Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
233141 10 危険 The Tor Project - Tor における脆弱性 CWE-noinfo
情報不足
CVE-2009-0939 2012-12-20 19:10 2009-03-17 Show GitHub Exploit DB Packet Storm
233142 5 警告 The Tor Project - Tor におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足
CVE-2009-0938 2012-12-20 19:10 2009-03-17 Show GitHub Exploit DB Packet Storm
233143 5 警告 The Tor Project - Tor におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足
CVE-2009-0937 2012-12-20 19:10 2009-03-17 Show GitHub Exploit DB Packet Storm
233144 5 警告 The Tor Project - Tor におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足
CVE-2009-0936 2012-12-20 19:10 2009-03-17 Show GitHub Exploit DB Packet Storm
233145 4.3 警告 ProcessOne - ejabberd におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2009-0934 2012-12-20 19:10 2009-03-17 Show GitHub Exploit DB Packet Storm
233146 7.5 危険 roman bogorodskiy - nForum における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2009-0882 2012-12-20 19:10 2009-03-12 Show GitHub Exploit DB Packet Storm
233147 5 警告 wesnoth - Wesnoth の src/terrain_translation.cpp におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題
CVE-2009-0878 2012-12-20 19:10 2009-03-12 Show GitHub Exploit DB Packet Storm
233148 4.3 警告 tangocms - TangoCMS の admincp コンポーネントにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2009-0862 2012-12-20 19:10 2009-02-18 Show GitHub Exploit DB Packet Storm
233149 6.8 警告 stewart howe - CelerBB の login.php における認証を回避される脆弱性 CWE-287
不適切な認証
CVE-2009-0853 2012-12-20 19:10 2009-03-9 Show GitHub Exploit DB Packet Storm
233150 5 警告 stewart howe - CelerBB の showme.php における "予約情報" を取得される脆弱性 CWE-200
情報漏えい
CVE-2009-0852 2012-12-20 19:10 2009-03-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
292251 - wp_guestmap_project wp_guestmap_project Multiple cross-site scripting (XSS) vulnerabilities in the WP GuestMap plugin 1.8 and earlier for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) zl, (2) mt, or (3… CWE-79
Cross-site Scripting
CVE-2014-4587 2024-11-21 11:10 2014-07-3 Show GitHub Exploit DB Packet Storm
292252 - wp_consultant_project wp_consultant Cross-site scripting (XSS) vulnerability in admin/admin_show_dialogs.php in the WP Consultant plugin 1.0 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via t… CWE-79
Cross-site Scripting
CVE-2014-4582 2024-11-21 11:10 2014-07-3 Show GitHub Exploit DB Packet Storm
292253 - wp_blipbot_project wp_blipbot Cross-site scripting (XSS) vulnerability in blipbot.ajax.php in the WP BlipBot plugin 3.0.9 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the BlipBotID … CWE-79
Cross-site Scripting
CVE-2014-4580 2024-11-21 11:10 2014-07-3 Show GitHub Exploit DB Packet Storm
292254 - wp_appointments_schedules_project wp_appointments_schedules Cross-site scripting (XSS) vulnerability in js/test.php in the Appointments Scheduler plugin 1.5 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the lang … CWE-79
Cross-site Scripting
CVE-2014-4579 2024-11-21 11:10 2014-07-3 Show GitHub Exploit DB Packet Storm
292255 - wp_app_maker_project wp_app_maker Cross-site scripting (XSS) vulnerability in asset-studio/icons-launcher.php in the WP App Maker plugin 1.0.16.4 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTM… CWE-79
Cross-site Scripting
CVE-2014-4578 2024-11-21 11:10 2014-07-3 Show GitHub Exploit DB Packet Storm
292256 - wordpress_social_login_project wordpress_social_login Cross-site scripting (XSS) vulnerability in services/diagnostics.php in the WordPress Social Login plugin 2.0.3 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTM… CWE-79
Cross-site Scripting
CVE-2014-4576 2024-11-21 11:10 2014-07-3 Show GitHub Exploit DB Packet Storm
292257 - webengage_project webengage Cross-site scripting (XSS) vulnerability in resize.php in the WebEngage plugin before 2.0.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the height parameter. CWE-79
Cross-site Scripting
CVE-2014-4574 2024-11-21 11:10 2014-07-3 Show GitHub Exploit DB Packet Storm
292258 - walk_score_project walk_score Multiple cross-site scripting (XSS) vulnerabilities in frame-maker.php in the Walk Score plugin 0.5.5 and earlier for WordPress allow remote attackers to inject arbitrary web script or HTML via the (… CWE-79
Cross-site Scripting
CVE-2014-4573 2024-11-21 11:10 2014-07-3 Show GitHub Exploit DB Packet Storm
292259 - votecount_for_balatarin_project votecount_for_balatarin Cross-site scripting (XSS) vulnerability in bvc.php in the Votecount for Balatarin plugin 0.1.1 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the (1) ur… CWE-79
Cross-site Scripting
CVE-2014-4572 2024-11-21 11:10 2014-07-3 Show GitHub Exploit DB Packet Storm
292260 - videowhisper video_presentation Multiple cross-site scripting (XSS) vulnerabilities in the VideoWhisper Video Presentation plugin before 3.31 for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) r… CWE-79
Cross-site Scripting
CVE-2014-4570 2024-11-21 11:10 2014-07-3 Show GitHub Exploit DB Packet Storm