Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 7, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
241561	7.5	危険	knusperleicht	-	Knusperleicht Newsletter の index.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-3986	2012-09-25 15:35	2006-08-4	Show	GitHub Exploit DB Packet Storm

241562	7.5	危険	knusperleicht	-	Knusperleicht Quickie の quickie.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-3982	2012-09-25 15:35	2006-08-4	Show	GitHub Exploit DB Packet Storm

241563	7.5	危険	Mambo Foundation	-	Mambo 用の MGM における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-3981	2012-09-25 15:35	2006-08-4	Show	GitHub Exploit DB Packet Storm

241564	6.8	警告	Mambo Foundation	-	Mambo 用の MGM における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-3980	2012-09-25 15:35	2006-08-4	Show	GitHub Exploit DB Packet Storm

241565	7.2	危険	macromedia	-	ColdFusion の AdminAPI における認証を回避される脆弱性	-	CVE-2006-3979	2012-09-25 15:35	2006-08-8	Show	GitHub Exploit DB Packet Storm

241566	7.2	危険	my firewall plus	-	My Firewall Plus における SYSTEM の権限を取得される脆弱性	-	CVE-2006-3973	2012-09-25 15:35	2006-11-22	Show	GitHub Exploit DB Packet Storm

241567	7.5	危険	Joomla!	-	Joomla! 用の LMO Component における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-3970	2012-09-25 15:35	2006-07-31	Show	GitHub Exploit DB Packet Storm

241568	7.5	危険	Joomla!	-	Joomla! 用の Colophon における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-3969	2012-09-25 15:35	2006-08-1	Show	GitHub Exploit DB Packet Storm

241569	7.5	危険	moskool	-	MamboXChange Moskool における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-3967	2012-09-25 15:35	2006-08-1	Show	GitHub Exploit DB Packet Storm

241570	7.5	危険	Mambo Foundation	-	bayesiannaivefilter コンポーネントにおける PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-3962	2012-09-25 15:35	2006-08-1	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
287291	-	rezgo	online_booking	Multiple cross-site scripting (XSS) vulnerabilities in templates/default/index_ajax.php in the Rezgo Online Booking plugin before 1.8.2 for WordPress allow remote attackers to inject arbitrary web sc…	CWE-79 Cross-site Scripting	CVE-2014-4547	2024-11-21 11:10	2014-07-3	Show	GitHub Exploit DB Packet Storm

287292	-	pay_per_media_player_project	pay_per_media_player	Multiple cross-site scripting (XSS) vulnerabilities in payper/payper.php in the Pay Per Media Player plugin 1.24 and earlier for WordPress allow remote attackers to inject arbitrary web script or HTM…	CWE-79 Cross-site Scripting	CVE-2014-4543	2024-11-21 11:10	2014-07-3	Show	GitHub Exploit DB Packet Storm

287293	-	ooorl_project	ooorl	Cross-site scripting (XSS) vulnerability in redirect.php in the Ooorl plugin for WordPress allows remote attackers to inject arbitrary web script or HTML via the url parameter.	CWE-79 Cross-site Scripting	CVE-2014-4542	2024-11-21 11:10	2014-07-3	Show	GitHub Exploit DB Packet Storm

287294	-	omfg_mobile_project	omfg_mobile	Cross-site scripting (XSS) vulnerability in shortcode-generator/preview-shortcode-external.php in the OMFG Mobile Pro plugin 1.1.26 and earlier for WordPress allows remote attackers to inject arbitra…	CWE-79 Cross-site Scripting	CVE-2014-4541	2024-11-21 11:10	2014-07-3	Show	GitHub Exploit DB Packet Storm

287295	-	oleggo_livestream_project	oleggo_livestream	Cross-site scripting (XSS) vulnerability in oleggo-twitter/twitter_login_form.php in the Oleggo LiveStream plugin 0.2.6 and earlier for WordPress allows remote attackers to inject arbitrary web scrip…	CWE-79 Cross-site Scripting	CVE-2014-4540	2024-11-21 11:10	2014-07-3	Show	GitHub Exploit DB Packet Storm

287296	-	keyword_strategy_internal_links_project	keyword_strategy_internal_links	Cross-site scripting (XSS) vulnerability in inpage.tpl.php in the Keyword Strategy Internal Links plugin 2.0 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML v…	CWE-79 Cross-site Scripting	CVE-2014-4537	2024-11-21 11:10	2014-07-3	Show	GitHub Exploit DB Packet Storm

287297	-	garagesale_project	garagesale	Cross-site scripting (XSS) vulnerability in templates/printAdminUsersList_Footer.tpl.php in the GarageSale plugin before 1.2.3 for WordPress allows remote attackers to inject arbitrary web script or …	CWE-79 Cross-site Scripting	CVE-2014-4532	2024-11-21 11:10	2014-07-3	Show	GitHub Exploit DB Packet Storm

287298	-	game_tabs_project	game_tabs	Cross-site scripting (XSS) vulnerability in main_page.php in the Game tabs plugin 0.4.0 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the n parameter.	CWE-79 Cross-site Scripting	CVE-2014-4531	2024-11-21 11:10	2014-07-3	Show	GitHub Exploit DB Packet Storm

287299	-	flash_photo_gallery_project	flash_photo_gallery	Cross-site scripting (XSS) vulnerability in fpg_preview.php in the Flash Photo Gallery plugin 0.7 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the path…	CWE-79 Cross-site Scripting	CVE-2014-4529	2024-11-21 11:10	2014-07-3	Show	GitHub Exploit DB Packet Storm

287300	-	envialosimple	email_marketing_y_newsletters	Multiple cross-site scripting (XSS) vulnerabilities in paginas/vista-previa-form.php in the EnvialoSimple: Email Marketing and Newsletters (envialosimple-email-marketing-y-newsletters-gratis) plugin …	CWE-79 Cross-site Scripting	CVE-2014-4527	2024-11-21 11:10	2014-07-3	Show	GitHub Exploit DB Packet Storm