Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
187801	9.3	危険	アップル	-	複数の Apple 製品で使用される WebKit における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2012-3599	2012-10-16 12:09	2012-07-25	Show	GitHub Exploit DB Packet Storm

187802	6.8	警告	アップル	-	複数の Apple 製品で使用される WebKit における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2012-3624	2012-10-16 12:04	2012-09-13	Show	GitHub Exploit DB Packet Storm

187803	6.8	警告	アップル	-	複数の Apple 製品で使用される WebKit における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2012-3617	2012-10-16 11:42	2012-09-13	Show	GitHub Exploit DB Packet Storm

187804	6.8	警告	アップル	-	複数の Apple 製品で使用される WebKit における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2012-3614	2012-10-16 11:38	2012-09-13	Show	GitHub Exploit DB Packet Storm

187805	6.8	警告	アップル	-	複数の Apple 製品で使用される WebKit における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2012-3613	2012-10-16 11:35	2012-09-13	Show	GitHub Exploit DB Packet Storm

187806	6.8	警告	アップル	-	複数の Apple 製品で使用される WebKit における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2012-3612	2012-10-16 11:32	2012-09-13	Show	GitHub Exploit DB Packet Storm

187807	6.8	警告	アップル	-	複数の Apple 製品で使用される WebKit における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2012-3602	2012-10-16 11:28	2012-09-13	Show	GitHub Exploit DB Packet Storm

187808	6.8	警告	アップル	-	複数の Apple 製品で使用される WebKit における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2012-3601	2012-10-16 11:24	2012-09-13	Show	GitHub Exploit DB Packet Storm

187809	6.8	警告	アップル	-	複数の Apple 製品で使用される WebKit における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2012-3598	2012-10-16 11:21	2012-09-13	Show	GitHub Exploit DB Packet Storm

187810	6.8	警告	アップル PNG Development Group	-	libpng の pngset.c 内の png_set_text_2 関数におけるサービス運用妨害 (クラッシュ) の脆弱性	CWE-119 バッファエラー	CVE-2011-3048	2012-10-16 10:23	2012-05-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 26, 2025, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
831	4.3	MEDIUM Network	edmonsoft	read_more_\&_accordion	The Read More & Accordion plugin for WordPress is vulnerable to unauthorized modification and loss of data due to a missing capability check on the expmDeleteData() function in all versions up to, an…	CWE-862 Missing Authorization	CVE-2024-13639	2025-02-19 03:15	2025-02-13	Show	GitHub Exploit DB Packet Storm

832	-		-	-	Improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in agent-related functionality in Synology Active Backup for Business before 2.7.1-13234, 2.7.1-23234 and …	CWE-22 Path Traversal	CVE-2024-47264	2025-02-19 03:15	2025-02-13	Show	GitHub Exploit DB Packet Storm

833	-		-	-	The Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content WordPress plugin before 4.15.20 does not sanitise and escape some of its settings, which co…	-	CVE-2024-13120	2025-02-19 03:15	2025-02-13	Show	GitHub Exploit DB Packet Storm

834	-		-	-	The Chalet-Montagne.com Tools WordPress plugin through 2.7.8 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be…	-	CVE-2024-12586	2025-02-19 03:15	2025-02-13	Show	GitHub Exploit DB Packet Storm

835	-		-	-	Cross Site Scripting vulnerability in Daylight Studio Fuel CMS v.1.5.2 allows an attacker to escalate privileges via the /fuel/blocks/ and /fuel/pages components.	-	CVE-2024-57605	2025-02-19 03:15	2025-02-13	Show	GitHub Exploit DB Packet Storm

836	-		-	-	An issue in MaysWind ezBookkeeping 0.7.0 allows a remote attacker to escalate privileges via the token component.	-	CVE-2024-57604	2025-02-19 03:15	2025-02-13	Show	GitHub Exploit DB Packet Storm

837	-		-	-	Cross Site Scripting vulnerability in Alex Tselegidis EasyAppointments v.1.5.0 allows a remote attacker to execute arbitrary code via the legal_settings parameter.	-	CVE-2024-57601	2025-02-19 03:15	2025-02-13	Show	GitHub Exploit DB Packet Storm

838	-		-	-	An issue in the profile image upload function of LearnDash v6.7.1 allows attackers to cause a Denial of Service (DoS) via excessive file uploads.	-	CVE-2024-56940	2025-02-19 03:15	2025-02-13	Show	GitHub Exploit DB Packet Storm

839	-		-	-	An issue in Nothing Tech Nothing OS v.2.6 allows a local attacker to escalate privileges via the NtBpfService component.	-	CVE-2024-51440	2025-02-19 03:15	2025-02-13	Show	GitHub Exploit DB Packet Storm

840	-		-	-	An issue in Zertificon Z1 SecureMail Z1 SecureMail Gateway 4.44.2-7240-debian12 allows a remote attacker to obtain sensitive information via the /compose-pdf.xhtml?convid=[id] component.	-	CVE-2024-51123	2025-02-19 03:15	2025-02-13	Show	GitHub Exploit DB Packet Storm