Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 1, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
250561 6.9 警告 Todd C. Miller
レッドハット		 - Fedora の sudo の parse.c における root 権限を取得される脆弱性 CWE-DesignError
CVE-2011-0008 2012-03-27 18:42 2011-01-18 Show GitHub Exploit DB Packet Storm
250562 3.3 注意 troglobit - pimd における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2011-0007 2012-03-27 18:42 2011-01-10 Show GitHub Exploit DB Packet Storm
250563 4.3 警告 Joomla! - Joomla! の com_search モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-0005 2012-03-27 18:42 2011-01-10 Show GitHub Exploit DB Packet Storm
250564 4.3 警告 Piwik - Piwik におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-0004 2012-03-27 18:42 2011-01-10 Show GitHub Exploit DB Packet Storm
250565 6.9 警告 Exim Development - Exim の open_log 機能における任意のファイルにログデータをアペンドさせる脆弱性 CWE-20
CWE-59
CVE-2011-0017 2012-03-27 18:42 2010-06-12 Show GitHub Exploit DB Packet Storm
250566 5.8 警告 MediaWiki - MediaWiki におけるクリックジャッキング攻撃を実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-0003 2012-03-27 18:42 2011-01-10 Show GitHub Exploit DB Packet Storm
250567 7.5 危険 Digital Junkies - dompdf の dompdf.php における任意の PHP コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-4879 2012-03-27 18:42 2011-10-7 Show GitHub Exploit DB Packet Storm
250568 7.5 危険 WordPress.org
edgetechweb		 - Event Registration プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4839 2012-03-27 18:42 2011-09-13 Show GitHub Exploit DB Packet Storm
250569 6 警告 extensiondepot
Joomla!		 - Joomla! の JSupport (com_jsupport) コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4838 2012-03-27 18:42 2011-09-13 Show GitHub Exploit DB Packet Storm
250570 4.3 警告 extensiondepot - Joomla! の JSupport (com_jsupport) コンポーネントにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4837 2012-03-27 18:42 2011-09-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
285711 - xen_carousel_plugin_project xen_carousel Multiple cross-site scripting (XSS) vulnerabilities in xencarousel-admin.js.php in the XEN Carousel plugin 0.12.2 and earlier for WordPress allow remote attackers to inject arbitrary web script or HT… CWE-79
Cross-site Scripting 		CVE-2014-4602 2024-11-21 11:10 2014-07-1 Show GitHub Exploit DB Packet Storm
285712 - mnt-tech wp-facethumb Cross-site scripting (XSS) vulnerability in the WP-FaceThumb plugin possibly 1.0 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the ajax_url parameter to… CWE-79
Cross-site Scripting 		CVE-2014-4585 2024-11-21 11:10 2014-07-1 Show GitHub Exploit DB Packet Storm
285713 - wp-easybooking_plugin_project wp-easybooking Cross-site scripting (XSS) vulnerability in admin/editFacility.php in the wp-easybooking plugin 1.0.3 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the … CWE-79
Cross-site Scripting 		CVE-2014-4584 2024-11-21 11:10 2014-07-1 Show GitHub Exploit DB Packet Storm
285714 - wp-contact_plugin_project wp-contact-sidebar-widget Multiple cross-site scripting (XSS) vulnerabilities in forms/messages.php in the WP-Contact (wp-contact-sidebar-widget) plugin 1.0 and earlier for WordPress allow remote attackers to inject arbitrary… CWE-79
Cross-site Scripting 		CVE-2014-4583 2024-11-21 11:10 2014-07-1 Show GitHub Exploit DB Packet Storm
285715 - wikipop_plugin_project wikipop Cross-site scripting (XSS) vulnerability in js/window.php in the Wikipop plugin 2.0 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the s parameter. CWE-79
Cross-site Scripting 		CVE-2014-4575 2024-11-21 11:10 2014-07-1 Show GitHub Exploit DB Packet Storm
285716 - videowhisper videowhisper_live_streaming_integration Cross-site scripting (XSS) vulnerability in ls/vv_login.php in the VideoWhisper Live Streaming Integration plugin 4.27.2 and earlier for WordPress allows remote attackers to inject arbitrary web scri… CWE-79
Cross-site Scripting 		CVE-2014-4569 2024-11-21 11:10 2014-07-1 Show GitHub Exploit DB Packet Storm
285717 - validated_plugin_project validated_plugin Cross-site scripting (XSS) vulnerability in check.php in the Validated plugin 1.0.2 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the slug parameter. CWE-79
Cross-site Scripting 		CVE-2014-4564 2024-11-21 11:10 2014-07-1 Show GitHub Exploit DB Packet Storm
285718 - swipe_checkout_for_eshop_project swipe_checkout_for_eshop Cross-site scripting (XSS) vulnerability in test-plugin.php in the Swipe Checkout for eShop plugin 3.7.0 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via t… CWE-79
Cross-site Scripting 		CVE-2014-4556 2024-11-21 11:10 2014-07-1 Show GitHub Exploit DB Packet Storm
285719 - pro_quoter_plugin_project pro_quoter Multiple cross-site scripting (XSS) vulnerabilities in pq_dialog.php in the Pro Quoter plugin 1.0 and earlier for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) l… CWE-79
Cross-site Scripting 		CVE-2014-4545 2024-11-21 11:10 2014-07-1 Show GitHub Exploit DB Packet Storm
285720 - malware_finder_plugin_project malware_finder Cross-site scripting (XSS) vulnerability in process.php in the Malware Finder plugin 1.1 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the query paramet… CWE-79
Cross-site Scripting 		CVE-2014-4538 2024-11-21 11:10 2014-07-1 Show GitHub Exploit DB Packet Storm