Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 12, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226581	5.8	警告	Apache Software Foundation レッドハット	-	Apache Qpid の Python クライアントにおける SSL サーバになりすまされる脆弱性	CWE-20 不適切な入力確認	CVE-2013-1909	2013-08-27 12:25	2013-06-12	Show	GitHub Exploit DB Packet Storm

226582	4.3	警告	Axel Jung	-	TYPO3 用 Javascript and CSS Optimizer エクステンションにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-5570	2013-08-26 15:31	2013-01-28	Show	GitHub Exploit DB Packet Storm

226583	7.5	危険	Heiko Sudar	-	TYPO3 用 Slideshare エクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2013-5569	2013-08-26 15:31	2013-02-19	Show	GitHub Exploit DB Packet Storm

226584	2.1	注意	Paul Maddern	-	Drupal 用 Imagemenu モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-6583	2013-08-26 15:25	2012-09-19	Show	GitHub Exploit DB Packet Storm

226585	2.1	注意	Simon Tatham	-	PuTTY におけるログインパスワードを読まれる脆弱性	CWE-200 情報漏えい	CVE-2011-4607	2013-08-26 14:02	2011-12-8	Show	GitHub Exploit DB Packet Storm

226586	7.8	危険	シスコシステムズ	-	Cisco Unified Communications Manager および Cisco Unified Presence におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2013-3453	2013-08-26 13:53	2013-08-21	Show	GitHub Exploit DB Packet Storm

226587	4	警告	IBM	-	IBM Optim Performance Manager および IBM InfoSphere Optim Performance Manager におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2013-2979	2013-08-26 13:34	2013-08-20	Show	GitHub Exploit DB Packet Storm

226588	2.6	注意	ヤフー株式会社	-	ヤフオク! における SSL サーバ証明書の検証不備の脆弱性	CWE-Other その他	CVE-2013-4699	2013-08-23 18:43	2013-08-19	Show	GitHub Exploit DB Packet Storm

226589	2.6	注意	ヤフー株式会社	-	Android 版 Yahoo!ショッピングにおける SSL サーバ証明書の検証不備の脆弱性	CWE-Other その他	CVE-2013-4700	2013-08-23 18:41	2013-08-19	Show	GitHub Exploit DB Packet Storm

226590	6.4	警告	JanRain	-	PHP OpenID Library における XML 外部実体参照に関する脆弱性	CWE-Other その他	CVE-2013-4701	2013-08-23 18:37	2013-08-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
4491	6.4	MEDIUM Network	-	-	The Islamic Database plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'islamicDB-roqya' shortcode in versions up to, and including, 1.0. This is due to insufficient input san…	CWE-79 Cross-site Scripting	CVE-2026-8845	2026-05-27 23:50	2026-05-27	Show	GitHub Exploit DB Packet Storm

4492	6.4	MEDIUM Network	-	-	The Tuxquote plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'TUXQUOTE' shortcode in versions up to, and including, 1.3. This is due to insufficient input sanitization and o…	CWE-79 Cross-site Scripting	CVE-2026-8846	2026-05-27 23:50	2026-05-27	Show	GitHub Exploit DB Packet Storm

4493	6.4	MEDIUM Network	-	-	The Dideo plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'dideo' shortcode in version 1.0. This is due to insufficient input sanitization and output escaping on th…	CWE-79 Cross-site Scripting	CVE-2026-8847	2026-05-27 23:50	2026-05-27	Show	GitHub Exploit DB Packet Storm

4494	6.4	MEDIUM Network	-	-	The jQuery googleslides plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'googleslides' shortcode in all versions up to, and including, 1.3. This is due to insufficient input…	CWE-79 Cross-site Scripting	CVE-2026-8866	2026-05-27 23:50	2026-05-27	Show	GitHub Exploit DB Packet Storm

4495	6.4	MEDIUM Network	-	-	The Post Category Gallery plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'postcategorygallery' shortcode in versions up to, and including, 1.0.0. This is due to in…	CWE-79 Cross-site Scripting	CVE-2026-8867	2026-05-27 23:50	2026-05-27	Show	GitHub Exploit DB Packet Storm

4496	6.4	MEDIUM Network	-	-	The Mutual Funds Data plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'title' shortcode attribute in versions up to, and including, 1.2.1. This is due to insufficient input …	CWE-79 Cross-site Scripting	CVE-2026-8869	2026-05-27 23:50	2026-05-27	Show	GitHub Exploit DB Packet Storm

4497	6.4	MEDIUM Network	-	-	The Team Master – A Modern WordPress Team Showcase plugin for WordPress is vulnerable to Stored Cross-Site Scripting via Shortcode Attributes in all versions up to, and including, 1.1.2 due to insuff…	CWE-79 Cross-site Scripting	CVE-2026-8870	2026-05-27 23:50	2026-05-27	Show	GitHub Exploit DB Packet Storm

4498	6.4	MEDIUM Network	-	-	The Formidable Kinetic plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'kinetic_link' shortcode in versions up to, and including, 1.1.01. This is due to insufficient input s…	CWE-79 Cross-site Scripting	CVE-2026-8871	2026-05-27 23:50	2026-05-27	Show	GitHub Exploit DB Packet Storm

4499	6.4	MEDIUM Network	-	-	The Content Slideshow plugin for WordPress is vulnerable to Stored Cross-Site Scripting via Shortcode Attributes in all versions up to, and including, 2.4.1 due to insufficient input sanitization and…	CWE-79 Cross-site Scripting	CVE-2026-8873	2026-05-27 23:50	2026-05-27	Show	GitHub Exploit DB Packet Storm

4500	6.4	MEDIUM Network	-	-	The Single Mailchimp plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'single-mailchimp' shortcode in all versions up to, and including, 1.4. This is due to insufficient inpu…	CWE-79 Cross-site Scripting	CVE-2026-8868	2026-05-27 23:50	2026-05-27	Show	GitHub Exploit DB Packet Storm