Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
187621 6.8 警告 シマンテック - Symantec Ghost Solution Suite における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2012-0306 2012-10-22 13:26 2012-10-10 Show GitHub Exploit DB Packet Storm
187622 5.1 警告 GNOME Project - libgdata におけるユーザ名およびパスワードを取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2012-1177 2012-10-22 11:03 2012-08-26 Show GitHub Exploit DB Packet Storm
187623 5 警告 Ingy dot Net - Perl 用 YAML::LibYAML モジュールにおけるフォーマットストリングの脆弱性 CWE-134
書式文字列の問題 		CVE-2012-1152 2012-10-22 11:01 2012-09-9 Show GitHub Exploit DB Packet Storm
187624 2.1 注意 オラクル - Oracle Fusion Middleware の Oracle WebCenter Sites における ImagePicker の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-5065 2012-10-19 18:18 2012-10-16 Show GitHub Exploit DB Packet Storm
187625 10 危険 サン・マイクロシステムズ
オラクル		 - Oracle Fusion Middleware の Oracle JRockit における脆弱性 CWE-noinfo
情報不足 		CVE-2012-3202 2012-10-19 18:17 2012-10-16 Show GitHub Exploit DB Packet Storm
187626 4.3 警告 オラクル - Oracle Fusion Middleware の Oracle BI Publisher における Administration の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-3194 2012-10-19 18:12 2012-10-16 Show GitHub Exploit DB Packet Storm
187627 3.5 注意 オラクル - Oracle Fusion Middleware の Oracle BI Publisher における Administration の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-3193 2012-10-19 18:11 2012-10-16 Show GitHub Exploit DB Packet Storm
187628 4.9 警告 オラクル - Oracle Fusion Middleware の Oracle WebCenter Sites における Advanced UI の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-3186 2012-10-19 18:11 2012-10-16 Show GitHub Exploit DB Packet Storm
187629 4.9 警告 オラクル - Oracle Fusion Middleware の Oracle WebCenter Sites における Advanced UI の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-3185 2012-10-19 18:10 2012-10-16 Show GitHub Exploit DB Packet Storm
187630 4.3 警告 オラクル - Oracle Fusion Middleware の Oracle WebCenter Sites における Advanced UI の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-3184 2012-10-19 18:10 2012-10-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 6, 2025, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
221 6.4 MEDIUM
Network 		- - The SKT Blocks – Gutenberg based Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's skt-blocks/post-carousel block in all versions up to, and including, 1… New CWE-79
Cross-site Scripting 		CVE-2024-13733 2025-02-4 19:15 2025-02-4 Show GitHub Exploit DB Packet Storm
222 6.5 MEDIUM
Network 		- - The SocialV - Social Network and Community BuddyPress Theme theme for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the 'socialv_send_download_file' func… New CWE-862
 Missing Authorization 		CVE-2024-13529 2025-02-4 19:15 2025-02-4 Show GitHub Exploit DB Packet Storm
223 6.1 MEDIUM
Network 		- - The ShopSite plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.5.10. This is due to missing or incorrect nonce validation on a function. This ma… New CWE-352
 Origin Validation Error 		CVE-2024-13510 2025-02-4 19:15 2025-02-4 Show GitHub Exploit DB Packet Storm
224 6.5 MEDIUM
Network 		- - The DSGVO All in one for WP plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 4.6. This is due to missing or incorrect nonce validation in the use… New CWE-352
 Origin Validation Error 		CVE-2024-13356 2025-02-4 19:15 2025-02-4 Show GitHub Exploit DB Packet Storm
225 6.4 MEDIUM
Network 		- - The WPForms – Easy Form Builder for WordPress – Contact Forms, Payment Forms, Surveys, & More plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘fieldHTML’ parameter in all ve… New CWE-79
Cross-site Scripting 		CVE-2024-13403 2025-02-4 18:15 2025-02-4 Show GitHub Exploit DB Packet Storm
226 - - - Improper handling of input variables lead to multiple path traversal vulnerabilities in the Admiror Gallery extension for Joomla in version branch 4.x. New - CVE-2025-22205 2025-02-4 17:15 2025-02-4 Show GitHub Exploit DB Packet Storm
227 - - - Improper control of generation of code in the sourcerer extension for Joomla in versions before 11.0.0 lead to a remote code execution vulnerability. New - CVE-2025-22204 2025-02-4 17:15 2025-02-4 Show GitHub Exploit DB Packet Storm
228 - - - Improper privilege management in Samsung Find prior to SMR Feb-2025 Release 1 allows local privileged attackers to disable Samsung Find. New - CVE-2025-20907 2025-02-4 17:15 2025-02-4 Show GitHub Exploit DB Packet Storm
229 - - - Improper Export of Android Application Components in Settings prior to SMR Feb-2025 Release 1 allows local attackers to enable ADB. New - CVE-2025-20906 2025-02-4 17:15 2025-02-4 Show GitHub Exploit DB Packet Storm
230 - - - Out-of-bounds read and write in mPOS TUI trustlet prior to SMR Feb-2025 Release 1 allows local privileged attackers to read and write out-of-bounds memory. New - CVE-2025-20905 2025-02-4 17:15 2025-02-4 Show GitHub Exploit DB Packet Storm