Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
191291 7.5 危険 jlmzone - XOOPS 用の jlmZone Classifieds モジュールの index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0873 2012-09-25 16:59 2008-02-21 Show GitHub Exploit DB Packet Storm
191292 6.8 警告 now - Now SMS/MMS Gateway におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-0871 2012-09-25 16:59 2008-02-21 Show GitHub Exploit DB Packet Storm
191293 4.3 警告 IBM - IBM Lotus Quickplace の leg/Main.nsf におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-0861 2012-09-25 16:59 2008-02-20 Show GitHub Exploit DB Packet Storm
191294 10 危険 Kerio Technologies - Kerio MailServer の AVG プラグインにおける脆弱性 CWE-noinfo
情報不足 		CVE-2008-0860 2012-09-25 16:59 2008-02-20 Show GitHub Exploit DB Packet Storm
191295 5 警告 Kerio Technologies - Kerio MailServer におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-0859 2012-09-25 16:59 2008-02-20 Show GitHub Exploit DB Packet Storm
191296 7.5 危険 visnetic
Kerio Technologies		 - Kerio MailServer の Visnetic アンチウイルスプラグインにおけるバッファオーバーフローの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-0858 2012-09-25 16:59 2008-02-20 Show GitHub Exploit DB Packet Storm
191297 7.5 危険 Mambo Foundation
Joomla!		 - Joomla! および Mambo 用の com_salesrep コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0854 2012-09-25 16:59 2008-02-20 Show GitHub Exploit DB Packet Storm
191298 7.5 危険 Mambo Foundation
Joomla!		 - Joomla! および Mambo 用の com_detail コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0853 2012-09-25 16:59 2008-02-20 Show GitHub Exploit DB Packet Storm
191299 7.5 危険 Mambo Foundation
Joomla!		 - Mambo および Joomla! 用の Downloads における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0849 2012-09-25 16:59 2008-02-20 Show GitHub Exploit DB Packet Storm
191300 7.5 危険 Mambo Foundation
Joomla!		 - Joomla! 用の com_profile コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0846 2012-09-25 16:59 2008-02-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 14, 2025, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1651 - - - A floating-point exception (FPE) vulnerability exists in the AP4_TfraAtom::AP4_TfraAtom function in Bento4. - CVE-2024-57513 2025-02-1 05:15 2025-01-30 Show GitHub Exploit DB Packet Storm
1652 4.3 MEDIUM
Network 		visualmodo borderless The Borderless – Widgets, Elements, Templates and Toolkit for Elementor & Gutenberg plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the 'remove_zi… CWE-862
 Missing Authorization 		CVE-2024-11583 2025-02-1 05:03 2025-01-30 Show GitHub Exploit DB Packet Storm
1653 7.2 HIGH
Network 		visualmodo borderless The Borderless – Widgets, Elements, Templates and Toolkit for Elementor & Gutenberg plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 1.5.9 via the 'wr… CWE-94
Code Injection 		CVE-2024-11600 2025-02-1 05:02 2025-01-30 Show GitHub Exploit DB Packet Storm
1654 4.3 MEDIUM
Network 		seventhqueen typer_core The Typer Core plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.9.6 via the 'elementor-template' shortcode due to insufficient restrictions on which … NVD-CWE-noinfo
CVE-2024-12102 2025-02-1 05:01 2025-01-30 Show GitHub Exploit DB Packet Storm
1655 6.1 MEDIUM
Network 		wpmessiah ai_image_alt_text_generator_for_wp The Ai Image Alt Text Generator for WP plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'page' parameter in all versions up to, and including, 1.0.2 due to insufficient in… CWE-79
Cross-site Scripting 		CVE-2024-12177 2025-02-1 04:49 2025-01-30 Show GitHub Exploit DB Packet Storm
1656 7.5 HIGH
Network 		wpmessiah safe_ai_malware_protection_for_wp The Safe Ai Malware Protection for WP plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the export_db() function in all versions up to, and includ… CWE-862
 Missing Authorization 		CVE-2024-12269 2025-02-1 04:44 2025-01-30 Show GitHub Exploit DB Packet Storm
1657 6.5 MEDIUM
Network 		villatheme w2s The W2S – Migrate WooCommerce to Shopify plugin for WordPress is vulnerable to Arbitrary File Read in all versions up to, and including, 1.2.1 via the 'viw2s_view_log' AJAX action. This makes it poss… NVD-CWE-noinfo
CVE-2024-12861 2025-02-1 04:01 2025-01-30 Show GitHub Exploit DB Packet Storm
1658 5.4 MEDIUM
Network 		proxymis html5_chat The HTML5 chat plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'HTML5CHAT' shortcode in all versions up to, and including, 1.04 due to insufficient input sanitizati… CWE-79
Cross-site Scripting 		CVE-2024-12451 2025-02-1 03:55 2025-01-30 Show GitHub Exploit DB Packet Storm
1659 5.4 MEDIUM
Network 		wpdispensary wp_dispensary The WP Dispensary plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'wpd_menu' shortcode in all versions up to, and including, 4.5.0 due to insufficient input sanitiz… CWE-79
Cross-site Scripting 		CVE-2024-12444 2025-02-1 03:45 2025-01-30 Show GitHub Exploit DB Packet Storm
1660 6.1 MEDIUM
Network 		shoalsummitsolutions team_rosters The Team Rosters plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘tab’ parameter in all versions up to, and including, 4.7 due to insufficient input sanitization and outp… CWE-79
Cross-site Scripting 		CVE-2024-12320 2025-02-1 03:25 2025-01-30 Show GitHub Exploit DB Packet Storm