Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252191	9.3	危険	マイクロソフト	-	Microsoft Excel における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-1279	2011-06-27 16:16	2011-06-14	Show	GitHub Exploit DB Packet Storm

252192	9.3	危険	マイクロソフト	-	Microsoft Excel 2002 および Office 2004 における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-1278	2011-06-27 16:15	2011-06-14	Show	GitHub Exploit DB Packet Storm

252193	4	警告	サイボウズ	-	サイボウズ Office におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-1335	2011-06-24 12:02	2011-06-24	Show	GitHub Exploit DB Packet Storm

252194	4.3	警告	サイボウズ	-	複数のサイボウズ製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-1334	2011-06-24 12:02	2011-06-24	Show	GitHub Exploit DB Packet Storm

252195	3.5	注意	サイボウズ	-	複数のサイボウズ製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-1333	2011-06-24 12:02	2011-06-24	Show	GitHub Exploit DB Packet Storm

252196	2.6	注意	サイボウズ	-	サイボウズガルーンにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-1332	2011-06-24 12:01	2011-06-24	Show	GitHub Exploit DB Packet Storm

252197	9.3	危険	マイクロソフト	-	Microsoft Excel における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-1277	2011-06-24 10:12	2011-06-14	Show	GitHub Exploit DB Packet Storm

252198	9.3	危険	マイクロソフト	-	Microsoft Excel における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-1276	2011-06-24 10:11	2011-06-14	Show	GitHub Exploit DB Packet Storm

252199	9.3	危険	マイクロソフト	-	Microsoft Excel における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-1275	2011-06-24 10:10	2011-06-14	Show	GitHub Exploit DB Packet Storm

252200	9.3	危険	マイクロソフト	-	Microsoft Excel における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-1274	2011-06-24 10:10	2011-06-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
281541	-	xen_carousel_plugin_project	xen_carousel	Multiple cross-site scripting (XSS) vulnerabilities in xencarousel-admin.js.php in the XEN Carousel plugin 0.12.2 and earlier for WordPress allow remote attackers to inject arbitrary web script or HT…	CWE-79 Cross-site Scripting	CVE-2014-4602	2024-11-21 11:10	2014-07-1	Show	GitHub Exploit DB Packet Storm

281542	-	mnt-tech	wp-facethumb	Cross-site scripting (XSS) vulnerability in the WP-FaceThumb plugin possibly 1.0 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the ajax_url parameter to…	CWE-79 Cross-site Scripting	CVE-2014-4585	2024-11-21 11:10	2014-07-1	Show	GitHub Exploit DB Packet Storm

281543	-	wp-easybooking_plugin_project	wp-easybooking	Cross-site scripting (XSS) vulnerability in admin/editFacility.php in the wp-easybooking plugin 1.0.3 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the …	CWE-79 Cross-site Scripting	CVE-2014-4584	2024-11-21 11:10	2014-07-1	Show	GitHub Exploit DB Packet Storm

281544	-	wp-contact_plugin_project	wp-contact-sidebar-widget	Multiple cross-site scripting (XSS) vulnerabilities in forms/messages.php in the WP-Contact (wp-contact-sidebar-widget) plugin 1.0 and earlier for WordPress allow remote attackers to inject arbitrary…	CWE-79 Cross-site Scripting	CVE-2014-4583	2024-11-21 11:10	2014-07-1	Show	GitHub Exploit DB Packet Storm

281545	-	wikipop_plugin_project	wikipop	Cross-site scripting (XSS) vulnerability in js/window.php in the Wikipop plugin 2.0 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the s parameter.	CWE-79 Cross-site Scripting	CVE-2014-4575	2024-11-21 11:10	2014-07-1	Show	GitHub Exploit DB Packet Storm

281546	-	videowhisper	videowhisper_live_streaming_integration	Cross-site scripting (XSS) vulnerability in ls/vv_login.php in the VideoWhisper Live Streaming Integration plugin 4.27.2 and earlier for WordPress allows remote attackers to inject arbitrary web scri…	CWE-79 Cross-site Scripting	CVE-2014-4569	2024-11-21 11:10	2014-07-1	Show	GitHub Exploit DB Packet Storm

281547	-	validated_plugin_project	validated_plugin	Cross-site scripting (XSS) vulnerability in check.php in the Validated plugin 1.0.2 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the slug parameter.	CWE-79 Cross-site Scripting	CVE-2014-4564	2024-11-21 11:10	2014-07-1	Show	GitHub Exploit DB Packet Storm

281548	-	swipe_checkout_for_eshop_project	swipe_checkout_for_eshop	Cross-site scripting (XSS) vulnerability in test-plugin.php in the Swipe Checkout for eShop plugin 3.7.0 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via t…	CWE-79 Cross-site Scripting	CVE-2014-4556	2024-11-21 11:10	2014-07-1	Show	GitHub Exploit DB Packet Storm

281549	-	pro_quoter_plugin_project	pro_quoter	Multiple cross-site scripting (XSS) vulnerabilities in pq_dialog.php in the Pro Quoter plugin 1.0 and earlier for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) l…	CWE-79 Cross-site Scripting	CVE-2014-4545	2024-11-21 11:10	2014-07-1	Show	GitHub Exploit DB Packet Storm

281550	-	malware_finder_plugin_project	malware_finder	Cross-site scripting (XSS) vulnerability in process.php in the Malware Finder plugin 1.1 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the query paramet…	CWE-79 Cross-site Scripting	CVE-2014-4538	2024-11-21 11:10	2014-07-1	Show	GitHub Exploit DB Packet Storm