Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 7, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
240141 6 警告 MyBB Group
mybulletinboard		 - MyBB の member.php における任意のアカウントのパスワードを変更される脆弱性 - CVE-2007-1964 2012-09-25 16:47 2007-04-11 Show GitHub Exploit DB Packet Storm
240142 5.1 警告 mywebland - myWebland myBloggie における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-1899 2012-09-25 16:47 2008-07-8 Show GitHub Exploit DB Packet Storm
240143 7.5 危険 MyBB Group
mybulletinboard		 - MyBB の class_session.php における SQL インジェクションの脆弱性 - CVE-2007-1963 2012-09-25 16:47 2007-04-11 Show GitHub Exploit DB Packet Storm
240144 7.5 危険 onelook - onelook courts on-line におけるセッションをハイジャックされる脆弱性 CWE-287
不適切な認証 		CVE-2007-1953 2012-09-25 16:47 2007-04-10 Show GitHub Exploit DB Packet Storm
240145 7.5 危険 onelook - onelook onebyone CMS におけるセッションをハイジャックされる脆弱性 CWE-287
不適切な認証 		CVE-2007-1952 2012-09-25 16:47 2007-04-10 Show GitHub Exploit DB Packet Storm
240146 7.5 危険 onelook - onelook obo Shop におけるセッションをハイジャックされる脆弱性 CWE-287
不適切な認証 		CVE-2007-1951 2012-09-25 16:47 2007-04-10 Show GitHub Exploit DB Packet Storm
240147 9.3 危険 Irfan Skiljan - IrfanView におけるバッファオーバーフローの脆弱性 - CVE-2007-1948 2012-09-25 16:47 2007-04-10 Show GitHub Exploit DB Packet Storm
240148 3.5 注意 parakey inc. - Mozilla Firefox 用の Firebug エクステンションにおけるクロスゾーンスクリプティングの脆弱性 - CVE-2007-1947 2012-09-25 16:47 2007-04-10 Show GitHub Exploit DB Packet Storm
240149 10 危険 マイクロソフト - Microsoft Windows XP SP1 の Windows Explorer における整数オーバーフローの脆弱性 - CVE-2007-1946 2012-09-25 16:47 2007-04-10 Show GitHub Exploit DB Packet Storm
240150 4.9 警告 IBM - IBM TBSM における重要な情報を取得される脆弱性 - CVE-2007-1940 2012-09-25 16:47 2007-04-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
287291 - rezgo online_booking Multiple cross-site scripting (XSS) vulnerabilities in templates/default/index_ajax.php in the Rezgo Online Booking plugin before 1.8.2 for WordPress allow remote attackers to inject arbitrary web sc… CWE-79
Cross-site Scripting 		CVE-2014-4547 2024-11-21 11:10 2014-07-3 Show GitHub Exploit DB Packet Storm
287292 - pay_per_media_player_project pay_per_media_player Multiple cross-site scripting (XSS) vulnerabilities in payper/payper.php in the Pay Per Media Player plugin 1.24 and earlier for WordPress allow remote attackers to inject arbitrary web script or HTM… CWE-79
Cross-site Scripting 		CVE-2014-4543 2024-11-21 11:10 2014-07-3 Show GitHub Exploit DB Packet Storm
287293 - ooorl_project ooorl Cross-site scripting (XSS) vulnerability in redirect.php in the Ooorl plugin for WordPress allows remote attackers to inject arbitrary web script or HTML via the url parameter. CWE-79
Cross-site Scripting 		CVE-2014-4542 2024-11-21 11:10 2014-07-3 Show GitHub Exploit DB Packet Storm
287294 - omfg_mobile_project omfg_mobile Cross-site scripting (XSS) vulnerability in shortcode-generator/preview-shortcode-external.php in the OMFG Mobile Pro plugin 1.1.26 and earlier for WordPress allows remote attackers to inject arbitra… CWE-79
Cross-site Scripting 		CVE-2014-4541 2024-11-21 11:10 2014-07-3 Show GitHub Exploit DB Packet Storm
287295 - oleggo_livestream_project oleggo_livestream Cross-site scripting (XSS) vulnerability in oleggo-twitter/twitter_login_form.php in the Oleggo LiveStream plugin 0.2.6 and earlier for WordPress allows remote attackers to inject arbitrary web scrip… CWE-79
Cross-site Scripting 		CVE-2014-4540 2024-11-21 11:10 2014-07-3 Show GitHub Exploit DB Packet Storm
287296 - keyword_strategy_internal_links_project keyword_strategy_internal_links Cross-site scripting (XSS) vulnerability in inpage.tpl.php in the Keyword Strategy Internal Links plugin 2.0 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML v… CWE-79
Cross-site Scripting 		CVE-2014-4537 2024-11-21 11:10 2014-07-3 Show GitHub Exploit DB Packet Storm
287297 - garagesale_project garagesale Cross-site scripting (XSS) vulnerability in templates/printAdminUsersList_Footer.tpl.php in the GarageSale plugin before 1.2.3 for WordPress allows remote attackers to inject arbitrary web script or … CWE-79
Cross-site Scripting 		CVE-2014-4532 2024-11-21 11:10 2014-07-3 Show GitHub Exploit DB Packet Storm
287298 - game_tabs_project game_tabs Cross-site scripting (XSS) vulnerability in main_page.php in the Game tabs plugin 0.4.0 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the n parameter. CWE-79
Cross-site Scripting 		CVE-2014-4531 2024-11-21 11:10 2014-07-3 Show GitHub Exploit DB Packet Storm
287299 - flash_photo_gallery_project flash_photo_gallery Cross-site scripting (XSS) vulnerability in fpg_preview.php in the Flash Photo Gallery plugin 0.7 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the path… CWE-79
Cross-site Scripting 		CVE-2014-4529 2024-11-21 11:10 2014-07-3 Show GitHub Exploit DB Packet Storm
287300 - envialosimple email_marketing_y_newsletters Multiple cross-site scripting (XSS) vulnerabilities in paginas/vista-previa-form.php in the EnvialoSimple: Email Marketing and Newsletters (envialosimple-email-marketing-y-newsletters-gratis) plugin … CWE-79
Cross-site Scripting 		CVE-2014-4527 2024-11-21 11:10 2014-07-3 Show GitHub Exploit DB Packet Storm