Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 4, 2026, 12:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
219141	4.3	警告	RuslanY Blog	-	WordPress 用 WP Silverlight Media Player プラグインの uploader.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4589	2014-07-7 18:26	2014-04-25	Show	GitHub Exploit DB Packet Storm

219142	4.3	警告	techteam internet services	-	WordPress 用 WP-Business Directory プラグインの forms/search.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4599	2014-07-7 18:26	2014-04-25	Show	GitHub Exploit DB Packet Storm

219143	4.3	警告	swicks	-	WordPress 用 WooCommerce SagePay Direct Payment Gateway プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4549	2014-07-7 18:26	2014-04-25	Show	GitHub Exploit DB Packet Storm

219144	4.3	警告	Rezgo project	-	WordPress 用 Rezgo プラグインの book_ajax.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4546	2014-07-7 18:26	2014-05-28	Show	GitHub Exploit DB Packet Storm

219145	4.3	警告	wp-tmkm-amazon project	-	WordPress 用 wp-tmkm-amazon プラグインの wp-tmkm-amazon-search.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4598	2014-07-7 18:26	2014-06-12	Show	GitHub Exploit DB Packet Storm

219146	4.3	警告	Shaon	-	WordPress 用 Hot Files: File Sharing and Download Manager プラグインの tpls/editmedia.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4588	2014-07-7 18:26	2014-04-25	Show	GitHub Exploit DB Packet Storm

219147	4.3	警告	SVN Labs Softwares.	-	WordPress 用 HTML5 Video Player with Playlist プラグインの videoplayer/autoplay.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4534	2014-07-7 18:26	2014-04-25	Show	GitHub Exploit DB Packet Storm

219148	4.3	警告	SnapApp	-	WordPress 用 SnapApp プラグインの js/button-snapapp.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4596	2014-07-7 18:26	2014-04-25	Show	GitHub Exploit DB Packet Storm

219149	4.3	警告	WP GuestMap project	-	WordPress 用 WP GuestMap プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4587	2014-07-7 18:26	2014-06-12	Show	GitHub Exploit DB Packet Storm

219150	4.3	警告	WP Consultant project	-	WordPress 用 WP Consultant プラグインの admin/admin_show_dialogs.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4582	2014-07-7 18:26	2014-06-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
290871	-	google	chrome	Google Chrome through 32.0.1700.23 on Android allows remote attackers to spoof the address bar via unspecified vectors.	NVD-CWE-noinfo	CVE-2013-6642	2024-11-21 10:59	2014-01-16	Show	GitHub Exploit DB Packet Storm

290872	-	google opensuse	chrome opensuse	Use-after-free vulnerability in the FormAssociatedElement::formRemovedFromTree function in core/html/FormAssociatedElement.cpp in Blink, as used in Google Chrome before 32.0.1700.76 on Windows and be…	CWE-416 Use After Free	CVE-2013-6641	2024-11-21 10:59	2014-01-16	Show	GitHub Exploit DB Packet Storm

290873	-	apache	cloudstack	The virtual router in Apache CloudStack before 4.2.1 does not preserve the source restrictions in firewall rules after being restarted, which allows remote attackers to bypass intended restrictions v…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-6398	2024-11-21 10:59	2014-01-16	Show	GitHub Exploit DB Packet Storm

290874	-	ibm	global_retention_policy_and_schedule_management atlas_suite disposal_and_governance_management_for_it atlas_ediscovery_process_management	IBM Atlas eDiscovery Process Management 6.0.1.5 and earlier and 6.0.2, Disposal and Governance Management for IT 6.0.1.5 and earlier and 6.0.2, and Global Retention Policy and Schedule Management 6.0…	CWE-20 Improper Input Validation	CVE-2013-6334	2024-11-21 10:59	2014-01-10	Show	GitHub Exploit DB Packet Storm

290875	-	ibm	global_retention_policy_and_schedule_management atlas_suite disposal_and_governance_management_for_it atlas_ediscovery_process_management	SQL injection vulnerability in IBM Atlas eDiscovery Process Management 6.0.1.5 and earlier and 6.0.2, Disposal and Governance Management for IT 6.0.1.5 and earlier and 6.0.2, and Global Retention Pol…	CWE-89 SQL Injection	CVE-2013-6321	2024-11-21 10:59	2014-01-10	Show	GitHub Exploit DB Packet Storm

290876	-	seagate	blackarmor_nas_220_firmware blackarmor_nas_220	Multiple cross-site scripting (XSS) vulnerabilities in Seagate BlackArmor NAS 220 devices with firmware sg2000-2000.1331 allow remote attackers to inject arbitrary web script or HTML via the (1) full…	CWE-79 Cross-site Scripting	CVE-2013-6923	2024-11-21 10:59	2014-01-10	Show	GitHub Exploit DB Packet Storm

290877	-	x	libxfont	Stack-based buffer overflow in the bdfReadCharacters function in bitmap/bdfread.c in X.Org libXfont 1.1 through 1.4.6 allows remote attackers to cause a denial of service (crash) or possibly execute …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-6462	2024-11-21 10:59	2014-01-10	Show	GitHub Exploit DB Packet Storm

290878	-	redhat	libvirt	The lxcDomainGetMemoryParameters method in lxc/lxc_driver.c in libvirt 1.0.5 through 1.2.0 does not properly check the status of LXC guests when reading memory tunables, which allows local users to c…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-6436	2024-11-21 10:59	2014-01-8	Show	GitHub Exploit DB Packet Storm

290879	-	apache	libcloud	Libcloud 0.12.3 through 0.13.2 does not set the scrub_data parameter for the destroy DigitalOcean API, which allows local users to obtain sensitive information by leveraging a new VM.	CWE-200 Information Exposure	CVE-2013-6480	2024-11-21 10:59	2014-01-8	Show	GitHub Exploit DB Packet Storm

290880	-	openstack	havana	Interaction error in OpenStack Nova and Neutron before Havana 2013.2.1 and icehouse-1 does not validate the instance ID of the tenant making a request, which allows remote tenants to obtain sensitive…	CWE-200 Information Exposure	CVE-2013-6419	2024-11-21 10:59	2014-01-8	Show	GitHub Exploit DB Packet Storm