Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 30, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 221931 | 3.3 | 注意 | Debian | - | localepurge の debian/postrm および debian/localepurge.config における任意のファイルを上書きされる脆弱性 |
CWE-59
リンク解釈の問題 |
CVE-2014-1638 | 2014-01-30 10:05 | 2014-01-26 | Show | GitHub Exploit DB Packet Storm |
| 221932 | 3.3 | 注意 | Thomas Kluyver | - | python-xdg の xdg.BaseDirectory.get_runtime_dir 関数における任意のファイルを上書きされる脆弱性 |
CWE-59
リンク解釈の問題 |
CVE-2014-1624 | 2014-01-30 09:59 | 2014-01-21 | Show | GitHub Exploit DB Packet Storm |
| 221933 | 4.3 | 警告 | マカフィー | - | McAfee Vulnerability Manager の index.exp におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2013-5094 | 2014-01-29 18:03 | 2013-03-8 | Show | GitHub Exploit DB Packet Storm |
| 221934 | 2.1 | 注意 | Python Software Foundation | - | RPLY の parsergenerator.py のパーサキャッシュ機能におけるキャッシュデータを偽装される脆弱性 |
CWE-DesignError
|
CVE-2014-1604 | 2014-01-29 16:27 | 2014-01-18 | Show | GitHub Exploit DB Packet Storm |
| 221935 | 2.1 | 注意 | Starbucks Coffee Company | - | iOS 用 Starbucks アプリケーションにおけるユーザ名などの情報を取得される脆弱性 |
CWE-255
証明書・パスワード管理 |
CVE-2014-0647 | 2014-01-29 16:20 | 2014-01-13 | Show | GitHub Exploit DB Packet Storm |
| 221936 | 7.2 | 危険 | Detlef Pilzecker | - | Perl 用 Proc::Daemon モジュールにおける脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2013-7135 | 2014-01-29 15:00 | 2013-12-16 | Show | GitHub Exploit DB Packet Storm |
| 221937 | 10 | 危険 | Enghouse Interactive | - | Enghouse Interactive IVR Pro の Enghouse Interactive Professional Services の不特定の "アドオン製品" における権限を取得される脆弱性 |
CWE-310
暗号の問題 |
CVE-2013-6838 | 2014-01-29 14:50 | 2013-11-27 | Show | GitHub Exploit DB Packet Storm |
| 221938 | 5 | 警告 | Bitweaver | - | Bitweaver の gmap/view_overlay.php におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2012-5192 | 2014-01-29 14:02 | 2012-10-23 | Show | GitHub Exploit DB Packet Storm |
| 221939 | 5 | 警告 | シトリックス・システムズ | - | Android 用 Citrix GoToMeeting アプリケーションにおけるユーザ ID を取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2014-1664 | 2014-01-29 13:40 | 2014-01-23 | Show | GitHub Exploit DB Packet Storm |
| 221940 | 4.3 | 警告 | Joomla! | - | Joomla! 用 JV Comment におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2014-0794 | 2014-01-29 12:37 | 2014-01-14 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 30, 2026, 4:16 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 273131 | 6.5 |
MEDIUM
Network |
wordpress_uninstall_project | wordpress_uninstall | The uninstall plugin before 1.2 for WordPress has CSRF to delete all tables via the wp-admin/admin-ajax.php?action=uninstall URI. |
CWE-352
Origin Validation Error |
CVE-2015-9332 | 2024-11-21 11:40 | 2019-08-21 | Show | GitHub Exploit DB Packet Storm |
| 273132 | 7.5 |
HIGH
Network |
soflyy | wp_all_import | The wp-all-import plugin before 3.2.4 for WordPress has no prevention of unauthenticated requests to adminInit. |
CWE-254
7PK - Security Features |
CVE-2015-9331 | 2024-11-21 11:40 | 2019-08-21 | Show | GitHub Exploit DB Packet Storm |
| 273133 | 9.8 |
CRITICAL
Network |
soflyy | wp_all_import | The wp-all-import plugin before 3.2.5 for WordPress has blind SQL injection. |
CWE-89
SQL Injection |
CVE-2015-9330 | 2024-11-21 11:40 | 2019-08-21 | Show | GitHub Exploit DB Packet Storm |
| 273134 | 6.1 |
MEDIUM
Network |
soflyy | wp_all_import | The wp-all-import plugin before 3.2.5 for WordPress has reflected XSS. |
CWE-79
Cross-site Scripting |
CVE-2015-9329 | 2024-11-21 11:40 | 2019-08-21 | Show | GitHub Exploit DB Packet Storm |
| 273135 | 7.5 |
HIGH
Network |
getawesomesupport | awesome_support | The awesome-support plugin before 3.1.7 for WordPress has a security issue in which shortcodes are allowed in replies. |
CWE-254
7PK - Security Features |
CVE-2015-9318 | 2024-11-21 11:40 | 2019-08-21 | Show | GitHub Exploit DB Packet Storm |
| 273136 | 6.1 |
MEDIUM
Network |
getawesomesupport | awesome_support | The awesome-support plugin before 3.1.7 for WordPress has XSS via custom information messages. |
CWE-79
Cross-site Scripting |
CVE-2015-9317 | 2024-11-21 11:40 | 2019-08-21 | Show | GitHub Exploit DB Packet Storm |
| 273137 | 9.8 |
CRITICAL
Network |
sandhillsdev | easy_digital_downloads | The easy-digital-downloads plugin before 2.3.3 for WordPress has SQL injection. |
CWE-89
SQL Injection |
CVE-2015-9324 | 2024-11-21 11:40 | 2019-08-17 | Show | GitHub Exploit DB Packet Storm |
| 273138 | 9.8 |
CRITICAL
Network |
duckdev | 404_to_301 | The 404-to-301 plugin before 2.0.3 for WordPress has SQL injection. |
CWE-89
SQL Injection |
CVE-2015-9323 | 2024-11-21 11:40 | 2019-08-17 | Show | GitHub Exploit DB Packet Storm |
| 273139 | 8.8 |
HIGH
Network |
erident_custom_login_and_dashboard_project | erident_custom_login_and_dashboard | The erident-custom-login-and-dashboard plugin before 3.5 for WordPress has CSRF. |
CWE-352
Origin Validation Error |
CVE-2015-9322 | 2024-11-21 11:40 | 2019-08-17 | Show | GitHub Exploit DB Packet Storm |
| 273140 | 9.8 |
CRITICAL
Network |
wpbusinessintelligence | wp_business_intelligence | The wp-business-intelligence-lite plugin before 1.6.3 for WordPress has SQL injection. |
CWE-89
SQL Injection |
CVE-2015-9326 | 2024-11-21 11:40 | 2019-08-16 | Show | GitHub Exploit DB Packet Storm |