Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
224961 5 警告 Mozilla Foundation - Mozilla Firefox および SeaMonkey におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足
CVE-2014-1500 2014-03-20 14:36 2014-03-18 Show GitHub Exploit DB Packet Storm
224962 5.8 警告 Mozilla Foundation - Mozilla Firefox および SeaMonkey におけるドメイン名を偽装される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2014-1499 2014-03-20 14:36 2014-03-18 Show GitHub Exploit DB Packet Storm
224963 5 警告 Mozilla Foundation - Mozilla Firefox および SeaMonkey の crypto.generateCRMFRequest メソッドにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
CWE-310
CVE-2014-1498 2014-03-20 14:36 2014-03-18 Show GitHub Exploit DB Packet Storm
224964 9.3 危険 Mozilla Foundation - Mozilla Firefox OS の DeviceStorage API におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2014-1507 2014-03-20 14:36 2014-03-18 Show GitHub Exploit DB Packet Storm
224965 6.4 警告 Mozilla Foundation - Android 上で稼働する Mozilla Firefox の Android 版クラッシュレポーターにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2014-1506 2014-03-20 14:36 2014-03-18 Show GitHub Exploit DB Packet Storm
224966 6.9 警告 Mozilla Foundation - 複数の Mozilla 製品における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2014-1496 2014-03-20 14:36 2014-03-18 Show GitHub Exploit DB Packet Storm
224967 9.3 危険 Mozilla Foundation - Mozilla Firefox および SeaMonkey のブラウザエンジンにおけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足
CVE-2014-1494 2014-03-20 14:36 2014-03-18 Show GitHub Exploit DB Packet Storm
224968 4.3 警告 オラクル - Oracle Java SE および JavaFX における JavaFX に関する脆弱性 CWE-noinfo
情報不足
CVE-2014-0382 2014-03-19 16:52 2014-01-14 Show GitHub Exploit DB Packet Storm
224969 9.3 危険 オラクル - Oracle Java SE および JavaFX における脆弱性 CWE-noinfo
情報不足
CVE-2013-5810 2014-03-19 15:40 2013-10-15 Show GitHub Exploit DB Packet Storm
224970 4.9 警告 アップル - Apple iOS の iCloud サブシステムにおけるパスワード要求を回避される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2014-2019 2014-03-19 15:36 2014-02-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
277571 6.1 MEDIUM
Network
tonjoostudio fluid-responsive-slideshow The fluid-responsive-slideshow plugin before 2.2.7 for WordPress has reflected XSS via the skin parameter. CWE-79
Cross-site Scripting
CVE-2016-10975 2024-11-21 11:45 2019-09-18 Show GitHub Exploit DB Packet Storm
277572 8.8 HIGH
Network
tonjoostudio fluid-responsive-slideshow The fluid-responsive-slideshow plugin before 2.2.7 for WordPress has frs_save CSRF with resultant stored XSS. CWE-352
 Origin Validation Error
CVE-2016-10974 2024-11-21 11:45 2019-09-18 Show GitHub Exploit DB Packet Storm
277573 6.1 MEDIUM
Network
brafton brafton The Brafton plugin before 3.4.8 for WordPress has XSS via the wp-admin/admin.php?page=BraftonArticleLoader tab parameter to BraftonAdminPage.php. CWE-79
Cross-site Scripting
CVE-2016-10973 2024-11-21 11:45 2019-09-17 Show GitHub Exploit DB Packet Storm
277574 9.8 CRITICAL
Network
tagdiv newspaper The newspaper theme before 6.7.2 for WordPress has a lack of options access control via td_ajax_update_panel. CWE-269
 Improper Privilege Management
CVE-2016-10972 2024-11-21 11:45 2019-09-17 Show GitHub Exploit DB Packet Storm
277575 9.8 CRITICAL
Network
membersonic membersonic The MemberSonic Lite plugin before 1.302 for WordPress has incorrect login access control because only knowlewdge of an e-mail address is required. CWE-269
 Improper Privilege Management
CVE-2016-10971 2024-11-21 11:45 2019-09-16 Show GitHub Exploit DB Packet Storm
277576 6.1 MEDIUM
Network
supportflow_project supportflow The supportflow plugin before 0.7 for WordPress has XSS via a ticket excerpt. CWE-79
Cross-site Scripting
CVE-2016-10970 2024-11-21 11:45 2019-09-16 Show GitHub Exploit DB Packet Storm
277577 6.1 MEDIUM
Network
supportflow_project supportflow The supportflow plugin before 0.7 for WordPress has XSS via a discussion ticket title. CWE-79
Cross-site Scripting
CVE-2016-10969 2024-11-21 11:45 2019-09-16 Show GitHub Exploit DB Packet Storm
277578 8.8 HIGH
Network
peepso peepso The peepso-core plugin before 1.6.1 for WordPress has PeepSoProfilePreferencesAjax->save() privilege escalation. CWE-269
 Improper Privilege Management
CVE-2016-10968 2024-11-21 11:45 2019-09-16 Show GitHub Exploit DB Packet Storm
277579 6.1 MEDIUM
Network
creativeinteractivemedia real3d_flipbook The real3d-flipbook-lite plugin 1.0 for WordPress has XSS via the wp-content/plugins/real3d-flipbook/includes/flipbooks.php bookId parameter. CWE-79
Cross-site Scripting
CVE-2016-10967 2024-11-21 11:45 2019-09-16 Show GitHub Exploit DB Packet Storm
277580 7.5 HIGH
Network
creativeinteractivemedia real3d_flipbook The real3d-flipbook-lite plugin 1.0 for WordPress has bookName=../ directory traversal for file upload. CWE-22
Path Traversal
CVE-2016-10966 2024-11-21 11:45 2019-09-16 Show GitHub Exploit DB Packet Storm