How to use

JVN iPedia Japanese Version

Database Search

Keyword search:   How to use Search
With Synonym:

Vendor:
Product:
Date Public: /  -  /
Date Last Updated: /  -  /
CVSS Severity
(CVSSv3):
CVSS Severity
(CVSSv2):
CWE:
   What is CWE?
※「Vendor/Product search」button is available only in the Internet Explorer 11 and Microsoft Edge(ie mode).
Results 1-100 of 110  1 2  next
ID desc Title CVSSv3 CVSSv2 Date
Public
Date Last
Updated
JVNDB-2022-000038
(JVN#15241647)
WordPress plugin "WP Statistics" vulnerable to cross-site scripting 6.1 2.6 2022/05/24 2022/05/24
JVNDB-2022-000026
(JVN#31606885)
WordPress Plugin "MicroPayments - Paid Author Subscriptions, Content, Downloads, Membership" vulnerable to cross-site request forgery 4.3 2.6 2022/04/15 2022/04/15
JVNDB-2022-000023
(JVN#42543427)
WordPress Plugin "Advanced Custom Fields" vulnerable to missing authorization 6.5 4.0 2022/03/30 2022/03/30
JVNDB-2022-000002
(JVN#72788165)
Multiple vulnerabilities in WordPress Plugin "Quiz And Survey Master" 5.4 4.0 2022/01/12 2022/01/12
JVNDB-2021-000109
(JVN#09136401)
Multiple missing authorization vulnerabilities in WordPress Plugin "Advanced Custom Fields" 4.3 4.0 2021/12/02 2022/02/18
JVNDB-2021-000104
(JVN#93562098)
WordPress Plugin "Browser and Operating System Finder" vulnerable to cross-site request forgery 4.3 2.6 2021/11/25 2021/11/25
JVNDB-2021-000103
(JVN#85492429)
WordPress Plugin "Push Notifications for WordPress (Lite)" vulnerable to cross-site request forgery 4.3 2.6 2021/11/16 2021/11/16
JVNDB-2021-000094
(JVN#68066589)
WordPress Plugin "Booking Package - Appointment Booking Calendar System" vulnerable to cross-site scripting 6.1 4.3 2021/11/10 2021/11/10
JVNDB-2021-000086
(JVN#29428319)
WordPress Plugin "OG Tags" vulnerable to cross-site request forgery 4.3 2.6 2021/09/28 2021/09/28
JVNDB-2021-000075
(JVN#65388002)
WordPress Plugin "Quiz And Survey Master" vulnerable to cross-site scripting 6.1 2.6 2021/08/10 2021/08/10
JVNDB-2021-000066
(JVN#89054582)
WordPress Plugin "Software License Manager" vulnerable to cross-site request forgery 4.3 2.6 2021/07/08 2021/07/08
JVNDB-2021-000065
(JVN#48413554)
WordPress Plugin "WordPress Meta Data Filter & Taxonomies Filter" vulnerable to cross-site request forgery 4.3 2.6 2021/07/08 2021/07/08
JVNDB-2021-000063
(JVN#42880365)
WordPress Plugin "WordPress Email Template Designer - WP HTML Mail" vulnerable to cross-site request forgery 4.3 2.6 2021/07/06 2021/07/06
JVNDB-2021-000062
(JVN#91372527)
WordPress Plugin "WPCS - WordPress Currency Switcher" vulnerable to cross-site request forgery 4.3 2.6 2021/07/06 2021/07/06
JVNDB-2021-000056
(JVN#63066062)
WordPress Plugin "WordPress Popular Posts" vulnerable to cross-site scripting 5.4 3.5 2021/06/23 2021/06/30
JVNDB-2021-000055
(JVN#93799513)
WordPress plugin "Fudousan plugin" series vulnerable to cross-site scripting 5.4 4.0 2021/06/22 2021/06/22
JVNDB-2021-000047
(JVN#70566757)
WordPress plugin "Welcart e-Commerce" vulnerable to cross-site scripting 6.1 4.3 2021/06/11 2021/06/11
JVNDB-2021-000034
(JVN#35240327)
WordPress plugin "WP Fastest Cache" vulnerable to directory traversal 3.8 5.5 2021/04/27 2021/04/27
JVNDB-2021-000025
(JVN#08191557)
WordPress plugin "Paid Memberships Pro" vulnerable to SQL injection 6.3 6.5 2021/03/17 2021/03/17
JVNDB-2021-000012
(JVN#50470170)
WordPress Plugin "Name Directory" vulnerable to cross-site request forgery 4.3 2.6 2021/02/05 2021/02/05
JVNDB-2020-000069
(JVN#31425618)
Multiple vulnerabilities in WordPress Plugin "Simple Download Monitor" 5.4 5.8 2020/10/21 2020/10/21
JVNDB-2020-000068
(JVN#92404841)
WordPress Plugin "Live Chat - Live support" vulnerable to cross-site request forgery 4.3 2.6 2020/10/14 2020/10/14
JVNDB-2020-000046
(JVN#05502028)
WordPress Plugin "Social Sharing Plugin" vulnerable to cross-site request forgery 4.3 2.6 2020/07/22 2020/07/22
JVNDB-2020-000033
(JVN#20248858)
WordPress Plugin "Paid Memberships Pro" vulnerable to SQL injection 4.7 6.5 2020/05/19 2020/05/19
JVNDB-2020-000012
(JVN#89259622)
WordPress Plugin "Easy Property Listings" vulnerable to cross-site request forgery 4.3 2.6 2020/02/18 2020/02/18
JVNDB-2019-000075
(JVN#26847507)
Multiple vulnerabilities in "Custom Body Class" 6.1 2.6 2019/12/12 2019/12/12
JVNDB-2019-000070
(JVN#26838191)
WordPress Plugin "WP Spell Check" vulnerable to cross-site request forgery 4.3 2.6 2019/11/26 2019/11/26
JVNDB-2019-000064
(JVN#14776551)
Multiple vulnerabilities in WordPress Plugin "wpDataTables Lite" 7.2 6.5 2019/10/11 2019/10/16
JVNDB-2019-000049
(JVN#92510087)
WordPress Plugin "Category Specific RSS feed Subscription" vulnerable to cross-site request forgery 4.3 2.6 2019/07/18 2019/10/08
JVNDB-2019-000048
(JVN#48981892)
WordPress Plugin "WordPress Ultra Simple Paypal Shopping Cart" vulnerable to cross-site request forgery 4.3 2.6 2019/07/16 2019/10/08
JVNDB-2019-000042
(JVN#29933378)
WordPress Plugin "Custom CSS Pro" vulnerable to cross-site request forgery 4.3 2.6 2019/06/24 2019/10/01
JVNDB-2019-000041
(JVN#49575131)
WordPress Plugin "HTML5 Maps" vulnerable to cross-site request forgery 4.3 2.6 2019/06/24 2019/10/01
JVNDB-2019-000039
(JVN#31406910)
WordPress Plugin "Related YouTube Videos" vulnerable to cross-site request forgery 4.3 2.6 2019/06/17 2019/10/04
JVNDB-2019-000038
(JVN#88804335)
WordPress Plugin "Personalized WooCommerce Cart Page" vulnerable to cross-site request forgery 4.3 2.6 2019/06/19 2019/10/04
JVNDB-2019-000036
(JVN#80925867)
WordPress Plugin "Contest Gallery" vulnerable to cross-site request forgery 4.3 2.6 2019/06/12 2019/10/04
JVNDB-2019-000035
(JVN#96988995)
Multiple vulnerabilities in WordPress Plugin "Online Lesson Booking" 6.1 2.6 2019/06/10 2019/10/02
JVNDB-2019-000034
(JVN#95685939)
Multiple vulnerabilities in WordPress Plugin "Attendance Manager" 6.1 2.6 2019/06/10 2019/10/01
JVNDB-2019-000030
(JVN#88962935)
Multiple vulnerabilities in WordPress Plugin "Zoho SalesIQ" 6.1 2.6 2019/05/31 2019/10/01
JVNDB-2019-000028
(JVN#33652328)
WordPress plugin "WP Open Graph" vulnerable to cross-site request forgery 4.3 2.6 2019/05/23 2019/10/01
JVNDB-2019-000016
(JVN#97656108)
WordPress plugin "Smart Forms" vulnerable to cross-site request forgery 4.3 2.6 2019/02/28 2019/09/27
JVNDB-2019-000011
(JVN#83501605)
WordPress plugin "FormCraft" vulnerable to cross-site request forgery 4.3 2.6 2019/02/26 2019/09/27
JVNDB-2019-000001
(JVN#58010349)
WordPress plugin "spam-byebye" vulnerable to cross-site scripting 6.1 2.6 2019/01/10 2019/08/28
JVNDB-2018-000135
(JVN#27052429)
WordPress plugin "Google XML Sitemaps" vulnerable to cross-site scripting 4.8 4.0 2018/12/25 2019/08/27
JVNDB-2018-000117
(JVN#85760090)
Multiple vulnerabilities in WordPress plugin "LearnPress" 7.2 6.5 2018/11/09 2019/08/27
JVNDB-2018-000115
(JVN#75738023)
WordPress plugin "Event Calendar WD" vulnerable to cross-site scripting 5.4 4.0 2018/11/02 2019/08/27
JVNDB-2018-000078
(JVN#70246549)
WordPress plugin "FV Flowplayer Video Player" vulnerable to cross-site scripting 6.1 2.6 2018/07/17 2019/07/25
JVNDB-2018-000059
(JVN#60978548)
WordPress plugin "Site Reviews" vulnerable to cross-site scripting 6.1 5.0 2018/05/28 2019/07/02
JVNDB-2018-000058
(JVN#16471686)
WordPress plugin "Email Subscribers & Newsletters" vulnerable to cross-site scripting 6.1 2.6 2018/05/28 2019/07/02
JVNDB-2018-000045
(JVN#28804532)
Multiple vulnerabilities in WordPress plugin "Ultimate Member" 7.2 6.4 2018/05/10 2018/08/30
JVNDB-2018-000040
(JVN#08386386)
WordPress plugin "Open Graph for Facebook, Google+ and Twitter Card Tags" vulnerable to cross-site scripting 6.1 2.6 2018/04/27 2018/08/30
JVNDB-2018-000039
(JVN#61081552)
WordPress plugin "PixelYourSite" vulnerable to cross-site scripting 6.1 2.6 2018/04/27 2018/08/30
JVNDB-2018-000038
(JVN#01040170)
WordPress plugin "WP Google Map Plugin" vulnerable to cross-site scripting 6.1 2.6 2018/04/27 2018/08/30
JVNDB-2018-000037
(JVN#85531148)
WordPress plugin "Events Manager" vulnerable to cross-site scripting 5.4 3.5 2018/04/27 2018/08/30
JVNDB-2018-000023
(JVN#60032768)
WordPress plugin "WP All Import" vulnerable to cross-site scripting 6.1 2.6 2018/03/08 2018/06/14
JVNDB-2018-000022
(JVN#33527174)
WordPress plugin "WP All Import" vulnerable to cross-site scripting 6.1 4.3 2018/03/08 2018/06/14
JVNDB-2018-000010
(JVN#99312352)
WordPress plugin "MTS Simple Booking C" vulnerable to cross-site scripting 6.1 4.3 2018/02/02 2018/04/11
JVNDB-2018-000005
(JVN#30636823)
WordPress plugin "WP Retina 2x" vulnerable to cross-site scripting 6.1 2.6 2018/01/30 2018/04/11
JVNDB-2017-000236
(JVN#05398317)
WordPress plugin "TablePress" vulnerable to improper restriction of XML external entity (XXE) references 5.0 4.0 2017/11/14 2018/03/07
JVNDB-2017-000208
(JVN#58559719)
WordPress plugin "BackupGuard" vulnerable to cross-site scripting 6.1 2.6 2017/08/24 2018/02/28
JVNDB-2017-000182
(JVN#31459091)
WordPress plugin "Simple Custom CSS and JS" vulnerable to cross-site scripting 6.1 2.6 2017/07/24 2018/02/14
JVNDB-2017-000181
(JVN#92921024)
WordPress plugin "Popup Maker" vulnerable to cross-site scripting 6.1 2.6 2017/07/24 2018/01/24
JVNDB-2017-000164
(JVN#63249051)
WordPress plugin "Shortcodes Ultimate" vulnerable to directory traversal 5.0 4.0 2017/07/06 2018/02/07
JVNDB-2017-000159
(JVN#39819446)
WordPress plugin "Responsive Lightbox" vulnerable to cross-site scripting 6.1 2.6 2017/07/04 2018/02/14
JVNDB-2017-000140
(JVN#73550134)
WordPress plugin "Event Calendar WD" vulnerable to cross-site scripting 6.1 2.6 2017/06/20 2018/02/14
JVNDB-2017-000139
(JVN#56787058)
WordPress plugin "WP Job Manager" fails to restrict access permissions 5.3 5.0 2017/06/15 2017/06/15
JVNDB-2017-000132
(JVN#51355647)
WordPress plugin "WP-Members" vulnerable to cross-site scripting 6.1 2.6 2017/06/13 2018/02/07
JVNDB-2017-000128
(JVN#79738260)
Open redirect vulnerability in WordPress plugin "WordPress Download Manager" 4.7 2.6 2017/06/13 2018/01/24
JVNDB-2017-000127
(JVN#79738260)
Cross-site scripting vulnerability in WordPress plugin "WordPress Download Manager" 6.1 4.3 2017/06/13 2018/01/24
JVNDB-2017-000115
(JVN#98617234)
WordPress plugin "Multi Feed Reader" vulnerable to SQL injection 6.3 6.5 2017/06/06 2018/01/17
JVNDB-2017-000103
(JVN#70951878)
WordPress plugin "WP Live Chat Support" vulnerable to cross-site scripting 6.1 2.6 2017/06/01 2017/11/27
JVNDB-2017-000094
(JVN#24834813)
Multiple BestWebSoft WordPress plugins vulnerable to cross-site scripting 6.1 2.6 2017/05/16 2017/11/27
JVNDB-2017-000093
(JVN#70411623)
WordPress plugin "MaxButtons" vulnerable to cross-site scripting 6.1 2.6 2017/05/16 2018/01/17
JVNDB-2017-000092
(JVN#96165722)
WordPress plugin "WP Booking System" vulnerable to cross-site scripting 6.1 5.0 2017/05/16 2018/01/17
JVNDB-2017-000074
(JVN#54762089)
WordPress plugin "Booking Calendar" vulnerable to cross-site scripting 6.1 5.0 2017/04/20 2017/06/01
JVNDB-2017-000073
(JVN#18739672)
WordPress plugin "Booking Calendar" vulnerable to directory traversal 5.8 5.0 2017/04/20 2017/06/01
JVNDB-2017-000068
(JVN#77253951)
WordPress plugin "WP Statistics" vulnerable to cross-site scripting 6.1 5.0 2017/04/13 2017/06/01
JVNDB-2017-000067
(JVN#62392065)
WordPress plugin "WP Statistics" vulnerable to cross-site scripting 6.1 5.0 2017/04/13 2017/06/01
JVNDB-2017-000062
(JVN#17633442)
WordPress plugin "WP Statistics" vulnerable to cross-site scripting 6.1 2.6 2017/04/10 2017/06/01
JVNDB-2017-000050
(JVN#55294532)
WordPress plugin "YOP Poll" vulnerable to cross-site scripting 5.4 4.0 2017/03/23 2017/06/01
JVNDB-2016-000210
(JVN#14567604)
SQL injection vulnerability in WordPress plugin WP-OliveCart 4.7 6.5 2016/10/20 2018/01/17
JVNDB-2016-000209
(JVN#14567604)
Cross-site request forgery vulnerability in WordPress plugin WP-OliveCart 4.3 2.6 2016/10/20 2018/01/17
JVNDB-2016-000208
(JVN#14567604)
Cross-site scripting vulnerability in WordPress plugin WP-OliveCart 6.1 4.3 2016/10/20 2018/01/17
JVNDB-2016-000125
(JVN#13582657)
WordPress plugin "Nofollow Links" vulnerable to cross-site scripting 6.1 2.6 2016/07/20 2016/08/05
JVNDB-2016-000118
(JVN#61578437)
WordPress plugin "Welcart e-Commerce" vulnerable to session management 6.5 6.4 2016/06/24 2016/06/28
JVNDB-2016-000117
(JVN#55826471)
WordPress plugin "Welcart e-Commerce" vulnerable to cross-site scripting 6.1 4.3 2016/06/24 2016/06/28
JVNDB-2016-000116
(JVN#95082904)
WordPress plugin "Welcart e-Commerce" vulnerable to cross-site scripting 6.1 4.3 2016/06/24 2016/06/29
JVNDB-2016-000115
(JVN#47363774)
WordPress plugin "Welcart e-Commerce" vulnerable to PHP object injection 5.6 6.8 2016/06/24 2016/06/29
JVNDB-2016-000071
(JVN#26026353)
WordPress plugin "Markdown on Save Improved" vulnerable to cross-site scripting 5.4 4.0 2016/05/25 2016/06/08
JVNDB-2016-000064
(JVN#44657371)
WordPress plugin "Ninja Forms" vulnerable to PHP object injection 5.6 6.8 2016/05/13 2016/06/01
JVNDB-2016-000034
(JVN#86517621)
WordPress plugin "WP Favorite Posts" vulnerable to cross-site scripting 4.7 2.6 2016/03/24 2016/03/29
JVNDB-2015-000200
(JVN#43344629)
Welcart vulnerable to SQL injection 6.3 6.5 2015/12/17 2016/01/07
JVNDB-2015-000103
(JVN#97971874)
Welcart vulnerable to cross-site scripting - 2.6 2015/07/24 2015/07/28
JVNDB-2015-000046
(JVN#75615300)
All in One SEO Pack information management vulnerability - 5.0 2015/03/31 2015/04/07
JVNDB-2015-000044
(JVN#97281747)
WordPress theme flashy vulnerable to cross-site scripting - 4.3 2015/03/26 2015/04/07
JVNDB-2015-000038
(JVN#87204433)
All In One WP Security & Firewall vulnerable to cross-site request forgery - 2.6 2015/03/06 2015/03/11
JVNDB-2015-000037
(JVN#30832515)
All In One WP Security & Firewall vulnerable to SQL injection - 5.1 2015/03/06 2015/03/11
JVNDB-2015-000030
(JVN#55063777)
Google Captcha (reCAPTCHA) by BestWebSoft vulnerable to CAPTCHA authentication bypass - 5.0 2015/03/03 2015/03/04
JVNDB-2015-000029
(JVN#93727681)
BestWebSoft Captcha plugin vulnerable to CAPTCHA authentication bypass - 5.0 2015/03/03 2015/03/04
JVNDB-2014-007612
(JVN#92828286)
Welcart vulnerable to SQL injection - 6.5 2014/03/03 2015/07/24
JVNDB-2014-000112
(JVN#87863382)
N-Media file uploader vulnerability in handling uploaded files - 6.5 2014/09/25 2014/09/29
Results 1-100 of 110  1 2  next