Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 10, 2026, 4:07 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
219641 7.5 危険 Ariel Sanders - WordPress 用 Lead Octopus プラグインの lib/optin/optin_page.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-5189 2014-08-8 18:54 2014-07-28 Show GitHub Exploit DB Packet Storm
219642 5 警告 Tom M8te project - WordPress 用 Tom M8te プラグインにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-5187 2014-08-8 18:48 2014-05-28 Show GitHub Exploit DB Packet Storm
219643 6.5 警告 Vinoth Kumar - WordPress 用 All Video Gallery プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-5186 2014-08-8 18:46 2014-05-28 Show GitHub Exploit DB Packet Storm
219644 6 警告 Quartz plugin project - WordPress 用 Quartz プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-5185 2014-08-8 18:45 2014-05-28 Show GitHub Exploit DB Packet Storm
219645 6.5 警告 Brad Hawkins - WordPress 用 stripShow プラグインの stripshow-storylines ページにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-5184 2014-08-8 18:44 2014-05-28 Show GitHub Exploit DB Packet Storm
219646 6.5 警告 Jesse Cortez - WordPress 用 Simple Retail Menus プラグインの includes/mode-edit.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-5183 2014-08-8 18:43 2014-02-19 Show GitHub Exploit DB Packet Storm
219647 6 警告 ostenta - WordPress 用 yawpp プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-5182 2014-08-8 18:42 2014-01-7 Show GitHub Exploit DB Packet Storm
219648 5 警告 Last.fm Rotation plugin project - WordPress 用 Last.fm Rotation プラグインの lastfm-proxy.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-5181 2014-08-8 18:40 2014-05-28 Show GitHub Exploit DB Packet Storm
219649 6.5 警告 HDW Player - WordPress 用 HDW Player プラグインのビデオページにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-5180 2014-08-8 18:39 2014-05-28 Show GitHub Exploit DB Packet Storm
219650 7.5 危険 Vinoth Kumar - WordPress 用 All Video Gallery プラグインにおける脆弱性 CWE-noinfo
情報不足 		CVE-2012-6653 2014-08-8 18:36 2012-11-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
295991 - hp system_management_homepage Cross-site scripting (XSS) vulnerability in HP System Management Homepage (SMH) before 7.2.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2013-2361 2024-11-21 10:51 2013-07-22 Show GitHub Exploit DB Packet Storm
295992 - hp system_management_homepage Unspecified vulnerability in HP System Management Homepage (SMH) before 7.2.1 allows remote authenticated users to cause a denial of service via unknown vectors, a different vulnerability than CVE-20… NVD-CWE-noinfo
CVE-2013-2360 2024-11-21 10:51 2013-07-22 Show GitHub Exploit DB Packet Storm
295993 - hp system_management_homepage Unspecified vulnerability in HP System Management Homepage (SMH) before 7.2.1 allows remote authenticated users to cause a denial of service via unknown vectors, a different vulnerability than CVE-20… NVD-CWE-noinfo
CVE-2013-2359 2024-11-21 10:51 2013-07-22 Show GitHub Exploit DB Packet Storm
295994 - hp system_management_homepage Unspecified vulnerability in HP System Management Homepage (SMH) before 7.2.1 allows remote authenticated users to cause a denial of service via unknown vectors, a different vulnerability than CVE-20… NVD-CWE-noinfo
CVE-2013-2358 2024-11-21 10:51 2013-07-22 Show GitHub Exploit DB Packet Storm
295995 - hp system_management_homepage Unspecified vulnerability in HP System Management Homepage (SMH) before 7.2.1 allows remote authenticated users to cause a denial of service via unknown vectors, a different vulnerability than CVE-20… NVD-CWE-noinfo
CVE-2013-2357 2024-11-21 10:51 2013-07-22 Show GitHub Exploit DB Packet Storm
295996 - hp system_management_homepage HP System Management Homepage (SMH) before 7.2.1 allows remote attackers to obtain sensitive information via unspecified vectors, a different vulnerability than CVE-2013-2363. NVD-CWE-noinfo
CVE-2013-2356 2024-11-21 10:51 2013-07-22 Show GitHub Exploit DB Packet Storm
295997 - hp system_management_homepage HP System Management Homepage (SMH) before 7.2.1 allows remote attackers to bypass intended access restrictions and obtain sensitive information via unspecified vectors, a different vulnerability tha… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-2355 2024-11-21 10:51 2013-07-22 Show GitHub Exploit DB Packet Storm
295998 - apache struts Multiple open redirect vulnerabilities in Apache Struts 2.0.0 through 2.3.15 allow remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in a parameter usin… CWE-20
 Improper Input Validation  		CVE-2013-2248 2024-11-21 10:51 2013-07-20 Show GitHub Exploit DB Packet Storm
295999 - apache struts Apache Struts 2 before 2.3.14.3 allows remote attackers to execute arbitrary OGNL code via a request with a crafted value that contains both "${}" and "%{}" sequences, which causes the OGNL code to b… CWE-94
Code Injection 		CVE-2013-2135 2024-11-21 10:51 2013-07-17 Show GitHub Exploit DB Packet Storm
296000 - apache struts Apache Struts 2 before 2.3.14.3 allows remote attackers to execute arbitrary OGNL code via a request with a crafted action name that is not properly handled during wildcard matching, a different vuln… CWE-94
Code Injection 		CVE-2013-2134 2024-11-21 10:51 2013-07-17 Show GitHub Exploit DB Packet Storm