Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
186791	4.3	警告	Mozilla Foundation	-	複数の Mozilla 製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1957	2012-12-14 18:12	2012-07-17	Show	GitHub Exploit DB Packet Storm

186792	6.8	警告	Mozilla Foundation	-	複数の Mozilla 製品におけるアドレスバーを偽造される脆弱性	CWE-Other その他	CVE-2012-1955	2012-12-14 18:11	2012-07-17	Show	GitHub Exploit DB Packet Storm

186793	10	危険	Mozilla Foundation	-	複数の Mozilla 製品の nsDocument::AdoptNode 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2012-1954	2012-12-14 18:11	2012-07-17	Show	GitHub Exploit DB Packet Storm

186794	9.3	危険	Mozilla Foundation	-	複数の Mozilla 製品の ElementAnimations::EnsureStyleRuleFor 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2012-1953	2012-12-14 18:10	2012-07-17	Show	GitHub Exploit DB Packet Storm

186795	9.3	危険	Mozilla Foundation	-	複数の Mozilla 製品の nsTableFrame::InsertFrames 関数における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2012-1952	2012-12-14 18:09	2012-07-17	Show	GitHub Exploit DB Packet Storm

186796	10	危険	Mozilla Foundation	-	複数の Mozilla 製品の nsSMILTimeValueSpec::IsEventBased 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2012-1951	2012-12-14 18:07	2012-07-17	Show	GitHub Exploit DB Packet Storm

186797	9.3	危険	Mozilla Foundation	-	複数の Mozilla 製品のブラウザエンジンにおけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2012-1948	2012-12-14 18:07	2012-07-17	Show	GitHub Exploit DB Packet Storm

186798	10	危険	Mozilla Foundation	-	複数の Mozilla 製品の WebGL サブシステムにおける任意のコードを実行される脆弱性	CWE-189 数値処理の問題	CVE-2012-5838	2012-12-14 18:02	2012-11-20	Show	GitHub Exploit DB Packet Storm

186799	6.8	警告	Mozilla Foundation	-	Mozilla Firefox の Web 開発ツールバーにおけるクロスサイトスクリプティングの脆弱性	CWE-94 コード・インジェクション	CVE-2012-5837	2012-12-14 18:01	2012-11-20	Show	GitHub Exploit DB Packet Storm

186800	10	危険	Mozilla Foundation	-	複数の Mozilla 製品における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2012-5836	2012-12-14 17:59	2012-11-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 25, 2025, 4:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
171	7.3	HIGH Network	-	-	The The Custom Post Type Date Archives plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 2.7.1. This is due to the software allowing users to e…	CWE-94 Code Injection	CVE-2025-1510	2025-02-22 13:15	2025-02-22	Show	GitHub Exploit DB Packet Storm

172	7.3	HIGH Network	-	-	The The Show Me The Cookies plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 1.0. This is due to the software allowing users to execute an act…	CWE-94 Code Injection	CVE-2025-1509	2025-02-22 13:15	2025-02-22	Show	GitHub Exploit DB Packet Storm

173	7.2	HIGH Network	-	-	The Mambo Importer plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 1.0 via deserialization of untrusted input via the $data parameter in the fImportMe…	CWE-502 Deserialization of Untrusted Data	CVE-2024-13899	2025-02-22 13:15	2025-02-22	Show	GitHub Exploit DB Packet Storm

174	4.3	MEDIUM Network	-	-	The WP Job Portal – A Complete Recruitment System for Company or Job Board website plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 2.2.8 v…	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2024-13873	2025-02-22 13:15	2025-02-22	Show	GitHub Exploit DB Packet Storm

175	-		-	-	Rejected reason: This CVE ID is Rejected because the issue was not a vulnerability. The data field reported is not attacker controlled.	-	CVE-2023-4261	2025-02-22 12:15	2025-02-22	Show	GitHub Exploit DB Packet Storm

176	5.3	MEDIUM Network	-	-	IBM Watson Query on Cloud Pak for Data 4.0.0 through 4.0.9, 4.5.0 through 4.5.3, 4.6.0 through 4.6.6, 4.7.0 through 4.7.4, and 4.8.0 through 4.8.7 could allow unauthorized data access from a remote d…	CWE-269 Improper Privilege Management	CVE-2024-22341	2025-02-22 10:15	2025-02-22	Show	GitHub Exploit DB Packet Storm

177	-		-	-	Exim 4.98 before 4.98.1, when SQLite hints and ETRN serialization are used, allows remote SQL injection.	-	CVE-2025-26794	2025-02-22 10:15	2025-02-21	Show	GitHub Exploit DB Packet Storm

178	3.3	LOW Local	-	-	IBM Security Verify Bridge Directory Sync 1.0.1 through 1.0.12, IBM Security Verify Gateway for Windows Login 1.0.1 through 1.0.10, and IBM Security Verify Gateway for Radius 1.0.1 through 1.0.11 s…	CWE-532 Inclusion of Sensitive Information in Log Files	CVE-2024-45674	2025-02-22 09:15	2025-02-22	Show	GitHub Exploit DB Packet Storm

179	-		-	-	solid-js is a declarative, efficient, and flexible JavaScript library for building user interfaces. In affected versions Inserts/JSX expressions inside illegal inlined JSX fragments lacked escaping, …	CWE-79 CWE-116 Cross-site Scripting Improper Encoding or Escaping of Output	CVE-2025-27109	2025-02-22 07:15	2025-02-22	Show	GitHub Exploit DB Packet Storm

180	-		-	-	dom-expressions is a Fine-Grained Runtime for Performant DOM Rendering. In affected versions the use of javascript's `.replace()` opens up to potential Cross-site Scripting (XSS) vulnerabilities with…	CWE-79 CWE-116 Cross-site Scripting Improper Encoding or Escaping of Output	CVE-2025-27108	2025-02-22 07:15	2025-02-22	Show	GitHub Exploit DB Packet Storm