Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Dec. 29, 2024, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
203381 6.8 警告 Google - Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認
CVE-2011-3884 2011-11-2 16:20 2011-10-25 Show GitHub Exploit DB Packet Storm
203382 7.5 危険 Google - Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題
CVE-2011-3883 2011-11-2 16:19 2011-10-25 Show GitHub Exploit DB Packet Storm
203383 7.5 危険 Google - Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題
CVE-2011-3882 2011-11-2 16:18 2011-10-25 Show GitHub Exploit DB Packet Storm
203384 7.5 危険 Google - Google Chrome における区切り文字に関する脆弱性 CWE-20
不適切な入力確認
CVE-2011-3880 2011-11-2 16:17 2011-10-25 Show GitHub Exploit DB Packet Storm
203385 7.5 危険 Google - Google Chrome における詳細不明な脆弱性 CWE-noinfo
情報不足
CVE-2011-3879 2011-11-2 16:16 2011-10-25 Show GitHub Exploit DB Packet Storm
203386 4.3 警告 Google - Google Chrome の appcache internals page におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2011-3877 2011-11-2 16:15 2011-10-25 Show GitHub Exploit DB Packet Storm
203387 6.8 警告 Google - Google Chrome におけるファイルのダウンロード処理に関する脆弱性 CWE-noinfo
情報不足
CVE-2011-3876 2011-11-2 16:15 2011-10-25 Show GitHub Exploit DB Packet Storm
203388 4.3 警告 Google - Google Chrome における URL バーを偽造される脆弱性 CWE-20
不適切な入力確認
CVE-2011-3875 2011-11-2 16:14 2011-10-25 Show GitHub Exploit DB Packet Storm
203389 5 警告 CSWorks - CSWorks の LiveData Service におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足
CVE-2011-3996 2011-11-2 14:28 2011-11-1 Show GitHub Exploit DB Packet Storm
203390 9.3 危険 Google - Google Chrome における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2011-3873 2011-11-2 11:10 2011-10-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Dec. 30, 2024, 4:05 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
531 - - - In the Linux kernel, the following vulnerability has been resolved: um: Fix potential integer overflow during physmem setup This issue happens when the real map size is greater than LONG_MAX, which… - CVE-2024-53145 2024-12-24 21:15 2024-12-24 Show GitHub Exploit DB Packet Storm
532 - - - Authentication Bypass by Assumed-Immutable Data vulnerability in Apache HugeGraph-Server. This issue affects Apache HugeGraph-Server: from 1.0.0 before 1.5.0. Users are recommended to upgrade to ve… CWE-302
 Authentication Bypass by Assumed-Immutable Data
CVE-2024-43441 2024-12-24 21:15 2024-12-24 Show GitHub Exploit DB Packet Storm
533 6.4 MEDIUM
Network
- - The Responsive Blocks – WordPress Gutenberg Blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'responsive-block-editor-addons/portfolio' block in all versions up to, an… CWE-79
Cross-site Scripting
CVE-2024-12268 2024-12-24 20:15 2024-12-24 Show GitHub Exploit DB Packet Storm
534 6.5 MEDIUM
Network
- - The Appointment Booking Calendar Plugin and Scheduling Plugin – BookingPress plugin for WordPress is vulnerable to SQL Injection via the 'category' parameter of the 'bookingpress_form' shortcode in a… CWE-89
SQL Injection
CVE-2024-11726 2024-12-24 20:15 2024-12-24 Show GitHub Exploit DB Packet Storm
535 6.5 MEDIUM
Network
- - The Booking Calendar WpDevArt plugin is vulnerable to time-based, blind SQL injection via the `id` parameter in the “wpdevart_booking_calendar” shortcode in versions up to, and including, 3.2.19 due … CWE-89
SQL Injection
CVE-2024-10856 2024-12-24 20:15 2024-12-24 Show GitHub Exploit DB Packet Storm
536 5.4 MEDIUM
Network
- - The DirectoryPress – Business Directory And Classified Ad Listing plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 3.6.16 d… CWE-434
 Unrestricted Upload of File with Dangerous Type 
CVE-2024-10584 2024-12-24 20:15 2024-12-24 Show GitHub Exploit DB Packet Storm
537 6.4 MEDIUM
Network
- - The Tracking Code Manager plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the tracking code field in all versions up to, and including, 2.3.0 due to insufficient input sanitizat… CWE-79
Cross-site Scripting
CVE-2024-8721 2024-12-24 19:15 2024-12-24 Show GitHub Exploit DB Packet Storm
538 - - - In the Linux kernel, the following vulnerability has been resolved: x86/xen: don't do PV iret hypercall through hypercall page Instead of jumping to the Xen hypercall page for doing the iret hyperc… - CVE-2024-53241 2024-12-24 19:15 2024-12-24 Show GitHub Exploit DB Packet Storm
539 - - - In the Linux kernel, the following vulnerability has been resolved: xen/netfront: fix crash when removing device When removing a netfront device directly after a suspend/resume cycle it might happe… - CVE-2024-53240 2024-12-24 19:15 2024-12-24 Show GitHub Exploit DB Packet Storm
540 8.8 HIGH
Network
- - The PlugVersions – Easily rollback to previous versions of your plugins plugin for WordPress is vulnerable to arbitrary file uploads due to a missing capability check on the eos_plugin_reviews_restor… CWE-862
 Missing Authorization
CVE-2024-12881 2024-12-24 19:15 2024-12-24 Show GitHub Exploit DB Packet Storm