting 		CVE-2026-8869 2026-05-27 23:50 2026-05-27 Show GitHub Exploit DB Packet Storm
1408 6.4 MEDIUM
Network 		- - The Team Master – A Modern WordPress Team Showcase plugin for WordPress is vulnerable to Stored Cross-Site Scripting via Shortcode Attributes in all versions up to, and including, 1.1.2 due to insuff… CWE-79
Cross-site Scripting 		CVE-2026-8870 2026-05-27 23:50 2026-05-27 Show GitHub Exploit DB Packet Storm
1409 6.4 MEDIUM
Network 		- - The Formidable Kinetic plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'kinetic_link' shortcode in versions up to, and including, 1.1.01. This is due to insufficient input s… CWE-79
Cross-site Scripting 		CVE-2026-8871 2026-05-27 23:50 2026-05-27 Show GitHub Exploit DB Packet Storm
1410 6.4 MEDIUM
Network 		- - The Content Slideshow plugin for WordPress is vulnerable to Stored Cross-Site Scripting via Shortcode Attributes in all versions up to, and including, 2.4.1 due to insufficient input sanitization and… CWE-79
Cross-site Scripting 		CVE-2026-8873 2026-05-27 23:50 2026-05-27 Show GitHub Exploit DB Packet Storm