Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 4, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
219131	4.3	警告	Style It project	-	WordPress 用 Style It プラグインの fonts/font-form.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4555	2014-07-7 18:26	2014-04-25	Show	GitHub Exploit DB Packet Storm

219132	4.3	警告	Alipay	-	WordPress 用 Wu-Rating プラグインの wu-ratepost.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4601	2014-07-7 18:26	2014-06-12	Show	GitHub Exploit DB Packet Storm

219133	4.3	警告	WP Timersys	-	WordPress 用 WP Social Invitations プラグインの test.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4597	2014-07-7 18:26	2014-01-30	Show	GitHub Exploit DB Packet Storm

219134	4.3	警告	Stranger Studios	-	WordPress 用 SS Downloads プラグインの templates/download.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4554	2014-07-7 18:26	2014-05-28	Show	GitHub Exploit DB Packet Storm

219135	4.3	警告	ZeenShare project	-	WordPress 用 ZeenShare プラグインの redirect_to_zeenshare.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4606	2014-07-7 18:26	2014-01-11	Show	GitHub Exploit DB Packet Storm

219136	4.3	警告	Smackcoders	-	WordPress 用 WP Ultimate Email Marketer プラグインの contact/edit.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4600	2014-07-7 18:26	2014-04-25	Show	GitHub Exploit DB Packet Storm

219137	4.3	警告	RuslanY Blog	-	WordPress 用 WP Silverlight Media Player プラグインの uploader.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4589	2014-07-7 18:26	2014-04-25	Show	GitHub Exploit DB Packet Storm

219138	4.3	警告	techteam internet services	-	WordPress 用 WP-Business Directory プラグインの forms/search.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4599	2014-07-7 18:26	2014-04-25	Show	GitHub Exploit DB Packet Storm

219139	4.3	警告	swicks	-	WordPress 用 WooCommerce SagePay Direct Payment Gateway プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4549	2014-07-7 18:26	2014-04-25	Show	GitHub Exploit DB Packet Storm

219140	4.3	警告	Rezgo project	-	WordPress 用 Rezgo プラグインの book_ajax.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4546	2014-07-7 18:26	2014-05-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
290871	-	google	chrome	Google Chrome through 32.0.1700.23 on Android allows remote attackers to spoof the address bar via unspecified vectors.	NVD-CWE-noinfo	CVE-2013-6642	2024-11-21 10:59	2014-01-16	Show	GitHub Exploit DB Packet Storm

290872	-	google opensuse	chrome opensuse	Use-after-free vulnerability in the FormAssociatedElement::formRemovedFromTree function in core/html/FormAssociatedElement.cpp in Blink, as used in Google Chrome before 32.0.1700.76 on Windows and be…	CWE-416 Use After Free	CVE-2013-6641	2024-11-21 10:59	2014-01-16	Show	GitHub Exploit DB Packet Storm

290873	-	apache	cloudstack	The virtual router in Apache CloudStack before 4.2.1 does not preserve the source restrictions in firewall rules after being restarted, which allows remote attackers to bypass intended restrictions v…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-6398	2024-11-21 10:59	2014-01-16	Show	GitHub Exploit DB Packet Storm

290874	-	ibm	global_retention_policy_and_schedule_management atlas_suite disposal_and_governance_management_for_it atlas_ediscovery_process_management	IBM Atlas eDiscovery Process Management 6.0.1.5 and earlier and 6.0.2, Disposal and Governance Management for IT 6.0.1.5 and earlier and 6.0.2, and Global Retention Policy and Schedule Management 6.0…	CWE-20 Improper Input Validation	CVE-2013-6334	2024-11-21 10:59	2014-01-10	Show	GitHub Exploit DB Packet Storm

290875	-	ibm	global_retention_policy_and_schedule_management atlas_suite disposal_and_governance_management_for_it atlas_ediscovery_process_management	SQL injection vulnerability in IBM Atlas eDiscovery Process Management 6.0.1.5 and earlier and 6.0.2, Disposal and Governance Management for IT 6.0.1.5 and earlier and 6.0.2, and Global Retention Pol…	CWE-89 SQL Injection	CVE-2013-6321	2024-11-21 10:59	2014-01-10	Show	GitHub Exploit DB Packet Storm

290876	-	seagate	blackarmor_nas_220_firmware blackarmor_nas_220	Multiple cross-site scripting (XSS) vulnerabilities in Seagate BlackArmor NAS 220 devices with firmware sg2000-2000.1331 allow remote attackers to inject arbitrary web script or HTML via the (1) full…	CWE-79 Cross-site Scripting	CVE-2013-6923	2024-11-21 10:59	2014-01-10	Show	GitHub Exploit DB Packet Storm

290877	-	x	libxfont	Stack-based buffer overflow in the bdfReadCharacters function in bitmap/bdfread.c in X.Org libXfont 1.1 through 1.4.6 allows remote attackers to cause a denial of service (crash) or possibly execute …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-6462	2024-11-21 10:59	2014-01-10	Show	GitHub Exploit DB Packet Storm

290878	-	redhat	libvirt	The lxcDomainGetMemoryParameters method in lxc/lxc_driver.c in libvirt 1.0.5 through 1.2.0 does not properly check the status of LXC guests when reading memory tunables, which allows local users to c…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-6436	2024-11-21 10:59	2014-01-8	Show	GitHub Exploit DB Packet Storm

290879	-	apache	libcloud	Libcloud 0.12.3 through 0.13.2 does not set the scrub_data parameter for the destroy DigitalOcean API, which allows local users to obtain sensitive information by leveraging a new VM.	CWE-200 Information Exposure	CVE-2013-6480	2024-11-21 10:59	2014-01-8	Show	GitHub Exploit DB Packet Storm

290880	-	openstack	havana	Interaction error in OpenStack Nova and Neutron before Havana 2013.2.1 and icehouse-1 does not validate the instance ID of the tenant making a request, which allows remote tenants to obtain sensitive…	CWE-200 Information Exposure	CVE-2013-6419	2024-11-21 10:59	2014-01-8	Show	GitHub Exploit DB Packet Storm