Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 18, 2026, 12:09 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251761	5	警告	monoxide0184	-	Oxide WebServer におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2011-4712	2011-12-13 14:59	2011-12-8	Show	GitHub Exploit DB Packet Storm

251762	5	警告	Namazu Project	-	Namazu の namazu.cgi におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2011-4711	2011-12-13 14:57	2011-12-8	Show	GitHub Exploit DB Packet Storm

251763	7.5	危険	Lucid Crew	-	Pixie CMS における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-4710	2011-12-13 14:53	2011-12-8	Show	GitHub Exploit DB Packet Storm

251764	4.3	警告	Hotaru CMS	-	Hotaru CMS の Search プラグイン内にある Hotaru.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4709	2011-12-13 14:52	2011-12-8	Show	GitHub Exploit DB Packet Storm

251765	4.3	警告	IBM	-	IBM Rational Asset Manager におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4708	2011-12-13 14:51	2011-05-5	Show	GitHub Exploit DB Packet Storm

251766	4.3	警告	SAP	-	SAP Netweaver の Virus Scan Interface におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4707	2011-12-13 14:50	2011-12-8	Show	GitHub Exploit DB Packet Storm

251767	5	警告	Igor Sysoev	-	nginx におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-4315	2011-12-13 14:49	2011-11-15	Show	GitHub Exploit DB Packet Storm

251768	7.5	危険	Mambo Foundation	-	Mambo CMS の administrator/index2.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-2917	2011-12-13 14:41	2011-12-8	Show	GitHub Exploit DB Packet Storm

251769	6.8	警告	MIT Kerberos	-	MIT Kerberos の process_tgs_req 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-1530	2011-12-13 14:40	2011-12-6	Show	GitHub Exploit DB Packet Storm

251770	6.4	警告	BlackBerry	-	BlackBerry Administration API におけるテキストファイルを読まれる脆弱性	CWE-noinfo 情報不足	CVE-2011-0287	2011-12-13 14:35	2011-07-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
282631	-	wp_app_maker_project	wp_app_maker	Cross-site scripting (XSS) vulnerability in asset-studio/icons-launcher.php in the WP App Maker plugin 1.0.16.4 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTM…	CWE-79 Cross-site Scripting	CVE-2014-4578	2024-11-21 11:10	2014-07-3	Show	GitHub Exploit DB Packet Storm

282632	-	wordpress_social_login_project	wordpress_social_login	Cross-site scripting (XSS) vulnerability in services/diagnostics.php in the WordPress Social Login plugin 2.0.3 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTM…	CWE-79 Cross-site Scripting	CVE-2014-4576	2024-11-21 11:10	2014-07-3	Show	GitHub Exploit DB Packet Storm

282633	-	webengage_project	webengage	Cross-site scripting (XSS) vulnerability in resize.php in the WebEngage plugin before 2.0.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the height parameter.	CWE-79 Cross-site Scripting	CVE-2014-4574	2024-11-21 11:10	2014-07-3	Show	GitHub Exploit DB Packet Storm

282634	-	walk_score_project	walk_score	Multiple cross-site scripting (XSS) vulnerabilities in frame-maker.php in the Walk Score plugin 0.5.5 and earlier for WordPress allow remote attackers to inject arbitrary web script or HTML via the (…	CWE-79 Cross-site Scripting	CVE-2014-4573	2024-11-21 11:10	2014-07-3	Show	GitHub Exploit DB Packet Storm

282635	-	votecount_for_balatarin_project	votecount_for_balatarin	Cross-site scripting (XSS) vulnerability in bvc.php in the Votecount for Balatarin plugin 0.1.1 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the (1) ur…	CWE-79 Cross-site Scripting	CVE-2014-4572	2024-11-21 11:10	2014-07-3	Show	GitHub Exploit DB Packet Storm

282636	-	videowhisper	video_presentation	Multiple cross-site scripting (XSS) vulnerabilities in the VideoWhisper Video Presentation plugin before 3.31 for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) r…	CWE-79 Cross-site Scripting	CVE-2014-4570	2024-11-21 11:10	2014-07-3	Show	GitHub Exploit DB Packet Storm

282637	-	videowhisper	video_posts_webcam_recorder	Cross-site scripting (XSS) vulnerability in posts/videowhisper/r_logout.php in the Video Posts Webcam Recorder plugin 1.55.4 and earlier for WordPress allows remote attackers to inject arbitrary web …	CWE-79 Cross-site Scripting	CVE-2014-4568	2024-11-21 11:10	2014-07-3	Show	GitHub Exploit DB Packet Storm

282638	-	verweise-wordpress-twitter_project	verweise-wordpress-twitter	Cross-site scripting (XSS) vulnerability in res/fake_twitter/frame.php in the "verwei.se - WordPress - Twitter" (verweise-wordpress-twitter) plugin 1.0.2 and earlier for WordPress allows remote attac…	CWE-79 Cross-site Scripting	CVE-2014-4566	2024-11-21 11:10	2014-07-3	Show	GitHub Exploit DB Packet Storm

282639	-	toolpage_project	toolpage	Cross-site scripting (XSS) vulnerability in includes/getTipo.php in the ToolPage plugin 1.6.1 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the t parame…	CWE-79 Cross-site Scripting	CVE-2014-4560	2024-11-21 11:10	2014-07-3	Show	GitHub Exploit DB Packet Storm

282640	-	jigoshop	swipe_hq_checkout_for_jigoshop	Cross-site scripting (XSS) vulnerability in test-plugin.php in the Swipe Checkout for Jigoshop (swipe-hq-checkout-for-jigoshop) plugin 3.1.0 and earlier for WordPress allows remote attackers to injec…	CWE-79 Cross-site Scripting	CVE-2014-4557	2024-11-21 11:10	2014-07-3	Show	GitHub Exploit DB Packet Storm