Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
187691 4 警告 オラクル - Oracle Financial Services の Oracle FLEXCUBE Universal Banking における BASE の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-3141 2012-10-19 14:40 2012-10-16 Show GitHub Exploit DB Packet Storm
187692 4.4 警告 オラクル - Oracle Solaris 10 における inetd の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-5095 2012-10-19 11:47 2012-10-16 Show GitHub Exploit DB Packet Storm
187693 1.7 注意 オラクル - Oracle Solaris 10 および 11 における Kernel の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-3215 2012-10-19 11:47 2012-10-16 Show GitHub Exploit DB Packet Storm
187694 4.7 警告 オラクル - Oracle Solaris 10 および 11 における Kernel の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-3212 2012-10-19 11:46 2012-10-16 Show GitHub Exploit DB Packet Storm
187695 4.6 警告 オラクル - Oracle Solaris 10 および 11 における Kernel/System Call の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-3211 2012-10-19 11:45 2012-10-16 Show GitHub Exploit DB Packet Storm
187696 7.8 危険 オラクル - Oracle Solaris 11 における Kernel の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-3210 2012-10-19 11:45 2012-10-16 Show GitHub Exploit DB Packet Storm
187697 5.6 警告 オラクル - Oracle Solaris 10 および 11 における Logical Domain の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-3209 2012-10-19 11:44 2012-10-16 Show GitHub Exploit DB Packet Storm
187698 4.9 警告 オラクル - Oracle Solaris 10 および 11 における Kernel/RCTL の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-3208 2012-10-19 11:43 2012-10-16 Show GitHub Exploit DB Packet Storm
187699 4.9 警告 オラクル - Oracle Solaris における Kernel の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-3207 2012-10-19 11:42 2012-10-16 Show GitHub Exploit DB Packet Storm
187700 2.1 注意 オラクル - Oracle SPARC および Netra SPARC T シリーズサーバ用 Oracle Sun Products Suite SysFW における脆弱性 CWE-noinfo
情報不足 		CVE-2012-3206 2012-10-19 11:41 2012-10-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 4, 2025, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
181 7.2 HIGH
Network 		visualmodo borderless The Borderless – Widgets, Elements, Templates and Toolkit for Elementor & Gutenberg plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 1.5.9 via the 'wr… CWE-94
Code Injection 		CVE-2024-11600 2025-02-1 05:02 2025-01-30 Show GitHub Exploit DB Packet Storm
182 4.3 MEDIUM
Network 		seventhqueen typer_core The Typer Core plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.9.6 via the 'elementor-template' shortcode due to insufficient restrictions on which … NVD-CWE-noinfo
CVE-2024-12102 2025-02-1 05:01 2025-01-30 Show GitHub Exploit DB Packet Storm
183 6.1 MEDIUM
Network 		wpmessiah ai_image_alt_text_generator_for_wp The Ai Image Alt Text Generator for WP plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'page' parameter in all versions up to, and including, 1.0.2 due to insufficient in… CWE-79
Cross-site Scripting 		CVE-2024-12177 2025-02-1 04:49 2025-01-30 Show GitHub Exploit DB Packet Storm
184 7.5 HIGH
Network 		wpmessiah safe_ai_malware_protection_for_wp The Safe Ai Malware Protection for WP plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the export_db() function in all versions up to, and includ… CWE-862
 Missing Authorization 		CVE-2024-12269 2025-02-1 04:44 2025-01-30 Show GitHub Exploit DB Packet Storm
185 6.5 MEDIUM
Network 		villatheme w2s The W2S – Migrate WooCommerce to Shopify plugin for WordPress is vulnerable to Arbitrary File Read in all versions up to, and including, 1.2.1 via the 'viw2s_view_log' AJAX action. This makes it poss… NVD-CWE-noinfo
CVE-2024-12861 2025-02-1 04:01 2025-01-30 Show GitHub Exploit DB Packet Storm
186 5.4 MEDIUM
Network 		proxymis html5_chat The HTML5 chat plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'HTML5CHAT' shortcode in all versions up to, and including, 1.04 due to insufficient input sanitizati… CWE-79
Cross-site Scripting 		CVE-2024-12451 2025-02-1 03:55 2025-01-30 Show GitHub Exploit DB Packet Storm
187 5.4 MEDIUM
Network 		wpdispensary wp_dispensary The WP Dispensary plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'wpd_menu' shortcode in all versions up to, and including, 4.5.0 due to insufficient input sanitiz… CWE-79
Cross-site Scripting 		CVE-2024-12444 2025-02-1 03:45 2025-01-30 Show GitHub Exploit DB Packet Storm
188 6.1 MEDIUM
Network 		shoalsummitsolutions team_rosters The Team Rosters plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘tab’ parameter in all versions up to, and including, 4.7 due to insufficient input sanitization and outp… CWE-79
Cross-site Scripting 		CVE-2024-12320 2025-02-1 03:25 2025-01-30 Show GitHub Exploit DB Packet Storm
189 6.1 MEDIUM
Network 		bowo system_dashboard The System Dashboard plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the Filename parameter in all versions up to, and including, 2.8.15 due to insufficient input sanitizatio… CWE-79
Cross-site Scripting 		CVE-2024-12299 2025-02-1 03:22 2025-01-30 Show GitHub Exploit DB Packet Storm
190 4.3 MEDIUM
Network 		ecpay ecpay_ecommerce_for_woocommerce The ECPay Ecommerce for WooCommerce plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the 'clear_ecpay_debug_log' AJAX action in all versions up to,… CWE-862
 Missing Authorization 		CVE-2024-13652 2025-02-1 03:21 2025-01-30 Show GitHub Exploit DB Packet Storm