Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 5, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
239361	7.5	危険	マイクロソフト	-	Microsoft WMP 9 におけるユーザが起動するつもりのないソフトウェアの脆弱性を悪用される脆弱性	CWE-20 不適切な入力確認	CVE-2007-5095	2012-09-25 16:59	2007-09-26	Show	GitHub Exploit DB Packet Storm

239362	7.5	危険	Ipswitch, Inc.	-	Ipswitch IMail Server の SMTP Server の iaspam.dll におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-5094	2012-09-25 16:59	2007-09-26	Show	GitHub Exploit DB Packet Storm

239363	6.8	警告	multimedia	-	phpNuke 用の Dance Music モジュールにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-5092	2012-09-25 16:59	2007-09-26	Show	GitHub Exploit DB Packet Storm

239364	7.5	危険	マイクロソフト IBM	-	IBM Rational CQ におけるデータ破損の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2007-5090	2012-09-25 16:59	2007-09-26	Show	GitHub Exploit DB Packet Storm

239365	4.9	警告	Linux	-	Linux kernel の ATM モジュールにおけるサービス運用妨害 (DoS) の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2007-5087	2012-09-25 16:59	2007-09-26	Show	GitHub Exploit DB Packet Storm

239366	2.1	注意	カスペルスキー	-	KAV などにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2007-5086	2012-09-25 16:59	2007-09-26	Show	GitHub Exploit DB Packet Storm

239367	7.5	危険	massimo chioni	-	PHP-Nuke 用の Nuke Mobile Entertainment アドオンにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-5069	2012-09-25 16:59	2007-09-24	Show	GitHub Exploit DB Packet Storm

239368	7.5	危険	imatix	-	iMatix Xitami Web Server におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-5067	2012-09-25 16:59	2007-09-24	Show	GitHub Exploit DB Packet Storm

239369	7.5	危険	Joomla! Webmaster-Tips	-	Joomla! 用の Flash Slide Show コンポーネントにおける PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-5065	2012-09-25 16:59	2007-09-24	Show	GitHub Exploit DB Packet Storm

239370	10	危険	netsupport	-	NetSupport Manager Client における認証スキームを回避される脆弱性	CWE-287 不適切な認証	CVE-2007-5057	2012-09-25 16:59	2007-09-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
286641	-	malware_finder_plugin_project	malware_finder	Cross-site scripting (XSS) vulnerability in process.php in the Malware Finder plugin 1.1 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the query paramet…	CWE-79 Cross-site Scripting	CVE-2014-4538	2024-11-21 11:10	2014-07-1	Show	GitHub Exploit DB Packet Storm

286642	-	geo_redirector_plugin_project	geo_redirector	Cross-site scripting (XSS) vulnerability in ajax_functions.php in the GEO Redirector plugin 1.0.1 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the hid_…	CWE-79 Cross-site Scripting	CVE-2014-4533	2024-11-21 11:10	2014-07-1	Show	GitHub Exploit DB Packet Storm

286643	-	fbpromotions_project	fbpromotions	Multiple cross-site scripting (XSS) vulnerabilities in admin/swarm-settings.php in the Bugs Go Viral : Facebook Promotion Generator (fbpromotions) plugin 1.3.4 and earlier for WordPress allow remote …	CWE-79 Cross-site Scripting	CVE-2014-4528	2024-11-21 11:10	2014-07-1	Show	GitHub Exploit DB Packet Storm

286644	-	diversesolutions	dsidxpress_idx_plugin	Cross-site scripting (XSS) vulnerability in client-assist.php in the dsIDXpress IDX plugin before 2.1.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the action par…	CWE-79 Cross-site Scripting	CVE-2014-4521	2024-11-21 11:10	2014-07-1	Show	GitHub Exploit DB Packet Storm

286645	-	dmca	dmca_watermarker	Cross-site scripting (XSS) vulnerability in phprack.php in the DMCA WaterMarker plugin before 1.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the plugin_dir param…	CWE-79 Cross-site Scripting	CVE-2014-4520	2024-11-21 11:10	2014-07-1	Show	GitHub Exploit DB Packet Storm

286646	-	d-coda	contactme	Cross-site scripting (XSS) vulnerability in xd_resize.php in the Contact Form by ContactMe.com plugin 2.3 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via …	CWE-79 Cross-site Scripting	CVE-2014-4518	2024-11-21 11:10	2014-07-1	Show	GitHub Exploit DB Packet Storm

286647	-	bic_media_widget_plugin	bic_media_widget	Cross-site scripting (XSS) vulnerability in bicm-carousel-preview.php in the BIC Media Widget plugin 1.0 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via t…	CWE-79 Cross-site Scripting	CVE-2014-4516	2024-11-21 11:10	2014-07-1	Show	GitHub Exploit DB Packet Storm

286648	-	anyfont_plugin_project	anyfont	Cross-site scripting (XSS) vulnerability in mce_anyfont/dialog.php in the AnyFont plugin 2.2.3 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the text pa…	CWE-79 Cross-site Scripting	CVE-2014-4515	2024-11-21 11:10	2014-07-1	Show	GitHub Exploit DB Packet Storm

286649	-	activehelper	activehelper_livehelp_live_chat	Multiple cross-site scripting (XSS) vulnerabilities in server/offline.php in the ActiveHelper LiveHelp Live Chat plugin 3.1.0 and earlier for WordPress allow remote attackers to inject arbitrary web …	CWE-79 Cross-site Scripting	CVE-2014-4513	2024-11-21 11:10	2014-07-1	Show	GitHub Exploit DB Packet Storm

286650	-	hp	enterprise_maps	HP Enterprise Maps 1.00 allows remote authenticated users to read arbitrary files via a WSDL document containing an XML external entity declaration in conjunction with an entity reference within a Ge…	CWE-200 Information Exposure	CVE-2014-4669	2024-11-21 11:10	2014-06-29	Show	GitHub Exploit DB Packet Storm