Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 16, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
242161	4.3	警告	MediaWiki	-	MediaWiki におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-0788	2012-09-25 16:47	2007-02-6	Show	GitHub Exploit DB Packet Storm

242162	7.5	危険	noname media	-	Noname Media Photo Galerie Standard の view.php における SQL インジェクションの脆弱性	-	CVE-2007-0786	2012-09-25 16:47	2007-02-6	Show	GitHub Exploit DB Packet Storm

242163	7.8	危険	Linux	-	Linux kernel におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2007-0772	2012-09-25 16:47	2007-02-20	Show	GitHub Exploit DB Packet Storm

242164	6.8	警告	Phorum	-	Phorum の core におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-0767	2012-09-25 16:47	2007-01-26	Show	GitHub Exploit DB Packet Storm

242165	7.5	危険	miguel nunes	-	MiGCMS における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-0757	2012-09-25 16:47	2007-02-5	Show	GitHub Exploit DB Packet Storm

242166	6.8	警告	mentiss acgv	-	ACGVannu における SQL インジェクションの脆弱性	-	CVE-2007-0698	2012-09-25 16:47	2007-02-3	Show	GitHub Exploit DB Packet Storm

242167	6.4	警告	mentiss acgv	-	ACGVannu の index2.php におけるパスワードなどを変更される脆弱性	-	CVE-2007-0697	2012-09-25 16:47	2007-02-3	Show	GitHub Exploit DB Packet Storm

242168	5	警告	myevent	-	myEvent における重要な情報を取得される脆弱性	-	CVE-2007-0690	2012-09-25 16:47	2007-05-30	Show	GitHub Exploit DB Packet Storm

242169	5	警告	MyBB Group	-	MyBB における重要な情報を取得される脆弱性	-	CVE-2007-0689	2012-09-25 16:47	2007-05-14	Show	GitHub Exploit DB Packet Storm

242170	7.5	危険	hunkaray duyuru	-	Hunkaray Duyuru Scripti における SQL インジェクションの脆弱性	-	CVE-2007-0688	2012-09-25 16:47	2007-02-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
285471	-	wordpress debian	wordpress debian_linux	Cross-site scripting (XSS) vulnerability in Press This in WordPress before 3.7.5, 3.8.x before 3.8.5, 3.9.x before 3.9.3, and 4.x before 4.0.1 allows remote attackers to inject arbitrary web script o…	CWE-79 Cross-site Scripting	CVE-2014-9035	2024-11-21 11:20	2014-11-26	Show	GitHub Exploit DB Packet Storm

285472	-	wordpress	wordpress	wp-includes/class-phpass.php in WordPress before 3.7.5, 3.8.x before 3.8.5, 3.9.x before 3.9.3, and 4.x before 4.0.1 allows remote attackers to cause a denial of service (CPU consumption) via a long …	CWE-19 Data Processing Errors	CVE-2014-9034	2024-11-21 11:20	2014-11-26	Show	GitHub Exploit DB Packet Storm

285473	-	wordpress	wordpress	Cross-site request forgery (CSRF) vulnerability in wp-login.php in WordPress 3.7.4, 3.8.4, 3.9.2, and 4.0 allows remote attackers to hijack the authentication of arbitrary users for requests that res…	CWE-352 Origin Validation Error	CVE-2014-9033	2024-11-21 11:20	2014-11-26	Show	GitHub Exploit DB Packet Storm

285474	-	wordpress	wordpress	Cross-site scripting (XSS) vulnerability in the media-playlists feature in WordPress before 3.9.x before 3.9.3 and 4.x before 4.0.1 allows remote attackers to inject arbitrary web script or HTML via …	CWE-79 Cross-site Scripting	CVE-2014-9032	2024-11-21 11:20	2014-11-26	Show	GitHub Exploit DB Packet Storm

285475	-	wordpress	wordpress	Cross-site scripting (XSS) vulnerability in the wptexturize function in WordPress before 3.7.5, 3.8.x before 3.8.5, and 3.9.x before 3.9.3 allows remote attackers to inject arbitrary web script or HT…	CWE-79 Cross-site Scripting	CVE-2014-9031	2024-11-21 11:20	2014-11-26	Show	GitHub Exploit DB Packet Storm

285476	-	xen debian opensuse	xen debian_linux opensuse	The do_mmu_update function in arch/x86/mm.c in Xen 3.2.x through 4.4.x does not properly manage page references, which allows remote domains to cause a denial of service by leveraging control over an…	CWE-20 Improper Input Validation	CVE-2014-9030	2024-11-21 11:20	2014-11-25	Show	GitHub Exploit DB Packet Storm

285477	-	drupal secure_password_hashes_project debian	drupal secure_passwords_hashes debian_linux	The password hashing API in Drupal 7.x before 7.34 and the Secure Password Hashes (aka phpass) module 6.x-2.x before 6.x-2.1 for Drupal allows remote attackers to cause a denial of service (CPU and m…	NVD-CWE-noinfo	CVE-2014-9016	2024-11-21 11:20	2014-11-25	Show	GitHub Exploit DB Packet Storm

285478	-	drupal debian	drupal debian_linux	Drupal 6.x before 6.34 and 7.x before 7.34 allows remote attackers to hijack sessions via a crafted request, as demonstrated by a crafted request to a server that supports both HTTP and HTTPS session…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-9015	2024-11-21 11:20	2014-11-25	Show	GitHub Exploit DB Packet Storm

285479	-	pypa oracle	pip solaris	pip 1.3 through 1.5.6 allows local users to cause a denial of service (prevention of package installation) by creating a /tmp/pip-build-* file for another user.	NVD-CWE-noinfo	CVE-2014-8991	2024-11-21 11:20	2014-11-25	Show	GitHub Exploit DB Packet Storm

285480	-	mantisbt	mantisbt	MantisBT before 1.2.18 allows remote authenticated users to bypass the $g_download_attachments_threshold and $g_view_attachments_threshold restrictions and read attachments for private projects by le…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-8988	2024-11-21 11:20	2014-11-25	Show	GitHub Exploit DB Packet Storm