Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 8, 2026, 12:07 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
240071	9.3	危険	Little CMS	-	Little CMS におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-2741	2012-09-25 16:47	2007-05-17	Show	GitHub Exploit DB Packet Storm

240072	6	警告	jetbox	-	Jetbox CMS における任意のスクリプトをアップロードされる脆弱性	-	CVE-2007-2733	2012-09-25 16:47	2007-05-16	Show	GitHub Exploit DB Packet Storm

240073	6.8	警告	jetbox	-	Jetbox CMS におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-2732	2012-09-25 16:47	2007-05-16	Show	GitHub Exploit DB Packet Storm

240074	4	警告	jetbox	-	Jetbox CMS の formmail.php における CRLF インジェクションの脆弱性	-	CVE-2007-2731	2012-09-25 16:47	2007-05-16	Show	GitHub Exploit DB Packet Storm

240075	4.3	警告	The PHP Group	-	PHP の soap エクステンションにおける脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2007-2728	2012-09-25 16:47	2007-05-16	Show	GitHub Exploit DB Packet Storm

240076	2.6	注意	The PHP Group	-	PHP の ext/mcrypt/mcyrpt.c における特定のデータを解読される脆弱性	-	CVE-2007-2727	2012-09-25 16:47	2007-05-16	Show	GitHub Exploit DB Packet Storm

240077	7.1	危険	media player classic	-	Media Player Classic におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-2723	2012-09-25 16:47	2007-05-16	Show	GitHub Exploit DB Packet Storm

240078	7.8	危険	newzcrawler	-	NewzCrawler におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-2722	2012-09-25 16:47	2007-05-16	Show	GitHub Exploit DB Packet Storm

240079	10	危険	ヒューレット・パッカード	-	HP SIM におけるセッションをハイジャックされる脆弱性	CWE-287 不適切な認証	CVE-2007-2719	2012-09-25 16:47	2007-05-8	Show	GitHub Exploit DB Packet Storm

240080	4.3	警告	マイクロソフト Stalker Software, Inc.	-	Stalker CommuniGate Pro の WebMail system におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-2718	2012-09-25 16:47	2007-05-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 8, 2026, 4:09 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
287331	-	mnt-tech	wp-facethumb	Cross-site scripting (XSS) vulnerability in the WP-FaceThumb plugin possibly 1.0 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the ajax_url parameter to…	CWE-79 Cross-site Scripting	CVE-2014-4585	2024-11-21 11:10	2014-07-1	Show	GitHub Exploit DB Packet Storm

287332	-	wp-easybooking_plugin_project	wp-easybooking	Cross-site scripting (XSS) vulnerability in admin/editFacility.php in the wp-easybooking plugin 1.0.3 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the …	CWE-79 Cross-site Scripting	CVE-2014-4584	2024-11-21 11:10	2014-07-1	Show	GitHub Exploit DB Packet Storm

287333	-	wp-contact_plugin_project	wp-contact-sidebar-widget	Multiple cross-site scripting (XSS) vulnerabilities in forms/messages.php in the WP-Contact (wp-contact-sidebar-widget) plugin 1.0 and earlier for WordPress allow remote attackers to inject arbitrary…	CWE-79 Cross-site Scripting	CVE-2014-4583	2024-11-21 11:10	2014-07-1	Show	GitHub Exploit DB Packet Storm

287334	-	wikipop_plugin_project	wikipop	Cross-site scripting (XSS) vulnerability in js/window.php in the Wikipop plugin 2.0 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the s parameter.	CWE-79 Cross-site Scripting	CVE-2014-4575	2024-11-21 11:10	2014-07-1	Show	GitHub Exploit DB Packet Storm

287335	-	videowhisper	videowhisper_live_streaming_integration	Cross-site scripting (XSS) vulnerability in ls/vv_login.php in the VideoWhisper Live Streaming Integration plugin 4.27.2 and earlier for WordPress allows remote attackers to inject arbitrary web scri…	CWE-79 Cross-site Scripting	CVE-2014-4569	2024-11-21 11:10	2014-07-1	Show	GitHub Exploit DB Packet Storm

287336	-	validated_plugin_project	validated_plugin	Cross-site scripting (XSS) vulnerability in check.php in the Validated plugin 1.0.2 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the slug parameter.	CWE-79 Cross-site Scripting	CVE-2014-4564	2024-11-21 11:10	2014-07-1	Show	GitHub Exploit DB Packet Storm

287337	-	swipe_checkout_for_eshop_project	swipe_checkout_for_eshop	Cross-site scripting (XSS) vulnerability in test-plugin.php in the Swipe Checkout for eShop plugin 3.7.0 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via t…	CWE-79 Cross-site Scripting	CVE-2014-4556	2024-11-21 11:10	2014-07-1	Show	GitHub Exploit DB Packet Storm

287338	-	pro_quoter_plugin_project	pro_quoter	Multiple cross-site scripting (XSS) vulnerabilities in pq_dialog.php in the Pro Quoter plugin 1.0 and earlier for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) l…	CWE-79 Cross-site Scripting	CVE-2014-4545	2024-11-21 11:10	2014-07-1	Show	GitHub Exploit DB Packet Storm

287339	-	malware_finder_plugin_project	malware_finder	Cross-site scripting (XSS) vulnerability in process.php in the Malware Finder plugin 1.1 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the query paramet…	CWE-79 Cross-site Scripting	CVE-2014-4538	2024-11-21 11:10	2014-07-1	Show	GitHub Exploit DB Packet Storm

287340	-	geo_redirector_plugin_project	geo_redirector	Cross-site scripting (XSS) vulnerability in ajax_functions.php in the GEO Redirector plugin 1.0.1 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the hid_…	CWE-79 Cross-site Scripting	CVE-2014-4533	2024-11-21 11:10	2014-07-1	Show	GitHub Exploit DB Packet Storm