Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 2, 2025, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
203191 5 警告 Google - Google Chrome における同一生成元ポリシーを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-1187 2011-11-17 10:28 2011-03-8 Show GitHub Exploit DB Packet Storm
203192 5 警告 Google - Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-1186 2011-11-17 10:27 2011-03-8 Show GitHub Exploit DB Packet Storm
203193 7.5 危険 Google - Google Chrome における脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-1185 2011-11-17 10:26 2011-03-8 Show GitHub Exploit DB Packet Storm
203194 10 危険 Google - Google Chrome の Scratchpad application における脆弱性 CWE-noinfo
情報不足 		CVE-2011-1306 2011-11-17 10:25 2011-03-3 Show GitHub Exploit DB Packet Storm
203195 7.5 危険 Google - Google Chrome のレイアウト処理におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-1125 2011-11-17 10:25 2011-02-28 Show GitHub Exploit DB Packet Storm
203196 7.5 危険 Google - Google Chrome の plug-in におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-1124 2011-11-17 10:24 2011-02-28 Show GitHub Exploit DB Packet Storm
203197 7.5 危険 Google - Google Chrome における詳細不明な脆弱性 CWE-20
不適切な入力確認 		CVE-2011-1123 2011-11-17 10:23 2011-02-28 Show GitHub Exploit DB Packet Storm
203198 5 警告 Google - Google Chrome の WebGL 実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2011-1122 2011-11-17 10:23 2011-02-28 Show GitHub Exploit DB Packet Storm
203199 5 警告 Google - Google Chrome の WebGL 実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2011-1120 2011-11-17 10:21 2011-02-28 Show GitHub Exploit DB Packet Storm
203200 7.5 危険 Google - Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2011-1119 2011-11-17 10:20 2011-02-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 2, 2025, 4:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2221 6.1 MEDIUM
Network 		- - The Analytics Cat – Google Analytics Made Easy plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all vers… CWE-79
Cross-site Scripting 		CVE-2024-12072 2024-12-12 15:15 2024-12-12 Show GitHub Exploit DB Packet Storm
2222 4.3 MEDIUM
Network 		- - The ElementInvader Addons for Elementor plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.3.1 via the eli_option_value shortcode. This makes… CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2024-12059 2024-12-12 15:15 2024-12-12 Show GitHub Exploit DB Packet Storm
2223 8.8 HIGH
Network 		- - The Product Carousel Slider & Grid Ultimate for WooCommerce plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 1.9.10 via the 'theme' attribute of the `w… CWE-98
 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') 		CVE-2024-12040 2024-12-12 15:15 2024-12-12 Show GitHub Exploit DB Packet Storm
2224 4.3 MEDIUM
Network 		- - The Snippet Shortcodes plugin for WordPress is vulnerable to unauthorized Shortcode Deletion due to missing authorization in all versions up to, and including, 4.1.6. Note that a nonce is used as aut… CWE-862
 Missing Authorization 		CVE-2024-12018 2024-12-12 15:15 2024-12-12 Show GitHub Exploit DB Packet Storm
2225 6.4 MEDIUM
Network 		- - The FAQ And Answers – Create Frequently Asked Questions Area on WP Sites plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'faq' shortcode in all versions up to, and … CWE-79
Cross-site Scripting 		CVE-2024-11882 2024-12-12 15:15 2024-12-12 Show GitHub Exploit DB Packet Storm
2226 6.4 MEDIUM
Network 		- - The Social Media Shortcodes plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'patreon' shortcode in all versions up to, and including, 1.3.0 due to insufficient inpu… CWE-79
Cross-site Scripting 		CVE-2024-11871 2024-12-12 15:15 2024-12-12 Show GitHub Exploit DB Packet Storm
2227 6.4 MEDIUM
Network 		- - The Integrate Firebase plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'firebase_show' shortcode in all versions up to, and including, 0.9.3 due to insufficient inp… CWE-79
Cross-site Scripting 		CVE-2024-11785 2024-12-12 15:15 2024-12-12 Show GitHub Exploit DB Packet Storm
2228 6.4 MEDIUM
Network 		- - The Smart Agenda – Prise de rendez-vous en ligne plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'smartagenda' shortcode in all versions up to, and including, 4.6 d… CWE-79
Cross-site Scripting 		CVE-2024-11781 2024-12-12 15:15 2024-12-12 Show GitHub Exploit DB Packet Storm
2229 6.4 MEDIUM
Network 		- - The WordPress Book Plugin for Displaying Books in Grid, Flip, Slider, Popup Layout and more plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'gs_book_showcase' short… CWE-79
Cross-site Scripting 		CVE-2024-11766 2024-12-12 15:15 2024-12-12 Show GitHub Exploit DB Packet Storm
2230 6.4 MEDIUM
Network 		- - The WordPress Portfolio Plugin – A Plugin for Making Filterable Portfolio Grid, Portfolio Slider and more plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'gs_portfo… CWE-79
Cross-site Scripting 		CVE-2024-11765 2024-12-12 15:15 2024-12-12 Show GitHub Exploit DB Packet Storm