Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
239141 7.5 危険 Mavili - Mavili Guestbook の edit.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2012-5297 2012-10-9 14:51 2012-10-4 Show GitHub Exploit DB Packet Storm
239142 4.3 警告 Mavili - Mavili Guestbook におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2012-5296 2012-10-9 14:51 2012-10-4 Show GitHub Exploit DB Packet Storm
239143 4.3 警告 FuseTalk - FuseTalk Forums の login.cfm におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2012-5295 2012-10-9 14:50 2012-10-4 Show GitHub Exploit DB Packet Storm
239144 7.5 危険 MyStore Xpress - MyStore Xpress Tienda Virtual の art_detalle.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2012-5294 2012-10-9 14:49 2012-10-4 Show GitHub Exploit DB Packet Storm
239145 4.3 警告 TheCartPress - WordPress 用 TheCartPress プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2011-5207 2012-10-9 14:49 2011-12-31 Show GitHub Exploit DB Packet Storm
239146 4.3 警告 Rapid Leech - Rapid Leech の notes.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2011-5206 2012-10-9 14:48 2011-12-21 Show GitHub Exploit DB Packet Storm
239147 4.3 警告 Rapid Leech - Rapid Leech の audl.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2011-5205 2012-10-9 14:47 2012-10-4 Show GitHub Exploit DB Packet Storm
239148 1.9 注意 Akiva - Akiva WebBoard における重要な情報を取得される脆弱性 CWE-255
証明書・パスワード管理
CVE-2011-5204 2012-10-9 14:47 2012-10-4 Show GitHub Exploit DB Packet Storm
239149 7.5 危険 Akiva - Akiva WebBoard の WB/Default.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2011-5203 2012-10-9 14:46 2012-10-4 Show GitHub Exploit DB Packet Storm
239150 6.9 警告 Monkey Project - Monkey HTTP Daemon における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2012-4443 2012-10-9 14:43 2012-10-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
286601 6.5 MEDIUM
Network
google
debian
chrome
debian_linux
Double-free vulnerability in libavformat/mov.c in FFMPEG in Google Chrome 41.0.2251.0 allows remote attackers to cause a denial of service (memory corruption and crash) via a crafted .m4a file. CWE-415
 Double Free
CVE-2015-1207 2024-11-21 11:24 2017-06-7 Show GitHub Exploit DB Packet Storm
286602 9.8 CRITICAL
Network
ceragon fibeair_ip-10_firmware Ceragon FibeAir IP-10 have a default SSH public key in the authorized_keys file for the mateidu user, which allows remote attackers to obtain SSH access by leveraging knowledge of the private key. CWE-320
 Key Management Errors
CVE-2015-0936 2024-11-21 11:24 2017-06-2 Show GitHub Exploit DB Packet Storm
286603 7.8 HIGH
Local
csv2wpec-coupon_project csv2wpec-coupon Remote file upload vulnerability in wordpress plugin csv2wpec-coupon v1.1 CWE-434
 Unrestricted Upload of File with Dangerous Type 
CVE-2015-1000013 2024-11-21 11:24 2016-10-6 Show GitHub Exploit DB Packet Storm
286604 7.5 HIGH
Network
mypixs_project mypixs Local File Inclusion Vulnerability in mypixs v0.3 wordpress plugin CWE-200
Information Exposure
CVE-2015-1000012 2024-11-21 11:24 2016-10-6 Show GitHub Exploit DB Packet Storm
286605 9.8 CRITICAL
Network
dukapress_project dukapress Blind SQL Injection in wordpress plugin dukapress v2.5.9 CWE-89
SQL Injection
CVE-2015-1000011 2024-11-21 11:24 2016-10-6 Show GitHub Exploit DB Packet Storm
286606 7.5 HIGH
Network
simple-image-manipulator_project simple-image-manipulator Remote file download in simple-image-manipulator v1.0 wordpress plugin CWE-284
Improper Access Control
CVE-2015-1000010 2024-11-21 11:24 2016-10-6 Show GitHub Exploit DB Packet Storm
286607 9.1 CRITICAL
Network
google-adsense-and-hotel-booking_project google-adsense-and-hotel-booking Open proxy in Wordpress plugin google-adsense-and-hotel-booking v1.05 CWE-284
Improper Access Control
CVE-2015-1000009 2024-11-21 11:24 2016-10-6 Show GitHub Exploit DB Packet Storm
286608 5.3 MEDIUM
Network
mp3-jplayer_project mp3-jplayer Path Disclosure Vulnerability in wordpress plugin MP3-jPlayer v2.3.2 CWE-200
Information Exposure
CVE-2015-1000008 2024-11-21 11:24 2016-10-6 Show GitHub Exploit DB Packet Storm
286609 7.5 HIGH
Network
wptf-image-gallery_project wptf-image-gallery Remote file download vulnerability in wptf-image-gallery v1.03 CWE-200
CWE-285
Information Exposure
Improper Authorization
CVE-2015-1000007 2024-11-21 11:24 2016-10-6 Show GitHub Exploit DB Packet Storm
286610 7.5 HIGH
Network
recent-backups_project recent-backups Remote file download vulnerability in recent-backups v0.7 wordpress plugin CWE-22
Path Traversal
CVE-2015-1000006 2024-11-21 11:24 2016-10-6 Show GitHub Exploit DB Packet Storm