Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 13, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
223901	7.5	危険	Virtual Access	-	Virtual Access Monitor における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2013-3533	2013-05-14 15:49	2013-05-10	Show	GitHub Exploit DB Packet Storm

223902	7.5	危険	Web-Dorado	-	Drupal 用 Web Dorado Spider Video Player プラグインの settings.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2013-3532	2013-05-14 15:49	2013-05-10	Show	GitHub Exploit DB Packet Storm

223903	7.5	危険	RadioCMS	-	RadioCMS の meneger.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2013-3531	2013-05-14 15:48	2013-05-10	Show	GitHub Exploit DB Packet Storm

223904	7.5	危険	Fabricio Zuardi	-	WordPress 用 Spiffy XSPF Player プラグインの playlist.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2013-3530	2013-05-14 15:47	2013-05-10	Show	GitHub Exploit DB Packet Storm

223905	4.3	警告	Smarty Pants Plugins	-	WordPress 用 WP FuneralPress プラグインの user/obits.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-3529	2013-05-14 15:46	2013-05-10	Show	GitHub Exploit DB Packet Storm

223906	7.5	危険	Vanilla Forums	-	Vanilla Forums の更新チェックにおける脆弱性	CWE-noinfo 情報不足	CVE-2013-3528	2013-05-14 15:44	2013-04-5	Show	GitHub Exploit DB Packet Storm

223907	7.5	危険	Vanilla Forums	-	Vanilla Forums における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2013-3527	2013-05-14 15:37	2013-04-5	Show	GitHub Exploit DB Packet Storm

223908	4.3	警告	georgemathewk	-	WordPress 用 Traffic Analyzer プラグインの js/ta_loaded.js.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-3526	2013-05-14 15:37	2013-05-10	Show	GitHub Exploit DB Packet Storm

223909	7.5	危険	David Clark	-	phpVMS 用 Pop Up News モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2013-3524	2013-05-14 15:36	2013-05-10	Show	GitHub Exploit DB Packet Storm

223910	7.5	危険	greg jennings	-	This HTML Is Simple における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2013-3523	2013-05-14 15:35	2013-04-1	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 14, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
277981	-	mozilla	seamonkey firefox firefox_esr	Use-after-free vulnerability in the WebRTC implementation in Mozilla Firefox before 35.0, Firefox ESR 31.x before 31.4, and SeaMonkey before 2.32 allows remote attackers to execute arbitrary code via…	NVD-CWE-Other	CVE-2014-8641	2024-11-21 11:19	2015-01-14	Show	GitHub Exploit DB Packet Storm

277982	-	mozilla opensuse	firefox opensuse seamonkey	The mozilla::dom::AudioParamTimeline::AudioNodeInputValue function in the Web Audio API implementation in Mozilla Firefox before 35.0 and SeaMonkey before 2.32 does not properly restrict timeline ope…	CWE-362 Race Condition	CVE-2014-8640	2024-11-21 11:19	2015-01-14	Show	GitHub Exploit DB Packet Storm

277983	-	mozilla	seamonkey firefox firefox_esr thunderbird	Mozilla Firefox before 35.0, Firefox ESR 31.x before 31.4, Thunderbird before 31.4, and SeaMonkey before 2.32 do not properly interpret Set-Cookie headers within responses that have a 407 (aka Proxy …	NVD-CWE-Other	CVE-2014-8639	2024-11-21 11:19	2015-01-14	Show	GitHub Exploit DB Packet Storm

277984	-	mozilla	firefox firefox_esr thunderbird seamonkey	The navigator.sendBeacon implementation in Mozilla Firefox before 35.0, Firefox ESR 31.x before 31.4, Thunderbird before 31.4, and SeaMonkey before 2.32 omits the CORS Origin header, which allows rem…	CWE-352 Origin Validation Error	CVE-2014-8638	2024-11-21 11:19	2015-01-14	Show	GitHub Exploit DB Packet Storm

277985	-	mozilla	seamonkey firefox	Mozilla Firefox before 35.0 and SeaMonkey before 2.32 do not properly initialize memory for BMP images, which allows remote attackers to obtain sensitive information from process memory via a crafted…	CWE-200 Information Exposure	CVE-2014-8637	2024-11-21 11:19	2015-01-14	Show	GitHub Exploit DB Packet Storm

277986	-	mozilla	firefox seamonkey	The XrayWrapper implementation in Mozilla Firefox before 35.0 and SeaMonkey before 2.32 does not properly interact with a DOM object that has a named getter, which might allow remote attackers to exe…	CWE-94 Code Injection	CVE-2014-8636	2024-11-21 11:19	2015-01-14	Show	GitHub Exploit DB Packet Storm

277987	-	mozilla	seamonkey firefox	Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 35.0 and SeaMonkey before 2.32 allow remote attackers to cause a denial of service (memory corruption and applicat…	NVD-CWE-noinfo	CVE-2014-8635	2024-11-21 11:19	2015-01-14	Show	GitHub Exploit DB Packet Storm

277988	-	mozilla	firefox firefox_esr seamonkey thunderbird	Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 35.0, Firefox ESR 31.x before 31.4, Thunderbird before 31.4, and SeaMonkey before 2.32 allow remote attackers to c…	NVD-CWE-noinfo	CVE-2014-8634	2024-11-21 11:19	2015-01-14	Show	GitHub Exploit DB Packet Storm

277989	-	jce-tech	video_niche_script	Multiple cross-site scripting (XSS) vulnerabilities in view.php in JCE-Tech PHP Video Script (aka Video Niche Script) 4.0 allow remote attackers to inject arbitrary web script or HTML via the (1) vid…	CWE-79 Cross-site Scripting	CVE-2014-8752	2024-11-21 11:19	2015-01-1	Show	GitHub Exploit DB Packet Storm

277990	-	schneider_electric	proclima	Buffer overflow in an ActiveX control in MDraw30.ocx in Schneider Electric ProClima before 6.1.7 allows remote attackers to execute arbitrary code via unspecified vectors, a different vulnerability t…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2014-8514	2024-11-21 11:19	2014-12-28	Show	GitHub Exploit DB Packet Storm