How to use

JVN iPedia Japanese Version

Database Search

Keyword search:   How to use Search
With Synonym:

Vendor:
Product:
Date Public: /  -  /
Date Last Updated: /  -  /
CVSS Severity
(CVSSv3):
CVSS Severity
(CVSSv2):
CWE:
   What is CWE?
※「Vendor/Product search」button is available only in the Microsoft Edge(ie mode).
Results 1-100 of 133  1 2  next
ID desc Title CVSSv3 CVSSv2 Date
Public
Date Last
Updated
JVNDB-2024-000049
(JVN#85380030)
WordPress Plugin "Download Plugins and Themes from Dashboard" vulnerable to path traversal 2.7 - 2024/05/17 2024/05/17
JVNDB-2024-000044
(JVN#87694318)
WordPress Plugin "Heateor Social Login WordPress" vulnerable to cross-site scripting 5.4 - 2024/05/08 2024/05/08
JVNDB-2024-000041
(JVN#50132400)
Multiple vulnerabilities in WordPress Plugin "Forminator" 9.8 - 2024/04/18 2024/04/18
JVNDB-2024-000038
(JVN#50361500)
Multiple vulnerabilities in WordPress Plugin "Ninja Forms" 5.4 - 2024/04/08 2024/04/08
JVNDB-2024-000035
(JVN#51098626)
Multiple vulnerabilities in WordPress Plugin "Survey Maker" 5.3 5.0 2024/03/27 2024/03/27
JVNDB-2024-000033
(JVN#86206017)
WordPress Plugin "easy-popup-show" vulnerable to cross-site request forgery 4.3 2.6 2024/03/25 2024/03/25
JVNDB-2024-000001
(JVN37326856)
Improper input validation vulnerability in WordPress Plugin "WordPress Quiz Maker Plugin" 5.0 4.0 2024/01/12 2024/03/14
JVNDB-2023-012042
(JVNVU#97876221)
WordPress plugin "MW WP Form" vulnerable to arbitrary file upload 9.8 - 2023/12/14 2024/03/26
JVNDB-2023-000094
(JVN#97197972)
Multiple vulnerabilities in WordPress plugin "Welcart e-Commerce" 5.4 5.5 2023/09/22 2023/09/22
JVNDB-2023-000084
(JVN#98946408)
WordPress Plugin "Advanced Custom Fields" vulnerable to cross-site scripting 5.4 3.5 2023/08/21 2024/03/25
JVNDB-2023-000070
(JVN#90560760)
Multiple vulnerabilities in WordPress Plugin "TS Webfonts for SAKURA" 6.1 2.6 2023/07/20 2024/04/17
JVNDB-2023-000067
(JVN#97127032)
WordPress Plugin "Snow Monkey Forms" vulnerable to directory traversal 5.8 5.0 2023/06/27 2024/04/26
JVNDB-2023-000050
(JVN#01093915)
Multiple vulnerabilities in WordPress Plugin "MW WP Form" and "Snow Monkey Forms" 8.3 7.5 2023/05/15 2023/05/15
JVNDB-2023-000045
(JVN#95792402)
WordPress Plugin "VK Blocks" and "VK All in One Expansion Unit" vulnerable to cross-site scripting 5.4 4.0 2023/05/09 2023/05/09
JVNDB-2023-000042
(JVN#59341308)
WordPress Plugin "Newsletter" vulnerable to cross-site scripting 6.1 2.6 2023/05/09 2023/05/09
JVNDB-2023-000040
(JVN#00971105)
WordPress Plugin "Appointment and Event Booking Calendar for WordPress - Amelia" vulnerable to cross-site scripting 6.1 2.6 2023/04/24 2023/04/24
JVNDB-2023-000039
(JVN#99657911)
WordPress plugin "LIQUID SPEECH BALLOON" vulnerable to cross-site request forgery 4.3 2.6 2023/04/19 2023/04/19
JVNDB-2023-000007
(JVN#31073333)
WordPress plugin "Welcart e-Commerce" vulnerable to directory traversal 7.5 5.0 2023/01/17 2023/01/17
JVNDB-2022-000091
(JVN#13927745)
WordPress Plugin "WordPress Popular Posts" accepts untrusted external inputs to update certain internal variables 5.3 5.0 2022/11/18 2022/11/18
JVNDB-2022-000087
(JVN#09409909)
Multiple vulnerabilities in WordPress 5.3 5.0 2022/11/08 2022/11/08
JVNDB-2022-000085
(JVN#59663854)
WordPress Plugin "Salon booking system" vulnerable to cross-site scripting 6.1 2.6 2022/11/08 2022/11/08
JVNDB-2022-000057
(JVN#77850327)
WordPress Plugin "Newsletter" vulnerable to cross-site scripting 6.1 2.6 2022/07/25 2022/07/25
JVNDB-2022-000041
(JVN#04155116)
WordPress Plugin "Modern Events Calendar Lite" vulnerable to cross-site scripting 5.4 4.0 2022/06/01 2022/06/01
JVNDB-2022-000038
(JVN#15241647)
WordPress plugin "WP Statistics" vulnerable to cross-site scripting 6.1 2.6 2022/05/24 2022/05/24
JVNDB-2022-000026
(JVN#31606885)
WordPress Plugin "MicroPayments - Paid Author Subscriptions, Content, Downloads, Membership" vulnerable to cross-site request forgery 4.3 2.6 2022/04/15 2022/04/15
JVNDB-2022-000023
(JVN#42543427)
WordPress Plugin "Advanced Custom Fields" vulnerable to missing authorization 6.5 4.0 2022/03/30 2022/03/30
JVNDB-2022-000002
(JVN#72788165)
Multiple vulnerabilities in WordPress Plugin "Quiz And Survey Master" 5.4 4.0 2022/01/12 2022/01/12
JVNDB-2021-000109
(JVN#09136401)
Multiple missing authorization vulnerabilities in WordPress Plugin "Advanced Custom Fields" 4.3 4.0 2021/12/02 2022/02/18
JVNDB-2021-000104
(JVN#93562098)
WordPress Plugin "Browser and Operating System Finder" vulnerable to cross-site request forgery 4.3 2.6 2021/11/25 2021/11/25
JVNDB-2021-000103
(JVN#85492429)
WordPress Plugin "Push Notifications for WordPress (Lite)" vulnerable to cross-site request forgery 4.3 2.6 2021/11/16 2021/11/16
JVNDB-2021-000094
(JVN#68066589)
WordPress Plugin "Booking Package - Appointment Booking Calendar System" vulnerable to cross-site scripting 6.1 4.3 2021/11/10 2021/11/10
JVNDB-2021-000086
(JVN#29428319)
WordPress Plugin "OG Tags" vulnerable to cross-site request forgery 4.3 2.6 2021/09/28 2021/09/28
JVNDB-2021-000075
(JVN#65388002)
WordPress Plugin "Quiz And Survey Master" vulnerable to cross-site scripting 6.1 2.6 2021/08/10 2021/08/10
JVNDB-2021-000066
(JVN#89054582)
WordPress Plugin "Software License Manager" vulnerable to cross-site request forgery 4.3 2.6 2021/07/08 2021/07/08
JVNDB-2021-000065
(JVN#48413554)
WordPress Plugin "WordPress Meta Data Filter & Taxonomies Filter" vulnerable to cross-site request forgery 4.3 2.6 2021/07/08 2021/07/08
JVNDB-2021-000063
(JVN#42880365)
WordPress Plugin "WordPress Email Template Designer - WP HTML Mail" vulnerable to cross-site request forgery 4.3 2.6 2021/07/06 2021/07/06
JVNDB-2021-000062
(JVN#91372527)
WordPress Plugin "WPCS - WordPress Currency Switcher" vulnerable to cross-site request forgery 4.3 2.6 2021/07/06 2021/07/06
JVNDB-2021-000056
(JVN#63066062)
WordPress Plugin "WordPress Popular Posts" vulnerable to cross-site scripting 5.4 3.5 2021/06/23 2021/06/30
JVNDB-2021-000055
(JVN#93799513)
WordPress plugin "Fudousan plugin" series vulnerable to cross-site scripting 5.4 4.0 2021/06/22 2021/06/22
JVNDB-2021-000047
(JVN#70566757)
WordPress plugin "Welcart e-Commerce" vulnerable to cross-site scripting 6.1 4.3 2021/06/11 2021/06/11
JVNDB-2021-000034
(JVN#35240327)
WordPress plugin "WP Fastest Cache" vulnerable to directory traversal 3.8 5.5 2021/04/27 2021/04/27
JVNDB-2021-000025
(JVN#08191557)
WordPress plugin "Paid Memberships Pro" vulnerable to SQL injection 6.3 6.5 2021/03/17 2021/03/17
JVNDB-2021-000012
(JVN#50470170)
WordPress Plugin "Name Directory" vulnerable to cross-site request forgery 4.3 2.6 2021/02/05 2021/02/05
JVNDB-2020-000069
(JVN#31425618)
Multiple vulnerabilities in WordPress Plugin "Simple Download Monitor" 5.4 5.8 2020/10/21 2020/10/21
JVNDB-2020-000068
(JVN#92404841)
WordPress Plugin "Live Chat - Live support" vulnerable to cross-site request forgery 4.3 2.6 2020/10/14 2020/10/14
JVNDB-2020-000046
(JVN#05502028)
WordPress Plugin "Social Sharing Plugin" vulnerable to cross-site request forgery 4.3 2.6 2020/07/22 2020/07/22
JVNDB-2020-000033
(JVN#20248858)
WordPress Plugin "Paid Memberships Pro" vulnerable to SQL injection 4.7 6.5 2020/05/19 2020/05/19
JVNDB-2020-000012
(JVN#89259622)
WordPress Plugin "Easy Property Listings" vulnerable to cross-site request forgery 4.3 2.6 2020/02/18 2020/02/18
JVNDB-2019-000075
(JVN#26847507)
Multiple vulnerabilities in "Custom Body Class" 6.1 2.6 2019/12/12 2019/12/12
JVNDB-2019-000070
(JVN#26838191)
WordPress Plugin "WP Spell Check" vulnerable to cross-site request forgery 4.3 2.6 2019/11/26 2019/11/26
JVNDB-2019-000064
(JVN#14776551)
Multiple vulnerabilities in WordPress Plugin "wpDataTables Lite" 7.2 6.5 2019/10/11 2019/10/16
JVNDB-2019-000049
(JVN#92510087)
WordPress Plugin "Category Specific RSS feed Subscription" vulnerable to cross-site request forgery 4.3 2.6 2019/07/18 2019/10/08
JVNDB-2019-000048
(JVN#48981892)
WordPress Plugin "WordPress Ultra Simple Paypal Shopping Cart" vulnerable to cross-site request forgery 4.3 2.6 2019/07/16 2019/10/08
JVNDB-2019-000042
(JVN#29933378)
WordPress Plugin "Custom CSS Pro" vulnerable to cross-site request forgery 4.3 2.6 2019/06/24 2019/10/01
JVNDB-2019-000041
(JVN#49575131)
WordPress Plugin "HTML5 Maps" vulnerable to cross-site request forgery 4.3 2.6 2019/06/24 2019/10/01
JVNDB-2019-000039
(JVN#31406910)
WordPress Plugin "Related YouTube Videos" vulnerable to cross-site request forgery 4.3 2.6 2019/06/17 2019/10/04
JVNDB-2019-000038
(JVN#88804335)
WordPress Plugin "Personalized WooCommerce Cart Page" vulnerable to cross-site request forgery 4.3 2.6 2019/06/19 2019/10/04
JVNDB-2019-000036
(JVN#80925867)
WordPress Plugin "Contest Gallery" vulnerable to cross-site request forgery 4.3 2.6 2019/06/12 2019/10/04
JVNDB-2019-000035
(JVN#96988995)
Multiple vulnerabilities in WordPress Plugin "Online Lesson Booking" 6.1 2.6 2019/06/10 2019/10/02
JVNDB-2019-000034
(JVN#95685939)
Multiple vulnerabilities in WordPress Plugin "Attendance Manager" 6.1 2.6 2019/06/10 2019/10/01
JVNDB-2019-000030
(JVN#88962935)
Multiple vulnerabilities in WordPress Plugin "Zoho SalesIQ" 6.1 2.6 2019/05/31 2019/10/01
JVNDB-2019-000028
(JVN#33652328)
WordPress plugin "WP Open Graph" vulnerable to cross-site request forgery 4.3 2.6 2019/05/23 2019/10/01
JVNDB-2019-000016
(JVN#97656108)
WordPress plugin "Smart Forms" vulnerable to cross-site request forgery 4.3 2.6 2019/02/28 2019/09/27
JVNDB-2019-000011
(JVN#83501605)
WordPress plugin "FormCraft" vulnerable to cross-site request forgery 4.3 2.6 2019/02/26 2019/09/27
JVNDB-2019-000001
(JVN#58010349)
WordPress plugin "spam-byebye" vulnerable to cross-site scripting 6.1 2.6 2019/01/10 2019/08/28
JVNDB-2018-000135
(JVN#27052429)
WordPress plugin "Google XML Sitemaps" vulnerable to cross-site scripting 4.8 4.0 2018/12/25 2019/08/27
JVNDB-2018-000117
(JVN#85760090)
Multiple vulnerabilities in WordPress plugin "LearnPress" 7.2 6.5 2018/11/09 2019/08/27
JVNDB-2018-000115
(JVN#75738023)
WordPress plugin "Event Calendar WD" vulnerable to cross-site scripting 5.4 4.0 2018/11/02 2019/08/27
JVNDB-2018-000078
(JVN#70246549)
WordPress plugin "FV Flowplayer Video Player" vulnerable to cross-site scripting 6.1 2.6 2018/07/17 2019/07/25
JVNDB-2018-000059
(JVN#60978548)
WordPress plugin "Site Reviews" vulnerable to cross-site scripting 6.1 5.0 2018/05/28 2019/07/02
JVNDB-2018-000058
(JVN#16471686)
WordPress plugin "Email Subscribers & Newsletters" vulnerable to cross-site scripting 6.1 2.6 2018/05/28 2019/07/02
JVNDB-2018-000045
(JVN#28804532)
Multiple vulnerabilities in WordPress plugin "Ultimate Member" 7.2 6.4 2018/05/10 2018/08/30
JVNDB-2018-000040
(JVN#08386386)
WordPress plugin "Open Graph for Facebook, Google+ and Twitter Card Tags" vulnerable to cross-site scripting 6.1 2.6 2018/04/27 2018/08/30
JVNDB-2018-000039
(JVN#61081552)
WordPress plugin "PixelYourSite" vulnerable to cross-site scripting 6.1 2.6 2018/04/27 2018/08/30
JVNDB-2018-000038
(JVN#01040170)
WordPress plugin "WP Google Map Plugin" vulnerable to cross-site scripting 6.1 2.6 2018/04/27 2018/08/30
JVNDB-2018-000037
(JVN#85531148)
WordPress plugin "Events Manager" vulnerable to cross-site scripting 5.4 3.5 2018/04/27 2018/08/30
JVNDB-2018-000023
(JVN#60032768)
WordPress plugin "WP All Import" vulnerable to cross-site scripting 6.1 2.6 2018/03/08 2018/06/14
JVNDB-2018-000022
(JVN#33527174)
WordPress plugin "WP All Import" vulnerable to cross-site scripting 6.1 4.3 2018/03/08 2018/06/14
JVNDB-2018-000010
(JVN#99312352)
WordPress plugin "MTS Simple Booking C" vulnerable to cross-site scripting 6.1 4.3 2018/02/02 2018/04/11
JVNDB-2018-000005
(JVN#30636823)
WordPress plugin "WP Retina 2x" vulnerable to cross-site scripting 6.1 2.6 2018/01/30 2018/04/11
JVNDB-2017-000236
(JVN#05398317)
WordPress plugin "TablePress" vulnerable to improper restriction of XML external entity (XXE) references 5.0 4.0 2017/11/14 2018/03/07
JVNDB-2017-000208
(JVN#58559719)
WordPress plugin "BackupGuard" vulnerable to cross-site scripting 6.1 2.6 2017/08/24 2018/02/28
JVNDB-2017-000182
(JVN#31459091)
WordPress plugin "Simple Custom CSS and JS" vulnerable to cross-site scripting 6.1 2.6 2017/07/24 2018/02/14
JVNDB-2017-000181
(JVN#92921024)
WordPress plugin "Popup Maker" vulnerable to cross-site scripting 6.1 2.6 2017/07/24 2018/01/24
JVNDB-2017-000164
(JVN#63249051)
WordPress plugin "Shortcodes Ultimate" vulnerable to directory traversal 5.0 4.0 2017/07/06 2018/02/07
JVNDB-2017-000159
(JVN#39819446)
WordPress plugin "Responsive Lightbox" vulnerable to cross-site scripting 6.1 2.6 2017/07/04 2018/02/14
JVNDB-2017-000140
(JVN#73550134)
WordPress plugin "Event Calendar WD" vulnerable to cross-site scripting 6.1 2.6 2017/06/20 2018/02/14
JVNDB-2017-000139
(JVN#56787058)
WordPress plugin "WP Job Manager" fails to restrict access permissions 5.3 5.0 2017/06/15 2017/06/15
JVNDB-2017-000132
(JVN#51355647)
WordPress plugin "WP-Members" vulnerable to cross-site scripting 6.1 2.6 2017/06/13 2018/02/07
JVNDB-2017-000128
(JVN#79738260)
Open redirect vulnerability in WordPress plugin "WordPress Download Manager" 4.7 2.6 2017/06/13 2018/01/24
JVNDB-2017-000127
(JVN#79738260)
Cross-site scripting vulnerability in WordPress plugin "WordPress Download Manager" 6.1 4.3 2017/06/13 2018/01/24
JVNDB-2017-000115
(JVN#98617234)
WordPress plugin "Multi Feed Reader" vulnerable to SQL injection 6.3 6.5 2017/06/06 2018/01/17
JVNDB-2017-000103
(JVN#70951878)
WordPress plugin "WP Live Chat Support" vulnerable to cross-site scripting 6.1 2.6 2017/06/01 2017/11/27
JVNDB-2017-000094
(JVN#24834813)
Multiple BestWebSoft WordPress plugins vulnerable to cross-site scripting 6.1 2.6 2017/05/16 2017/11/27
JVNDB-2017-000093
(JVN#70411623)
WordPress plugin "MaxButtons" vulnerable to cross-site scripting 6.1 2.6 2017/05/16 2018/01/17
JVNDB-2017-000092
(JVN#96165722)
WordPress plugin "WP Booking System" vulnerable to cross-site scripting 6.1 5.0 2017/05/16 2018/01/17
JVNDB-2017-000074
(JVN#54762089)
WordPress plugin "Booking Calendar" vulnerable to cross-site scripting 6.1 5.0 2017/04/20 2017/06/01
JVNDB-2017-000073
(JVN#18739672)
WordPress plugin "Booking Calendar" vulnerable to directory traversal 5.8 5.0 2017/04/20 2017/06/01
JVNDB-2017-000068
(JVN#77253951)
WordPress plugin "WP Statistics" vulnerable to cross-site scripting 6.1 5.0 2017/04/13 2017/06/01
JVNDB-2017-000067
(JVN#62392065)
WordPress plugin "WP Statistics" vulnerable to cross-site scripting 6.1 5.0 2017/04/13 2017/06/01
Results 1-100 of 133  1 2  next