Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 6, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
239951 7.5 危険 NagiosQL - NagiosQL の functions/prepend_adm.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2710 2012-09-25 16:47 2007-05-16 Show GitHub Exploit DB Packet Storm
239952 7.5 危険 NagiosQL - NagiosQL 2005 の functions/prepend_adm.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2709 2012-09-25 16:47 2007-05-16 Show GitHub Exploit DB Packet Storm
239953 6.8 警告 linksnet - Linksnet Newsfeed の linksnet_linkslog_rss.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2707 2012-09-25 16:47 2007-05-16 Show GitHub Exploit DB Packet Storm
239954 7.8 危険 インターネット セキュリティ システムズ - IBM ISS Proventia シリーズにおける HTTP トラフィックの検知を回避される脆弱性 - CVE-2007-2690 2012-09-25 16:47 2007-05-15 Show GitHub Exploit DB Packet Storm
239955 10 危険 MicroWorld Technologies Inc. - MicroWorld Technologies eScan におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2007-2687 2012-09-25 16:47 2007-05-23 Show GitHub Exploit DB Packet Storm
239956 4.3 警告 jetbox - Jetbox CMS の index.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2686 2012-09-25 16:47 2007-05-22 Show GitHub Exploit DB Packet Storm
239957 7.5 危険 jetbox - Jetbox CMS の index.php における SQL インジェクションの脆弱性 - CVE-2007-2685 2012-09-25 16:47 2007-05-21 Show GitHub Exploit DB Packet Storm
239958 5 警告 jetbox - Jetbox CMS における重要な情報を取得される脆弱性 - CVE-2007-2684 2012-09-25 16:47 2007-05-21 Show GitHub Exploit DB Packet Storm
239959 7.5 危険 netsprint - Netsprint Toolbar の toolbar.dll におけるバッファオーバーフローの脆弱性 - CVE-2007-2678 2012-09-25 16:47 2007-05-14 Show GitHub Exploit DB Packet Storm
239960 7.5 危険 open translation engine - OTE の skins/header.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2676 2012-09-25 16:47 2007-05-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
287151 - wp_social_invitations_project wp_social_invitations Cross-site scripting (XSS) vulnerability in test.php in the WP Social Invitations plugin before 1.4.4.3 for WordPress allows remote attackers to inject arbitrary web script or HTML via the xhrurl par… CWE-79
Cross-site Scripting 		CVE-2014-4597 2024-11-21 11:10 2014-07-3 Show GitHub Exploit DB Packet Storm
287152 - wp_picasa_image_project wp_picasa_image Cross-site scripting (XSS) vulnerability in picasa_upload.php in the WP-Picasa-Image plugin 1.0 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the post_i… CWE-79
Cross-site Scripting 		CVE-2014-4591 2024-11-21 11:10 2014-07-3 Show GitHub Exploit DB Packet Storm
287153 - wpcb_project wpcb Cross-site scripting (XSS) vulnerability in facture.php in the WPCB plugin 2.4.8 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the id parameter. CWE-79
Cross-site Scripting 		CVE-2014-4581 2024-11-21 11:10 2014-07-3 Show GitHub Exploit DB Packet Storm
287154 - vn-calendar_project vn-calendar Multiple cross-site scripting (XSS) vulnerabilities in vncal.js.php in the VN-Calendar plugin 1.0 and earlier for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) f… CWE-79
Cross-site Scripting 		CVE-2014-4571 2024-11-21 11:10 2014-07-3 Show GitHub Exploit DB Packet Storm
287155 - verification_code_for_comments_project verification_code_for_comments Multiple cross-site scripting (XSS) vulnerabilities in vcc.js.php in the Verification Code for Comments plugin 2.1.0 and earlier for WordPress allow remote attackers to inject arbitrary web script or… CWE-79
Cross-site Scripting 		CVE-2014-4565 2024-11-21 11:10 2014-07-3 Show GitHub Exploit DB Packet Storm
287156 - url_cloak_\&_encrypt_project url_cloak_\&_encrypt Cross-site scripting (XSS) vulnerability in go.php in the URL Cloak & Encrypt (url-cloak-encrypt) plugin 2.0 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML v… CWE-79
Cross-site Scripting 		CVE-2014-4563 2024-11-21 11:10 2014-07-3 Show GitHub Exploit DB Packet Storm
287157 - style_it_project style_it Cross-site scripting (XSS) vulnerability in fonts/font-form.php in the Style It plugin 1.0 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the mode parame… CWE-79
Cross-site Scripting 		CVE-2014-4555 2024-11-21 11:10 2014-07-3 Show GitHub Exploit DB Packet Storm
287158 - ss_downloads_project ss_downloads Cross-site scripting (XSS) vulnerability in templates/download.php in the SS Downloads plugin before 1.5 for WordPress allows remote attackers to inject arbitrary web script or HTML via the title par… CWE-79
Cross-site Scripting 		CVE-2014-4554 2024-11-21 11:10 2014-07-3 Show GitHub Exploit DB Packet Storm
287159 - woocommerce_sagepay_direct_payment_gateway_project woocommerce_sagepay_direct_payment_gateway Multiple cross-site scripting (XSS) vulnerabilities in pages/3DComplete.php in the WooCommerce SagePay Direct Payment Gateway plugin before 0.1.6.7 for WordPress allow remote attackers to inject arbi… CWE-79
Cross-site Scripting 		CVE-2014-4549 2024-11-21 11:10 2014-07-3 Show GitHub Exploit DB Packet Storm
287160 - rezgo_project rezgo Cross-site scripting (XSS) vulnerability in book_ajax.php in the Rezgo plugin 1.4.2 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the response parameter. CWE-79
Cross-site Scripting 		CVE-2014-4546 2024-11-21 11:10 2014-07-3 Show GitHub Exploit DB Packet Storm