Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
195641 10 危険 WellinTech - WellinTech KingView におけるにおける任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2012-1832 2012-07-6 13:59 2012-06-27 Show GitHub Exploit DB Packet Storm
195642 10 危険 WellinTech - WellinTech KingView におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-1831 2012-07-6 13:53 2012-06-27 Show GitHub Exploit DB Packet Storm
195643 10 危険 WellinTech - WellinTech KingView におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-1830 2012-07-6 13:50 2012-06-27 Show GitHub Exploit DB Packet Storm
195644 - - Ruby-lang.org - ** 削除 ** Ruby におけるサービス運用妨害 (CPU 資源の消費) の脆弱性 - CVE-2011-4815 2012-07-6 13:48 2011-12-30 Show GitHub Exploit DB Packet Storm
195645 4.3 警告 MT4i - Movable Type 用プラグイン MT4i におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2644 2012-07-6 12:02 2012-07-6 Show GitHub Exploit DB Packet Storm
195646 4.3 警告 KENT-WEB - YY-BOARD におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2643 2012-07-6 12:02 2012-07-6 Show GitHub Exploit DB Packet Storm
195647 4.3 警告 MT4i - Movable Type 用プラグイン MT4i におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2642 2012-07-6 12:01 2012-07-6 Show GitHub Exploit DB Packet Storm
195648 5 警告 Ruby-lang.org - Ruby のハッシュ関数の実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-4815 2012-07-6 12:00 2012-07-6 Show GitHub Exploit DB Packet Storm
195649 6.8 警告 webatall.org - web@all におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-3231 2012-07-5 16:38 2012-06-27 Show GitHub Exploit DB Packet Storm
195650 6.8 警告 アップル - 複数の Apple 製品で使用される WebKit における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2012-0608 2012-07-5 16:33 2012-03-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 13, 2025, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1571 - - - The OPSI Israel Domestic Shipments WordPress plugin through 2.6.3 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which cou… - CVE-2024-13100 2025-01-31 15:15 2025-01-31 Show GitHub Exploit DB Packet Storm
1572 - - - The Zalomení WordPress plugin through 1.5 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even w… - CVE-2024-12872 2025-01-31 15:15 2025-01-31 Show GitHub Exploit DB Packet Storm
1573 - - - The Canvasflow for WordPress plugin through 1.5.5 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used again… - CVE-2024-12275 2025-01-31 15:15 2025-01-31 Show GitHub Exploit DB Packet Storm
1574 6.4 MEDIUM
Network 		- - The Contact Form and Calls To Action by vcita plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'vCitaMeetingScheduler ' shortcode in all versions up to, and includin… CWE-79
Cross-site Scripting 		CVE-2024-11886 2025-01-31 15:15 2025-01-31 Show GitHub Exploit DB Packet Storm
1575 6.4 MEDIUM
Network 		- - The Ticketmeo – Sell Tickets – Event Ticketing plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's shortcodes in all versions up to, and including, 2.3.6 due to insuffi… CWE-79
Cross-site Scripting 		CVE-2025-0507 2025-01-31 14:15 2025-01-31 Show GitHub Exploit DB Packet Storm
1576 9.8 CRITICAL
Network 		- - The MultiVendorX – The Ultimate WooCommerce Multivendor Marketplace Solution plugin for WordPress is vulnerable to Limited Local File Inclusion in all versions up to, and including, 4.2.14 via the t… CWE-22
Path Traversal 		CVE-2025-0493 2025-01-31 14:15 2025-01-31 Show GitHub Exploit DB Packet Storm
1577 5.4 MEDIUM
Network 		- - The Borderless – Widgets, Elements, Templates and Toolkit for Elementor & Gutenberg plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and i… CWE-79
Cross-site Scripting 		CVE-2024-10867 2025-01-31 14:15 2025-01-31 Show GitHub Exploit DB Packet Storm
1578 6.1 MEDIUM
Network 		- - The Forminator Forms – Contact Form, Payment Form & Custom Form Builder plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the title parameter in all versions up to, and includi… CWE-79
Cross-site Scripting 		CVE-2025-0470 2025-01-31 13:15 2025-01-31 Show GitHub Exploit DB Packet Storm
1579 - - - Software installed and run as a non-privileged user may conduct improper GPU system calls to access OOB kernel memory. - CVE-2024-47900 2025-01-31 13:15 2025-01-31 Show GitHub Exploit DB Packet Storm
1580 - - - Software installed and run as a non-privileged user may conduct improper GPU system calls to trigger use-after-free kernel exceptions. - CVE-2024-47899 2025-01-31 13:15 2025-01-31 Show GitHub Exploit DB Packet Storm