Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
188411 10 危険 Mozilla Foundation - Mozilla Firefox におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2010-1988 2012-09-25 17:38 2010-05-20 Show GitHub Exploit DB Packet Storm
188412 5 警告 Mozilla Foundation - Mozilla Firefox におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-1987 2012-09-25 17:38 2010-05-20 Show GitHub Exploit DB Packet Storm
188413 5 警告 Mozilla Foundation - Mozilla Firefox におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-1986 2012-09-25 17:38 2010-05-20 Show GitHub Exploit DB Packet Storm
188414 2.1 注意 michael nichols - Drupal 用の Taxonomy Breadcrumb モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-1984 2012-09-25 17:38 2010-03-31 Show GitHub Exploit DB Packet Storm
188415 5 警告 joomlart - Joomla! 用の javoice コンポーネントにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-1982 2012-09-25 17:38 2010-05-19 Show GitHub Exploit DB Packet Storm
188416 2.1 注意 michael nichols - Drupal 用の Taxonomy Breadcrumb モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-1976 2012-09-25 17:38 2010-03-31 Show GitHub Exploit DB Packet Storm
188417 6.8 警告 ヒューレット・パッカード - HP OpenVMS における重要な情報を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2010-1973 2012-09-25 17:38 2010-07-12 Show GitHub Exploit DB Packet Storm
188418 9 危険 ヒューレット・パッカード - HPCA Enterprise Infrastructure のデフォルト設定におけるサービス運用妨害 (DoS) の脆弱性 CWE-16
環境設定 		CVE-2010-1972 2012-09-25 17:38 2010-07-12 Show GitHub Exploit DB Packet Storm
188419 6.8 警告 ヒューレット・パッカード - Windows 用の HP Insight Software Installer におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2010-1971 2012-09-25 17:38 2010-07-12 Show GitHub Exploit DB Packet Storm
188420 4.6 警告 ヒューレット・パッカード - Windows 用の HP Insight Software Installer における権限を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2010-1970 2012-09-25 17:38 2010-07-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 26, 2025, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
501 - - - Versions of Gliffy Online prior to versions 4.14.0-7 contains a Cross Site Request Forgery (CSRF) flaw. - CVE-2024-7141 2025-02-21 04:15 2025-02-21 Show GitHub Exploit DB Packet Storm
502 - - - OpenH264 is a free license codec library which supports H.264 encoding and decoding. A vulnerability in the decoding functions of OpenH264 codec library could allow a remote, unauthenticated attacker… CWE-122
Heap-based Buffer Overflow 		CVE-2025-27091 2025-02-21 03:15 2025-02-21 Show GitHub Exploit DB Packet Storm
503 - - - Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. - CVE-2025-1258 2025-02-21 03:15 2025-02-21 Show GitHub Exploit DB Packet Storm
504 - - - An issue was discovered in Atos Eviden BullSequana XH2140 BMC before C4EM-125: OMF_C4E 101.05.0014. Some BullSequana XH products were shipped without proper hardware programming, leading to a potenti… - CVE-2024-46933 2025-02-21 03:15 2025-02-21 Show GitHub Exploit DB Packet Storm
505 - - - Buffer Overflow vulnerability in Extreme Networks IQ Engine before 10.6r1a, and through 10.6r4 before 10.6r5, allows an attacker to execute arbitrary code via the implementation of the ah_auth service - CVE-2023-46272 2025-02-21 02:15 2025-02-20 Show GitHub Exploit DB Packet Storm
506 7.5 HIGH
Network 		enituretechnology small_package_quotes The Small Package Quotes – Purolator Edition plugin for WordPress is vulnerable to SQL Injection via the 'edit_id' and 'dropship_edit_id' parameters in all versions up to, and including, 3.6.4 due to… CWE-89
SQL Injection 		CVE-2024-13532 2025-02-21 01:46 2025-02-12 Show GitHub Exploit DB Packet Storm
507 7.5 HIGH
Network 		enituretechnology ltl_freight_quotes The LTL Freight Quotes – For Customers of FedEx Freight plugin for WordPress is vulnerable to SQL Injection via the 'edit_id' and 'dropship_edit_id' parameters in all versions up to, and including, 3… CWE-89
SQL Injection 		CVE-2024-13480 2025-02-21 01:31 2025-02-12 Show GitHub Exploit DB Packet Storm
508 9.8 CRITICAL
Network 		enituretechnology ltl_freight_quotes The LTL Freight Quotes – Unishippers Edition plugin for WordPress is vulnerable to SQL Injection via the 'edit_id' parameter in all versions up to, and including, 2.5.8 due to insufficient escaping o… CWE-89
SQL Injection 		CVE-2024-13477 2025-02-21 01:30 2025-02-12 Show GitHub Exploit DB Packet Storm
509 5.4 MEDIUM
Network 		kevonadonis wp_abstracts The WP Abstracts plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.7.3. This is due to missing nonce validation on multiple functions. This make… CWE-352
 Origin Validation Error 		CVE-2024-12386 2025-02-21 01:29 2025-02-12 Show GitHub Exploit DB Packet Storm
510 8.8 HIGH
Network 		brizy brizy The Brizy – Page Builder plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'storeUploads' function in all versions up to, and including, 2.6.4. T… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2024-10960 2025-02-21 01:26 2025-02-12 Show GitHub Exploit DB Packet Storm