Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 1, 2025, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
203401 4.3 警告 Google - Google Chrome の WebSockets 実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2011-2849 2011-11-2 10:55 2011-09-16 Show GitHub Exploit DB Packet Storm
203402 5.8 警告 Google - Google Chrome における URL バーを偽造される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-2848 2011-11-2 10:54 2011-09-16 Show GitHub Exploit DB Packet Storm
203403 5 警告 Google - Google Chrome におけるサービス運用妨害 (out-of-bounds read) の脆弱性 CWE-119
バッファエラー 		CVE-2011-2844 2011-11-2 10:52 2011-09-16 Show GitHub Exploit DB Packet Storm
203404 5 警告 Google - Google Chrome におけるサービス運用妨害 (out-of-bounds read) の脆弱性 CWE-119
バッファエラー 		CVE-2011-2843 2011-11-2 10:51 2011-09-16 Show GitHub Exploit DB Packet Storm
203405 7.5 危険 Google - Mac OS X 上で稼働する Google Chrome の インストーラにおける脆弱性 CWE-20
不適切な入力確認 		CVE-2011-2842 2011-11-2 10:51 2011-09-16 Show GitHub Exploit DB Packet Storm
203406 6.8 警告 Google - Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-2841 2011-11-1 13:38 2011-09-16 Show GitHub Exploit DB Packet Storm
203407 5.8 警告 Google - Google Chrome における URL バーを偽造される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-2840 2011-11-1 13:37 2011-09-16 Show GitHub Exploit DB Packet Storm
203408 7.5 危険 Google - Google Chrome における MIME タイプに関する詳細不明な脆弱性 CWE-20
不適切な入力確認 		CVE-2011-2838 2011-11-1 13:37 2011-09-16 Show GitHub Exploit DB Packet Storm
203409 7.5 危険 Google - Linux 上で稼働する Google Chrome における PIC および PIE コンパイラオプションの使用に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2011-2837 2011-11-1 13:36 2011-09-16 Show GitHub Exploit DB Packet Storm
203410 7.5 危険 Google - Google Chrome における詳細不明な脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-2836 2011-11-1 13:35 2011-09-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 1, 2025, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2051 - - - The Ajax Search Lite WordPress plugin before 4.12.4 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting att… - CVE-2024-10568 2024-12-13 01:15 2024-12-12 Show GitHub Exploit DB Packet Storm
2052 - - - The Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content WordPress plugin before 4.15.15 does not sanitise and escape some of its Membership Plan se… - CVE-2024-10518 2024-12-13 01:15 2024-12-12 Show GitHub Exploit DB Packet Storm
2053 - - - The Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content WordPress plugin before 4.15.15 does not sanitise and escape some of its Drag & Drop Builde… - CVE-2024-10517 2024-12-13 01:15 2024-12-12 Show GitHub Exploit DB Packet Storm
2054 - - - The AI Engine WordPress plugin before 2.6.5 does not sanitize and escape a parameter from one of its RESP API endpoint before using it in a SQL statement, allowing admins to perform SQL injection att… - CVE-2024-10499 2024-12-13 01:15 2024-12-12 Show GitHub Exploit DB Packet Storm
2055 - - - The LearnPress WordPress plugin before 4.2.7.2 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks … - CVE-2024-10010 2024-12-13 01:15 2024-12-12 Show GitHub Exploit DB Packet Storm
2056 - - - A logic issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.2, macOS Ventura 13.7.2, macOS Sonoma 14.7.2. An app may be able to execute arbitrary code with kernel privil… - CVE-2024-54529 2024-12-13 01:15 2024-12-12 Show GitHub Exploit DB Packet Storm
2057 - - - Improper Authorization vulnerability in Apache Superset. On Postgres analytic databases an attacker with SQLLab access can craft a specially designed SQL DML statement that is Incorrectly identified … CWE-285
Improper Authorization 		CVE-2024-55633 2024-12-13 00:15 2024-12-13 Show GitHub Exploit DB Packet Storm
2058 - - - A SQL injection vulnerability was found in phpgurukul Online Nurse Hiring System v1.0 in /admin/password-recovery.php via the mobileno parameter. - CVE-2024-54842 2024-12-13 00:15 2024-12-13 Show GitHub Exploit DB Packet Storm
2059 - - - ComfyUI-Impact-Pack is vulnerable to Path Traversal. The issue stems from missing validation of the `image.filename` field in a POST request sent to the `/upload/temp` endpoint added by the extension… - CVE-2024-21575 2024-12-13 00:15 2024-12-13 Show GitHub Exploit DB Packet Storm
2060 - - - Exposure of Sensitive Information to an Unauthorized Actor vulnerability was discovered in Open Design Alliance CDE inWEB SDK before 2025.3. Installing CDE Server with default settings allows unautho… - CVE-2024-12564 2024-12-13 00:15 2024-12-12 Show GitHub Exploit DB Packet Storm