Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 4:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
223331 10 危険 AlienVault - AlienVault OSSIM の av-centerd SOAP サービスにおける任意のコマンドを実行される脆弱性 CWE-94
コード・インジェクション
CVE-2014-3804 2014-06-17 12:13 2014-05-5 Show GitHub Exploit DB Packet Storm
223332 7.8 危険 ジュニパーネットワークス - Juniper Networks NetScreen Firewall 製品の ScreenOS におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認
CVE-2014-3814 2014-06-17 12:09 2014-06-11 Show GitHub Exploit DB Packet Storm
223333 7.8 危険 ジュニパーネットワークス - Juniper Networks NetScreen Firewall 製品の ScreenOS におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足
CVE-2014-3813 2014-06-17 12:09 2014-06-11 Show GitHub Exploit DB Packet Storm
223334 5 警告 ジュニパーネットワークス - Juniper Junos Pulse Secure Access Service デバイスの IVE OS および Junos Pulse Access Control Service における重要な情報を取得される脆弱性 CWE-310
暗号の問題
CVE-2014-3812 2014-06-17 12:08 2014-06-11 Show GitHub Exploit DB Packet Storm
223335 6.6 警告 IBM - IBM PureApplication System におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2014-0960 2014-06-17 11:08 2014-06-6 Show GitHub Exploit DB Packet Storm
223336 5 警告 レッドハット - Red Hat Enterprise Linux の Apache Tomcat 7 用の特定の tomcat7 パッケージにおけるサービス運用妨害 (DoS) の脆弱性 CWE-DesignError
CVE-2014-0186 2014-06-17 11:00 2014-06-10 Show GitHub Exploit DB Packet Storm
223337 5.8 警告 VMware - 複数の VMware 製品の VMware Tools におけるゲスト OS の権限を取得される脆弱性 CWE-Other
その他
CVE-2014-3793 2014-06-16 18:47 2014-05-29 Show GitHub Exploit DB Packet Storm
223338 5.5 警告 ownCloud - ownCloud Server における外部ストレージを追加される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2014-3835 2014-06-16 18:46 2014-04-29 Show GitHub Exploit DB Packet Storm
223339 7.5 危険 webEdition e.V. - webEdition CMS の file browser コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2014-2303 2014-06-16 18:13 2014-05-20 Show GitHub Exploit DB Packet Storm
223340 10 危険 JogAmp.org - JogAmp で使用される JOAL の OpenAL32.dll における任意のコードを実行される脆弱性 CWE-noinfo
情報不足
CVE-2013-4099 2014-06-16 18:12 2013-06-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
277541 6.1 MEDIUM
Network
elfsight instalinker The instalinker plugin before 1.1.2 for WordPress has includes/instalinker-admin-preview.php?client_id= XSS. CWE-79
Cross-site Scripting
CVE-2016-11005 2024-11-21 11:45 2019-09-21 Show GitHub Exploit DB Packet Storm
277542 8.8 HIGH
Network
elegantthemes monarch The Elegant Themes Monarch plugin before 1.2.7 for WordPress has privilege escalation. CWE-269
 Improper Privilege Management
CVE-2016-11004 2024-11-21 11:45 2019-09-21 Show GitHub Exploit DB Packet Storm
277543 8.8 HIGH
Network
elegantthemes monarch The Elegant Themes Bloom plugin before 1.1.1 for WordPress has privilege escalation. CWE-269
 Improper Privilege Management
CVE-2016-11003 2024-11-21 11:45 2019-09-21 Show GitHub Exploit DB Packet Storm
277544 8.8 HIGH
Network
elegantthemes extra The Elegant Themes Extra theme before 1.2.4 for WordPress has privilege escalation. CWE-269
 Improper Privilege Management
CVE-2016-11002 2024-11-21 11:45 2019-09-21 Show GitHub Exploit DB Packet Storm
277545 6.1 MEDIUM
Network
plugin-planet user_submitted_posts The user-submitted-posts plugin before 20160215 for WordPress has XSS via the user-submitted-content field. CWE-79
Cross-site Scripting
CVE-2016-11001 2024-11-21 11:45 2019-09-21 Show GitHub Exploit DB Packet Storm
277546 9.8 CRITICAL
Network
smackcoders ultimate_exporter The wp-ultimate-exporter plugin through 1.1 for WordPress has SQL injection via the export_type_name parameter. CWE-89
SQL Injection
CVE-2016-11000 2024-11-21 11:45 2019-09-21 Show GitHub Exploit DB Packet Storm
277547 6.1 MEDIUM
Network
momizat goodnews The Goodnews theme through 2016-02-28 for WordPress has XSS via the s parameter. CWE-79
Cross-site Scripting
CVE-2016-10999 2024-11-21 11:45 2019-09-21 Show GitHub Exploit DB Packet Storm
277548 6.1 MEDIUM
Network
ocimscripts ocim-mp3 The ocim-mp3 plugin through 2016-03-07 for WordPress has wp-content/plugins/ocim-mp3/source/pages.php?id= XSS. CWE-79
Cross-site Scripting
CVE-2016-10998 2024-11-21 11:45 2019-09-21 Show GitHub Exploit DB Packet Storm
277549 6.5 MEDIUM
Network
yourinspirationweb beauty-premium The beauty-premium theme 1.0.8 for WordPress has CSRF with resultant arbitrary file upload in includes/sendmail.php. CWE-352
 Origin Validation Error
CVE-2016-10997 2024-11-21 11:45 2019-09-21 Show GitHub Exploit DB Packet Storm
277550 5.3 MEDIUM
Network
optinmonster optinmonster The optinmonster plugin before 1.1.4.6 for WordPress has incorrect access control for shortcodes because of a nonce leak. CWE-863
 Incorrect Authorization
CVE-2016-10996 2024-11-21 11:45 2019-09-21 Show GitHub Exploit DB Packet Storm