Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
219181	4.3	警告	Make23	-	WordPress 用 ToolPage プラグインの includes/getTipo.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4560	2014-07-4 18:26	2014-04-25	Show	GitHub Exploit DB Packet Storm

219182	4.3	警告	Jigoshop	-	WordPress 用 Swipe Checkout for Jigoshop プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4557	2014-07-4 18:26	2014-05-28	Show	GitHub Exploit DB Packet Storm

219183	4.3	警告	Keyword Strategy Internal Links project	-	WordPress 用 Keyword Strategy Internal Links プラグインの inpage.tpl.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4537	2014-07-4 18:26	2014-05-28	Show	GitHub Exploit DB Packet Storm

219184	4.3	警告	Leo Eibler	-	WordPress 用 GarageSale プラグインの templates/printAdminUsersList_Footer.tpl.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4532	2014-07-4 18:26	2014-04-25	Show	GitHub Exploit DB Packet Storm

219185	4.3	警告	HC Consulting Group	-	WordPress 用 Spotlight プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4552	2014-07-4 18:26	2014-04-25	Show	GitHub Exploit DB Packet Storm

219186	4.3	警告	Flash Photo Gallery project	-	WordPress 用 Flash Photo Gallery プラグインの fpg_preview.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4529	2014-07-4 18:26	2014-04-25	Show	GitHub Exploit DB Packet Storm

219187	4.3	警告	Game tabs project	-	WordPress 用 Game tabs プラグインの main_page.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4531	2014-07-4 18:26	2014-04-25	Show	GitHub Exploit DB Packet Storm

219188	4.3	警告	Rodrigo Primo	-	WordPress 用 Social Connect プラグインの diagnostics/test.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4551	2014-07-4 18:26	2014-04-25	Show	GitHub Exploit DB Packet Storm

219189	4.3	警告	EnvialoSimple	-	WordPress 用 EnvialoSimple: Email Marketing and Newsletters プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4527	2014-07-4 18:26	2014-05-28	Show	GitHub Exploit DB Packet Storm

219190	4.3	警告	efence project	-	WordPress 用 efence プラグインの callback.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4526	2014-07-4 18:26	2014-05-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
296951	-	xen	xen	Multiple integer overflows in the (1) tmh_copy_from_client and (2) tmh_copy_to_client functions in the Transcendent Memory (TMEM) in Xen 4.0, 4.1, and 4.2 allow local guest OS users to cause a denial…	CWE-189 Numeric Errors	CVE-2012-6032	2024-11-21 10:45	2012-11-24	Show	GitHub Exploit DB Packet Storm

296952	-	xen	xen	The do_tmem_get function in the Transcendent Memory (TMEM) in Xen 4.0, 4.1, and 4.2 allow local guest OS users to cause a denial of service (CPU hang and host crash) via unspecified vectors related t…	CWE-20 Improper Input Validation	CVE-2012-6031	2024-11-21 10:45	2012-11-24	Show	GitHub Exploit DB Packet Storm

296953	-	xen	xen	The do_tmem_op function in the Transcendent Memory (TMEM) in Xen 4.0, 4.1, and 4.2 allow local guest OS users to cause a denial of service (host crash) and possibly have other unspecified impacts via…	CWE-20 Improper Input Validation	CVE-2012-6030	2024-11-21 10:45	2012-11-24	Show	GitHub Exploit DB Packet Storm

296954	-	sinapsitech	sinapsi_firmware esolar_duo_photovoltaic_system_monitor esolar_light_photovoltaic_system_monitor esolar_photovoltaic_system_monitor	The management web pages on the Sinapsi eSolar Light Photovoltaic System Monitor (aka Schneider Electric Ezylog photovoltaic SCADA management server), Sinapsi eSolar, and Sinapsi eSolar DUO with firm…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-5864	2024-11-21 10:45	2012-11-23	Show	GitHub Exploit DB Packet Storm

296955	-	sinapsitech	sinapsi_firmware esolar_duo_photovoltaic_system_monitor esolar_light_photovoltaic_system_monitor esolar_photovoltaic_system_monitor	ping.php on the Sinapsi eSolar Light Photovoltaic System Monitor (aka Schneider Electric Ezylog photovoltaic SCADA management server), Sinapsi eSolar, and Sinapsi eSolar DUO with firmware before 2.0.…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-5863	2024-11-21 10:45	2012-11-23	Show	GitHub Exploit DB Packet Storm

296956	-	sinapsitech	sinapsi_firmware esolar_duo_photovoltaic_system_monitor esolar_light_photovoltaic_system_monitor esolar_photovoltaic_system_monitor	login.php on the Sinapsi eSolar Light Photovoltaic System Monitor (aka Schneider Electric Ezylog photovoltaic SCADA management server), Sinapsi eSolar, and Sinapsi eSolar DUO with firmware before 2.0…	CWE-310 Cryptographic Issues	CVE-2012-5862	2024-11-21 10:45	2012-11-23	Show	GitHub Exploit DB Packet Storm

296957	-	sinapsitech	sinapsi_firmware esolar_duo_photovoltaic_system_monitor esolar_light_photovoltaic_system_monitor esolar_photovoltaic_system_monitor	Multiple SQL injection vulnerabilities on the Sinapsi eSolar Light Photovoltaic System Monitor (aka Schneider Electric Ezylog photovoltaic SCADA management server), Sinapsi eSolar, and Sinapsi eSolar…	CWE-89 SQL Injection	CVE-2012-5861	2024-11-21 10:45	2012-11-23	Show	GitHub Exploit DB Packet Storm

296958	-	ibm	websphere_datapower_xc10_appliance	The IBM WebSphere DataPower XC10 Appliance 2.0.0.0 through 2.0.0.3 and 2.1.0.0 through 2.1.0.2 allows remote authenticated users to bypass intended administrative-role requirements and perform arbitr…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-5759	2024-11-21 10:45	2012-11-23	Show	GitHub Exploit DB Packet Storm

296959	-	ibm	websphere_datapower_xc10_appliance	The IBM WebSphere DataPower XC10 Appliance 2.0.0.0 through 2.0.0.3 and 2.1.0.0 through 2.1.0.2 does not require authentication for an unspecified interface, which allows remote attackers to cause a d…	CWE-287 Improper Authentication	CVE-2012-5758	2024-11-21 10:45	2012-11-23	Show	GitHub Exploit DB Packet Storm

296960	-	ibm	websphere_datapower_xc10_appliance	The IBM WebSphere DataPower XC10 Appliance 2.0.0.0 through 2.0.0.3 and 2.1.0.0 through 2.1.0.2, when a collective configuration is enabled, has a single secret key that is shared across different cus…	CWE-310 Cryptographic Issues	CVE-2012-5756	2024-11-21 10:45	2012-11-23	Show	GitHub Exploit DB Packet Storm