Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 10, 2025, 4:03 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
195531 7.5 危険 e-topbiz - E-topbiz Domain Shop の admin.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2008-5488 2012-06-26 16:03 2008-12-12 Show GitHub Exploit DB Packet Storm
195532 5 警告 5e5 - Teamtek Universal FTP Server におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認
CVE-2008-5431 2012-06-26 16:03 2008-12-11 Show GitHub Exploit DB Packet Storm
195533 4.3 警告 ESET - ESet NOD32 におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題
CVE-2008-5425 2012-06-26 16:03 2008-12-11 Show GitHub Exploit DB Packet Storm
195534 7.8 危険 DELL EMC (旧 EMC Corporation) - EMC Control Center における任意のファイルを読まれる脆弱性 CWE-200
情報漏えい
CVE-2008-5420 2012-06-26 16:03 2008-12-10 Show GitHub Exploit DB Packet Storm
195535 10 危険 DELL EMC (旧 EMC Corporation) - EMC Control Center におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2008-5419 2012-06-26 16:03 2008-12-10 Show GitHub Exploit DB Packet Storm
195536 9.3 危険 BitDefender
bullguard
software602
- BitDefender Free Edition などで使用される pdf.xmd モジュール におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー
CVE-2008-5409 2012-06-26 16:03 2008-12-10 Show GitHub Exploit DB Packet Storm
195537 9.3 危険 アップル - Apple QuickTime Player および iTunes におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2008-5406 2012-06-26 16:03 2008-12-10 Show GitHub Exploit DB Packet Storm
195538 10 危険 grid2000 - FlexCell Grid ActiveX Component における任意ファイルを作成される脆弱性 CWE-Other
その他
CVE-2008-5404 2012-06-26 16:03 2008-12-10 Show GitHub Exploit DB Packet Storm
195539 10 危険 Cerulean Studios - Trillian の AIM プラグインの XML パーサにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2008-5403 2012-06-26 16:03 2008-12-10 Show GitHub Exploit DB Packet Storm
195540 10 危険 Cerulean Studios - Trillian の XML パーサにおける任意のコードを実行される脆弱性 CWE-399
リソース管理の問題
CVE-2008-5402 2012-06-26 16:03 2008-12-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 10, 2025, 4:11 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
101 6.4 MEDIUM
Network
- - The Muslim Prayer Time-Salah/Iqamah plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Masjid ID parameter in all versions up to, and including, 1.8.8 due to insufficient input… New CWE-79
Cross-site Scripting
CVE-2024-12515 2025-01-9 20:15 2025-01-9 Show GitHub Exploit DB Packet Storm
102 6.4 MEDIUM
Network
- - The 3DVieweronline plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's '3Dvo-model' shortcode in all versions up to, and including, 2.2.2 due to insufficient input sani… New CWE-79
Cross-site Scripting
CVE-2024-12514 2025-01-9 20:15 2025-01-9 Show GitHub Exploit DB Packet Storm
103 6.4 MEDIUM
Network
- - The Linear plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'linear_block_buy_commissions' shortcode in all versions up to, and including, 2.7.12 due to insufficient… New CWE-79
Cross-site Scripting
CVE-2024-12496 2025-01-9 20:15 2025-01-9 Show GitHub Exploit DB Packet Storm
104 6.4 MEDIUM
Network
- - The Files Download Delay plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'fddwrap' shortcode in all versions up to, and including, 1.0.9 due to insufficient input s… New CWE-79
Cross-site Scripting
CVE-2024-12493 2025-01-9 20:15 2025-01-9 Show GitHub Exploit DB Packet Storm
105 6.4 MEDIUM
Network
- - The SimplyRETS Real Estate IDX plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'sr_search_form' shortcode in all versions up to, and including, 2.11.2 due to insuff… New CWE-79
Cross-site Scripting
CVE-2024-12491 2025-01-9 20:15 2025-01-9 Show GitHub Exploit DB Packet Storm
106 6.1 MEDIUM
Network
- - The Action Network plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.4.4. This is due to missing or incorrect nonce validation on a function. Th… New CWE-352
 Origin Validation Error
CVE-2024-12394 2025-01-9 20:15 2025-01-9 Show GitHub Exploit DB Packet Storm
107 7.5 HIGH
Network
- - The WP Database Backup – Unlimited Database & Files Backup by Backup for WP plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 7.3 via publicly… New CWE-530
CVE-2024-12330 2025-01-9 20:15 2025-01-9 Show GitHub Exploit DB Packet Storm
108 6.1 MEDIUM
Network
- - The SEMA API plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘catid’ parameter in all versions up to, and including, 5.27 due to insufficient input sanitization and outpu… New CWE-79
Cross-site Scripting
CVE-2024-12285 2025-01-9 20:15 2025-01-9 Show GitHub Exploit DB Packet Storm
109 4.3 MEDIUM
Network
- - The GS Insever Portfolio plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the save_settings() function in all versions up to, and including… New CWE-862
 Missing Authorization
CVE-2024-12249 2025-01-9 20:15 2025-01-9 Show GitHub Exploit DB Packet Storm
110 6.1 MEDIUM
Network
- - The Deliver via Shipos for WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘dvsfw_bulk_label_url’ parameter in all versions up to, and including, 2.1.7 due to… New CWE-79
Cross-site Scripting
CVE-2024-12222 2025-01-9 20:15 2025-01-9 Show GitHub Exploit DB Packet Storm