Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 13, 2026, 4 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 250841 | 5 | 警告 | Drupal | - | Drupal の includes/bootstrap.inc 内の request_path 関数における重要な情報を取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2012-2922 | 2012-05-23 19:33 | 2012-05-21 | Show | GitHub Exploit DB Packet Storm |
| 250842 | 3.5 | 注意 | Geoff Davies | - | Drupal 用 Contact Forms モジュールにおけるモジュールの設定を変更される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2012-2340 | 2012-05-23 19:12 | 2012-05-21 | Show | GitHub Exploit DB Packet Storm |
| 250843 | 4.3 | 警告 | Nancy Wichmann | - | Drupal 用 Glossary モジュールにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2012-2339 | 2012-05-23 19:00 | 2012-05-21 | Show | GitHub Exploit DB Packet Storm |
| 250844 | 2.6 | 注意 | Ishmael Sanchez | - | Drupal 用 Aberdeen テーマの aberdeen_breadcrumb 関数におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2012-2907 | 2012-05-23 18:57 | 2012-05-21 | Show | GitHub Exploit DB Packet Storm |
| 250845 | 5 | 警告 | mark pilgrim | - | Universal Feed Parser におけるサービス運用妨害 (メモリ消費) の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2012-2921 | 2012-05-23 18:50 | 2012-05-2 | Show | GitHub Exploit DB Packet Storm |
| 250846 | 4.3 | 警告 | Weston Ruter | - | WordPress 用 User Photo プラグインにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2012-2920 | 2012-05-23 18:48 | 2012-05-21 | Show | GitHub Exploit DB Packet Storm |
| 250847 | 4.3 | 警告 | Andrew Killen | - | WordPress 用 Share and Follow プラグインにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2012-2917 | 2012-05-23 18:47 | 2012-05-21 | Show | GitHub Exploit DB Packet Storm |
| 250848 | 4.3 | 警告 | dlo | - | WordPress 用 Sabre プラグインにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2012-2916 | 2012-05-23 18:46 | 2012-05-21 | Show | GitHub Exploit DB Packet Storm |
| 250849 | 4.3 | 警告 | Hind | - | WordPress 用 Leaflet プラグインにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2012-2913 | 2012-05-23 18:41 | 2012-05-21 | Show | GitHub Exploit DB Packet Storm |
| 250850 | 4.3 | 警告 | Kolja Schleich | - | WordPress 用 LeagueManager プラグインにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2012-2912 | 2012-05-23 18:25 | 2012-05-21 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 13, 2026, 4:20 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 276551 | 9.8 |
CRITICAL
Network |
newstatpress_project | newstatpress | The newstatpress plugin before 1.0.1 for WordPress has SQL injection. |
CWE-89
SQL Injection |
CVE-2015-9315 | 2024-11-21 11:40 | 2019-08-15 | Show | GitHub Exploit DB Packet Storm |
| 276552 | 6.1 |
MEDIUM
Network |
newstatpress_project | newstatpress | The newstatpress plugin before 1.0.4 for WordPress has XSS related to the Referer header. |
CWE-79
Cross-site Scripting |
CVE-2015-9314 | 2024-11-21 11:40 | 2019-08-15 | Show | GitHub Exploit DB Packet Storm |
| 276553 | 9.8 |
CRITICAL
Network |
newstatpress_project | newstatpress | The newstatpress plugin before 1.0.5 for WordPress has SQL injection related to an IMG element. |
CWE-89
SQL Injection |
CVE-2015-9313 | 2024-11-21 11:40 | 2019-08-15 | Show | GitHub Exploit DB Packet Storm |
| 276554 | 6.1 |
MEDIUM
Network |
newstatpress_project | newstatpress | The newstatpress plugin before 1.0.5 for WordPress has XSS related to an IMG element. |
CWE-79
Cross-site Scripting |
CVE-2015-9312 | 2024-11-21 11:40 | 2019-08-15 | Show | GitHub Exploit DB Packet Storm |
| 276555 | 6.1 |
MEDIUM
Network |
newstatpress_project | newstatpress | The newstatpress plugin before 1.0.6 for WordPress has reflected XSS. |
CWE-79
Cross-site Scripting |
CVE-2015-9311 | 2024-11-21 11:40 | 2019-08-15 | Show | GitHub Exploit DB Packet Storm |
| 276556 | 6.1 |
MEDIUM
Network |
simple_fields_project | simple_fields | The simple-fields plugin before 1.4.11 for WordPress has XSS. |
CWE-79
Cross-site Scripting |
CVE-2015-9302 | 2024-11-21 11:40 | 2019-08-14 | Show | GitHub Exploit DB Packet Storm |
| 276557 | 9.8 |
CRITICAL
Network |
w3eden | live_forms | The liveforms plugin before 3.2.0 for WordPress has SQL injection. |
CWE-89
SQL Injection |
CVE-2015-9301 | 2024-11-21 11:40 | 2019-08-14 | Show | GitHub Exploit DB Packet Storm |
| 276558 | 6.1 |
MEDIUM
Network |
pixelite | events_manager | The events-manager plugin before 5.5.7 for WordPress has multiple XSS issues. |
CWE-79
Cross-site Scripting |
CVE-2015-9300 | 2024-11-21 11:40 | 2019-08-14 | Show | GitHub Exploit DB Packet Storm |
| 276559 | 6.1 |
MEDIUM
Network |
pixelite | events_manager | The events-manager plugin before 5.5.7.1 for WordPress has DOM XSS. |
CWE-79
Cross-site Scripting |
CVE-2015-9299 | 2024-11-21 11:40 | 2019-08-14 | Show | GitHub Exploit DB Packet Storm |
| 276560 | 9.8 |
CRITICAL
Network |
pixelite | events_manager | The events-manager plugin before 5.6 for WordPress has code injection. |
CWE-94
Code Injection |
CVE-2015-9298 | 2024-11-21 11:40 | 2019-08-14 | Show | GitHub Exploit DB Packet Storm |