Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 18, 2026, 4:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
220191 6.8 警告 Debian
LibTIFF		 - Libtiff の tools/tiff2pdf.c の t2p_readwrite_pdf_image 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2013-4232 2014-03-6 15:58 2013-08-27 Show GitHub Exploit DB Packet Storm
220192 10 危険 libproxy - libproxy の lib/pac.c におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-4505 2014-03-6 15:55 2012-10-11 Show GitHub Exploit DB Packet Storm
220193 10 危険 libproxy - libproxy の url.cpp におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-4504 2014-03-6 15:52 2012-10-11 Show GitHub Exploit DB Packet Storm
220194 7.9 危険 Samba Project - Samba の smbd 内の process.c におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-0870 2014-03-6 15:49 2011-02-23 Show GitHub Exploit DB Packet Storm
220195 4.3 警告 igno saitz - MikMod によって使用される libmikmod におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2009-0179 2014-03-6 15:47 2009-01-20 Show GitHub Exploit DB Packet Storm
220196 10 危険 GetGo Software Ltd - GetGo Download Manager におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2014-2206 2014-03-6 15:20 2014-03-2 Show GitHub Exploit DB Packet Storm
220197 7.5 危険 apptha.com - WordPress 用 Apptha WordPress Video Gallery におけるクロスサイトスクリプティングの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-3478 2014-03-6 15:18 2013-05-14 Show GitHub Exploit DB Packet Storm
220198 3.5 注意 IBM - IBM Algo One の複数のコンポーネントにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-6333 2014-03-6 15:16 2013-10-31 Show GitHub Exploit DB Packet Storm
220199 6.5 警告 IBM - IBM Algo One の複数のコンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-6331 2014-03-6 15:15 2013-10-31 Show GitHub Exploit DB Packet Storm
220200 3.5 注意 IBM - IBM Algo One の複数のコンポーネントにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-6320 2014-03-6 15:13 2013-10-31 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2061 6.2 MEDIUM
Local 		- - WordPress Plugin cab-fare-calculator 1.0.3 contains a local file inclusion vulnerability that allows unauthenticated attackers to read arbitrary files by manipulating the controller parameter in tbli… CWE-98
 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') 		CVE-2022-50954 2026-05-12 23:24 2026-05-10 Show GitHub Exploit DB Packet Storm
2062 4.3 MEDIUM
Network 		- - WordPress Plugin Curtain 1.0.2 contains a cross-site request forgery vulnerability that allows attackers to activate or deactivate site maintenance mode by crafting malicious requests. Attackers can … CWE-352
 Origin Validation Error 		CVE-2022-50955 2026-05-12 23:24 2026-05-10 Show GitHub Exploit DB Packet Storm
2063 6.2 MEDIUM
Local 		- - WordPress Plugin amministrazione-aperta 3.7.3 contains a local file read vulnerability that allows unauthenticated attackers to read arbitrary files by exploiting insufficient input validation in the… CWE-22
Path Traversal 		CVE-2022-50956 2026-05-12 23:24 2026-05-10 Show GitHub Exploit DB Packet Storm
2064 6.1 MEDIUM
Network 		- - WordPress Plugin Jetpack 9.1 contains a reflected cross-site scripting vulnerability that allows unauthenticated attackers to inject malicious scripts by manipulating the post_id parameter. Attackers… CWE-79
Cross-site Scripting 		CVE-2022-50958 2026-05-12 23:24 2026-05-10 Show GitHub Exploit DB Packet Storm
2065 6.1 MEDIUM
Network 		- - WordPress Contact Form Builder 1.6.1 contains a reflected cross-site scripting vulnerability that allows unauthenticated attackers to inject malicious scripts by exploiting the form_id parameter. Att… CWE-79
Cross-site Scripting 		CVE-2022-50959 2026-05-12 23:24 2026-05-10 Show GitHub Exploit DB Packet Storm
2066 6.1 MEDIUM
Network 		- - WordPress International Sms For Contact Form 7 Integration version 1.2 contains a reflected cross-site scripting vulnerability in the page parameter of the admin settings interface. Attackers can inj… CWE-79
Cross-site Scripting 		CVE-2022-50960 2026-05-12 23:24 2026-05-10 Show GitHub Exploit DB Packet Storm
2067 6.4 MEDIUM
Network 		- - WordPress Plugin IP2Location Country Blocker 2.26.7 contains a stored cross-site scripting vulnerability that allows authenticated users to inject arbitrary JavaScript code through the Frontend Setti… CWE-79
Cross-site Scripting 		CVE-2022-50961 2026-05-12 23:24 2026-05-10 Show GitHub Exploit DB Packet Storm
2068 6.1 MEDIUM
Network 		- - uBidAuction 2.0.1 contains a reflected cross-site scripting vulnerability in the orders/myOrders module. The date_created, date_from, date_to, and created_at parameters in the filter functionality ar… CWE-79
Cross-site Scripting 		CVE-2022-50962 2026-05-12 23:24 2026-05-10 Show GitHub Exploit DB Packet Storm
2069 6.1 MEDIUM
Network 		- - uBidAuction 2.0.1 contains a reflected cross-site scripting vulnerability in the auctions/myAuctions/status/active module. The date_created, date_from, date_to, and created_at parameters in the filte… CWE-79
Cross-site Scripting 		CVE-2022-50963 2026-05-12 23:24 2026-05-10 Show GitHub Exploit DB Packet Storm
2070 6.1 MEDIUM
Network 		- - uBidAuction 2.0.1 contains a reflected cross-site scripting vulnerability in the auctions/myAuctions/status/loose module. The date_created, date_from, date_to, and created_at parameters in the filter… CWE-79
Cross-site Scripting 		CVE-2022-50964 2026-05-12 23:24 2026-05-10 Show GitHub Exploit DB Packet Storm