Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 1, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
225961 7.5 危険 Web-Dorado - Drupal 用 Web Dorado Spider Video Player プラグインの settings.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-3532 2013-05-14 15:49 2013-05-10 Show GitHub Exploit DB Packet Storm
225962 7.5 危険 RadioCMS - RadioCMS の meneger.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-3531 2013-05-14 15:48 2013-05-10 Show GitHub Exploit DB Packet Storm
225963 7.5 危険 Fabricio Zuardi - WordPress 用 Spiffy XSPF Player プラグインの playlist.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-3530 2013-05-14 15:47 2013-05-10 Show GitHub Exploit DB Packet Storm
225964 4.3 警告 Smarty Pants Plugins - WordPress 用 WP FuneralPress プラグインの user/obits.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-3529 2013-05-14 15:46 2013-05-10 Show GitHub Exploit DB Packet Storm
225965 7.5 危険 Vanilla Forums - Vanilla Forums の更新チェックにおける脆弱性 CWE-noinfo
情報不足 		CVE-2013-3528 2013-05-14 15:44 2013-04-5 Show GitHub Exploit DB Packet Storm
225966 7.5 危険 Vanilla Forums - Vanilla Forums における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-3527 2013-05-14 15:37 2013-04-5 Show GitHub Exploit DB Packet Storm
225967 4.3 警告 georgemathewk - WordPress 用 Traffic Analyzer プラグインの js/ta_loaded.js.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-3526 2013-05-14 15:37 2013-05-10 Show GitHub Exploit DB Packet Storm
225968 7.5 危険 David Clark - phpVMS 用 Pop Up News モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-3524 2013-05-14 15:36 2013-05-10 Show GitHub Exploit DB Packet Storm
225969 7.5 危険 greg jennings - This HTML Is Simple における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-3523 2013-05-14 15:35 2013-04-1 Show GitHub Exploit DB Packet Storm
225970 6.5 警告 vBulletin Solutions, Inc. - vBulletin の index.php/ajax/api/reputation/vote における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-3522 2013-05-14 15:34 2013-05-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
312071 - - - Access Control vulnerability in TheInnovs EleForms allows . This issue affects EleForms: from n/a through 2.9.9.9. CWE-862
 Missing Authorization 		CVE-2024-38748 2024-11-2 00:15 2024-11-2 Show GitHub Exploit DB Packet Storm
312072 - - - Missing Authorization vulnerability in Rymera Web Co Wholesale Suite allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Wholesale Suite: from n/a through 2.1.12. CWE-862
 Missing Authorization 		CVE-2024-38745 2024-11-2 00:15 2024-11-2 Show GitHub Exploit DB Packet Storm
312073 - - - Missing Authorization vulnerability in Upqode Plum: Spin Wheel & Email Pop-up allows Accessing Functionality Not Properly Constrained by ACLs, Stored XSS.This issue affects Plum: Spin Wheel & Email P… CWE-862
 Missing Authorization 		CVE-2024-38744 2024-11-2 00:15 2024-11-2 Show GitHub Exploit DB Packet Storm
312074 - - - Access Control vulnerability in Upqode Plum: Spin Wheel & Email Pop-up allows . This issue affects Plum: Spin Wheel & Email Pop-up: from n/a through 2.0. CWE-862
 Missing Authorization 		CVE-2024-38743 2024-11-2 00:15 2024-11-2 Show GitHub Exploit DB Packet Storm
312075 - - - Missing Authorization vulnerability in Packlink Shipping S.L. Packlink PRO shipping module allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Packlink PRO ship… CWE-862
 Missing Authorization 		CVE-2024-38740 2024-11-2 00:15 2024-11-2 Show GitHub Exploit DB Packet Storm
312076 - - - Missing Authorization vulnerability in Reservation Diary ReDi Restaurant Reservation allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects ReDi Restaurant Reservation: fr… CWE-862
 Missing Authorization 		CVE-2024-38737 2024-11-2 00:15 2024-11-2 Show GitHub Exploit DB Packet Storm
312077 - - - Missing Authorization vulnerability in Meks Meks Video Importer allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Meks Video Importer: from n/a through 1.0.12. - CVE-2024-38733 2024-11-2 00:15 2024-11-2 Show GitHub Exploit DB Packet Storm
312078 - - - Missing Authorization vulnerability in Seraphinite Solutions Seraphinite Post .DOCX Source allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Seraphinite Post … CWE-862
 Missing Authorization 		CVE-2024-38727 2024-11-2 00:15 2024-11-2 Show GitHub Exploit DB Packet Storm
312079 - - - Missing Authorization vulnerability in PickPlugins Product Designer allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Product Designer: from n/a through 1.0.33. CWE-862
 Missing Authorization 		CVE-2024-38726 2024-11-2 00:15 2024-11-2 Show GitHub Exploit DB Packet Storm
312080 - - - Missing Authorization vulnerability in spider-themes EazyDocs allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects EazyDocs: from n/a through 2.5.0. CWE-862
 Missing Authorization 		CVE-2024-38721 2024-11-2 00:15 2024-11-2 Show GitHub Exploit DB Packet Storm