Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 4:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
233351 4.3 警告 unica - Unica Affinium Campaign におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2008-7092 2012-12-20 19:10 2009-08-26 Show GitHub Exploit DB Packet Storm
233352 7.5 危険 Pligg - Pligg における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2008-7091 2012-12-20 19:10 2009-08-26 Show GitHub Exploit DB Packet Storm
233353 7.8 危険 Pligg - Pligg におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2008-7090 2012-12-20 19:10 2009-08-26 Show GitHub Exploit DB Packet Storm
233354 4.3 警告 Pligg - Pligg におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2008-7089 2012-12-20 19:10 2009-08-26 Show GitHub Exploit DB Packet Storm
233355 7.5 危険 thehockeystop - TheHockeyStop HockeySTATS Online における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2008-7085 2012-12-20 19:10 2009-08-26 Show GitHub Exploit DB Packet Storm
233356 7.5 危険 revou - ReVou Micro Blogging Twitter クローンにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2008-7083 2012-12-20 19:10 2009-08-25 Show GitHub Exploit DB Packet Storm
233357 4.3 警告 Simple Machines
phpraider
- Simple Machines phpRaider の不特定のコンポーネントにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2008-7035 2012-12-20 19:10 2009-08-24 Show GitHub Exploit DB Packet Storm
233358 7.5 危険 tigran abrahamyan - PHPEcho CMS の kernel/smarty/Smarty.class.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション
CVE-2008-7034 2012-12-20 19:10 2009-08-24 Show GitHub Exploit DB Packet Storm
233359 7.5 危険 site2nite - Site2Nite Real Estate Web における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2008-7030 2012-12-20 19:10 2009-08-24 Show GitHub Exploit DB Packet Storm
233360 10 危険 skalinks - Skalfa Software SkaLinks Exchange Script における管理者を追加される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2008-7010 2012-12-20 19:10 2009-08-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
292291 - xen_carousel_plugin_project xen_carousel Multiple cross-site scripting (XSS) vulnerabilities in xencarousel-admin.js.php in the XEN Carousel plugin 0.12.2 and earlier for WordPress allow remote attackers to inject arbitrary web script or HT… CWE-79
Cross-site Scripting
CVE-2014-4602 2024-11-21 11:10 2014-07-1 Show GitHub Exploit DB Packet Storm
292292 - mnt-tech wp-facethumb Cross-site scripting (XSS) vulnerability in the WP-FaceThumb plugin possibly 1.0 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the ajax_url parameter to… CWE-79
Cross-site Scripting
CVE-2014-4585 2024-11-21 11:10 2014-07-1 Show GitHub Exploit DB Packet Storm
292293 - wp-easybooking_plugin_project wp-easybooking Cross-site scripting (XSS) vulnerability in admin/editFacility.php in the wp-easybooking plugin 1.0.3 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the … CWE-79
Cross-site Scripting
CVE-2014-4584 2024-11-21 11:10 2014-07-1 Show GitHub Exploit DB Packet Storm
292294 - wp-contact_plugin_project wp-contact-sidebar-widget Multiple cross-site scripting (XSS) vulnerabilities in forms/messages.php in the WP-Contact (wp-contact-sidebar-widget) plugin 1.0 and earlier for WordPress allow remote attackers to inject arbitrary… CWE-79
Cross-site Scripting
CVE-2014-4583 2024-11-21 11:10 2014-07-1 Show GitHub Exploit DB Packet Storm
292295 - wikipop_plugin_project wikipop Cross-site scripting (XSS) vulnerability in js/window.php in the Wikipop plugin 2.0 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the s parameter. CWE-79
Cross-site Scripting
CVE-2014-4575 2024-11-21 11:10 2014-07-1 Show GitHub Exploit DB Packet Storm
292296 - videowhisper videowhisper_live_streaming_integration Cross-site scripting (XSS) vulnerability in ls/vv_login.php in the VideoWhisper Live Streaming Integration plugin 4.27.2 and earlier for WordPress allows remote attackers to inject arbitrary web scri… CWE-79
Cross-site Scripting
CVE-2014-4569 2024-11-21 11:10 2014-07-1 Show GitHub Exploit DB Packet Storm
292297 - validated_plugin_project validated_plugin Cross-site scripting (XSS) vulnerability in check.php in the Validated plugin 1.0.2 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the slug parameter. CWE-79
Cross-site Scripting
CVE-2014-4564 2024-11-21 11:10 2014-07-1 Show GitHub Exploit DB Packet Storm
292298 - swipe_checkout_for_eshop_project swipe_checkout_for_eshop Cross-site scripting (XSS) vulnerability in test-plugin.php in the Swipe Checkout for eShop plugin 3.7.0 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via t… CWE-79
Cross-site Scripting
CVE-2014-4556 2024-11-21 11:10 2014-07-1 Show GitHub Exploit DB Packet Storm
292299 - pro_quoter_plugin_project pro_quoter Multiple cross-site scripting (XSS) vulnerabilities in pq_dialog.php in the Pro Quoter plugin 1.0 and earlier for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) l… CWE-79
Cross-site Scripting
CVE-2014-4545 2024-11-21 11:10 2014-07-1 Show GitHub Exploit DB Packet Storm
292300 - malware_finder_plugin_project malware_finder Cross-site scripting (XSS) vulnerability in process.php in the Malware Finder plugin 1.1 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the query paramet… CWE-79
Cross-site Scripting
CVE-2014-4538 2024-11-21 11:10 2014-07-1 Show GitHub Exploit DB Packet Storm