Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 1, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
221811 10 危険 GateHouse
Harris
Thuraya Telecommunications
Hughes Network Systems
日本無線株式会社
Inmarsat plc.		 - 複数の衛星通信端末のファームウェアにおける不特定のログインアクセス権を取得される脆弱性 CWE-255
CWE-Other
CVE-2013-6034 2014-02-5 17:49 2013-10-4 Show GitHub Exploit DB Packet Storm
221812 3.5 注意 Lexmark - Lexmark の複数のプリンタ製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-6033 2014-02-5 17:05 2013-10-4 Show GitHub Exploit DB Packet Storm
221813 10 危険 Lexmark - Lexmark の複数のプリンタ製品の cgi-bin/postpf/cgi-bin/dynamic/config/config.html における Password Protect の管理パスワードを削除される脆弱性 CWE-20
CWE-Other
CVE-2013-6032 2014-02-5 17:00 2013-10-4 Show GitHub Exploit DB Packet Storm
221814 4 警告 IBM - IBM General Parallel File System におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2014-0834 2014-02-5 16:12 2014-01-31 Show GitHub Exploit DB Packet Storm
221815 6.8 警告 IBM - IBM InfoSphere Master Data Management - Collaborative Edition および InfoSphere Master Data Management Server for Product Information Management におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-5427 2014-02-5 16:11 2013-08-22 Show GitHub Exploit DB Packet Storm
221816 9.3 危険 ZTE - ZTE ZXV10 W300 に認証情報がハードコードされている問題 CWE-255
CWE-Other
CVE-2014-0329 2014-02-5 15:50 2014-02-3 Show GitHub Exploit DB Packet Storm
221817 4.9 警告 クアルコム
Android for MSM		 - MSM デバイス用 Qualcomm Innovation Center Android コントリビューションなどで使用される Linux Kernel 用 MSM カメラドライバにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2013-4739 2014-02-5 11:54 2013-10-15 Show GitHub Exploit DB Packet Storm
221818 7.2 危険 クアルコム
Android for MSM		 - MSM デバイス用 Qualcomm Innovation Center Android コントリビューションなどで使用される Linux Kernel 用 MSM カメラドライバにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-4738 2014-02-5 11:53 2013-10-15 Show GitHub Exploit DB Packet Storm
221819 8.5 危険 ISC, Inc.
アップル
VMware		 - ISC BIND にサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2012-1667 2014-02-4 18:13 2012-06-5 Show GitHub Exploit DB Packet Storm
221820 5 警告 The Tor Project - Tor におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2012-2250 2014-02-4 18:08 2012-10-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
273221 8.8 HIGH
Network 		webmaster-source gocodes The gocodes plugin through 1.3.5 for WordPress has wp-admin/tools.php gcid SQL injection. CWE-89
SQL Injection 		CVE-2015-9398 2024-11-21 11:40 2019-09-21 Show GitHub Exploit DB Packet Storm
273222 5.4 MEDIUM
Network 		webmaster-source gocodes The gocodes plugin through 1.3.5 for WordPress has wp-admin/tools.php deletegc XSS. CWE-79
Cross-site Scripting 		CVE-2015-9397 2024-11-21 11:40 2019-09-21 Show GitHub Exploit DB Packet Storm
273223 6.1 MEDIUM
Network 		attosoft auto_thickbox_plus The auto-thickbox-plus plugin through 1.9 for WordPress has wp-content/plugins/auto-thickbox-plus/download.min.php?file= XSS. CWE-79
Cross-site Scripting 		CVE-2015-9396 2024-11-21 11:40 2019-09-21 Show GitHub Exploit DB Packet Storm
273224 8.8 HIGH
Network 		usersultra users_ultra_membership The users-ultra plugin before 1.5.64 for WordPress has SQL Injection via an ajax action. CWE-89
SQL Injection 		CVE-2015-9395 2024-11-21 11:40 2019-09-21 Show GitHub Exploit DB Packet Storm
273225 8.8 HIGH
Network 		usersultra users_ultra_membership The users-ultra plugin before 1.5.63 for WordPress has CSRF via action=package_add_new to wp-admin/admin-ajax.php. CWE-352
 Origin Validation Error 		CVE-2015-9394 2024-11-21 11:40 2019-09-21 Show GitHub Exploit DB Packet Storm
273226 5.4 MEDIUM
Network 		usersultra users_ultra_membership The users-ultra plugin before 1.5.63 for WordPress has XSS via the p_desc parameter. CWE-79
Cross-site Scripting 		CVE-2015-9393 2024-11-21 11:40 2019-09-21 Show GitHub Exploit DB Packet Storm
273227 5.4 MEDIUM
Network 		usersultra users_ultra_membership The users-ultra plugin before 1.5.63 for WordPress has XSS via the p_name parameter. CWE-79
Cross-site Scripting 		CVE-2015-9392 2024-11-21 11:40 2019-09-21 Show GitHub Exploit DB Packet Storm
273228 6.1 MEDIUM
Network 		ostenta yawpp The yawpp plugin through 1.2.2 for WordPress has XSS via the field1 parameter. CWE-79
Cross-site Scripting 		CVE-2015-9391 2024-11-21 11:40 2019-09-21 Show GitHub Exploit DB Packet Storm
273229 4.3 MEDIUM
Network 		admin_management_xtended_project admin_management_xtended The admin-management-xtended plugin before 2.4.0.1 for WordPress has privilege escalation because wp_ajax functions are mishandled. CWE-269
 Improper Privilege Management 		CVE-2015-9390 2024-11-21 11:40 2019-09-21 Show GitHub Exploit DB Packet Storm
273230 5.4 MEDIUM
Network 		mtouch_quiz_project mtouch_quiz The mtouch-quiz plugin before 3.1.3 for WordPress has XSS via a quiz name. CWE-79
Cross-site Scripting 		CVE-2015-9389 2024-11-21 11:40 2019-09-21 Show GitHub Exploit DB Packet Storm