Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
186961 7.5 危険 Google - Android 用 QuIC Diagnostics カーネルモードドライバにおける整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2012-4221 2012-12-3 15:21 2012-11-15 Show GitHub Exploit DB Packet Storm
186962 7.5 危険 Google - Android 用 QuIC Diagnostics カーネルモードドライバにおける任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2012-4220 2012-12-3 15:21 2012-11-15 Show GitHub Exploit DB Packet Storm
186963 6.4 警告 Django Software Foundation - Django における任意の URL が表示される脆弱性 CWE-20
不適切な入力確認 		CVE-2012-4520 2012-11-30 18:16 2012-10-17 Show GitHub Exploit DB Packet Storm
186964 4.3 警告 ViewVC - ViewVC の lib/viewvc.py におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-4533 2012-11-30 18:09 2012-10-24 Show GitHub Exploit DB Packet Storm
186965 5.4 警告 (複数のベンダ) - Android OS を搭載した複数の端末におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		- 2012-11-30 17:59 2012-11-14 Show GitHub Exploit DB Packet Storm
186966 10 危険 Autonomy - Autonomy Keyview IDOL ライブラリに複数の脆弱性 - - 2012-11-30 17:52 2012-11-21 Show GitHub Exploit DB Packet Storm
186967 1.2 注意 Munin - Munin 用 qmailscan プラグインにおける任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2012-2103 2012-11-30 17:50 2012-08-26 Show GitHub Exploit DB Packet Storm
186968 5 警告 Apache Software Foundation - Apache POI におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2012-0213 2012-11-30 15:09 2012-08-7 Show GitHub Exploit DB Packet Storm
186969 5 警告 日本電気
アップル
サイバートラスト株式会社
サン・マイクロシステムズ
ヒューレット・パッカード
VMware
日立
レッドハット		 - Sun JRE で使用している Apache Xerces2 Java におけるサービス運用妨害 (DoS) の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-2625 2012-11-30 14:55 2009-08-5 Show GitHub Exploit DB Packet Storm
186970 4.3 警告 オラクル - Oracle OpenSSO における認証の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-0079 2012-11-30 14:51 2012-01-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 26, 2025, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
321 7.2 HIGH
Network 		- - The SMTP for SendGrid – YaySMTP plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including, 1.3.1 due to insufficient input sanitization and output escaping. T… CWE-79
Cross-site Scripting 		CVE-2025-0918 2025-02-22 22:15 2025-02-22 Show GitHub Exploit DB Packet Storm
322 - - - In the Linux kernel, the following vulnerability has been resolved: usb: cdc-acm: Check control transfer buffer size before access If the first fragment is shorter than struct usb_cdc_notification,… - CVE-2025-21704 2025-02-22 19:15 2025-02-22 Show GitHub Exploit DB Packet Storm
323 7.5 HIGH
Network 		- - The IP2Location Country Blocker plugin for WordPress is vulnerable to Regular Information Exposure in all versions up to, and including, 2.38.8 due to missing capability checks on the admin_init() fu… CWE-285
Improper Authorization 		CVE-2025-1361 2025-02-22 18:15 2025-02-22 Show GitHub Exploit DB Packet Storm
324 6.4 MEDIUM
Network 		- - The Rife Elementor Extensions & Templates plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Writing Effect Headline shortcode in all versions up to, and including, 1.… CWE-79
Cross-site Scripting 		CVE-2024-13564 2025-02-22 18:15 2025-02-22 Show GitHub Exploit DB Packet Storm
325 5.3 MEDIUM
Network 		- - The Post Grid and Gutenberg Blocks – ComboBlocks plugin for WordPress is vulnerable to unauthorized order creation in all versions up to, and including, 2.3.5. This is due to insufficient verificatio… CWE-20
 Improper Input Validation  		CVE-2024-13798 2025-02-22 14:15 2025-02-22 Show GitHub Exploit DB Packet Storm
326 7.5 HIGH
Network 		- - The LTL Freight Quotes – Purolator Edition plugin for WordPress is vulnerable to SQL Injection via the 'dropship_edit_id' and 'edit_id' parameters in all versions up to, and including, 2.2.3 due to i… CWE-89
SQL Injection 		CVE-2024-13474 2025-02-22 14:15 2025-02-22 Show GitHub Exploit DB Packet Storm
327 6.1 MEDIUM
Network 		- - The Pago por Redsys plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'Ds_MerchantParameters' parameter in all versions up to, and including, 1.0.12 due to insufficient inp… CWE-79
Cross-site Scripting 		CVE-2024-12467 2025-02-22 14:15 2025-02-22 Show GitHub Exploit DB Packet Storm
328 6.4 MEDIUM
Network 		- - The Post Form – Registration Form – Profile Form for User Profiles – Frontend Content Forms for User Submissions (UGC) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin… CWE-79
Cross-site Scripting 		CVE-2024-12038 2025-02-22 14:15 2025-02-22 Show GitHub Exploit DB Packet Storm
329 7.3 HIGH
Network 		- - The The Custom Post Type Date Archives plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 2.7.1. This is due to the software allowing users to e… CWE-94
Code Injection 		CVE-2025-1510 2025-02-22 13:15 2025-02-22 Show GitHub Exploit DB Packet Storm
330 7.3 HIGH
Network 		- - The The Show Me The Cookies plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 1.0. This is due to the software allowing users to execute an act… CWE-94
Code Injection 		CVE-2025-1509 2025-02-22 13:15 2025-02-22 Show GitHub Exploit DB Packet Storm