Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 1, 2025, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
203481 1.7 注意 オラクル - Oracle Solaris における Zone の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2011-3539 2011-10-27 09:52 2011-10-18 Show GitHub Exploit DB Packet Storm
203482 7.8 危険 オラクル - Oracle Solaris における Kernel/Filesystem の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2011-3537 2011-10-27 09:52 2011-10-18 Show GitHub Exploit DB Packet Storm
203483 2.1 注意 オラクル - Oracle Solaris における DTrace Software Library の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2011-3536 2011-10-27 09:51 2011-10-18 Show GitHub Exploit DB Packet Storm
203484 5 警告 オラクル - Oracle Solaris における Network Status Monitor の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2011-3534 2011-10-27 09:50 2011-10-18 Show GitHub Exploit DB Packet Storm
203485 1.7 注意 オラクル - Oracle Solaris における ZFS の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2011-2312 2011-10-27 09:50 2011-10-18 Show GitHub Exploit DB Packet Storm
203486 1.7 注意 オラクル - Oracle Solaris における ZFS の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2011-2311 2011-10-27 09:49 2011-10-18 Show GitHub Exploit DB Packet Storm
203487 4.3 警告 オラクル - Oracle Solaris における libnsl の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2011-2304 2011-10-27 09:49 2011-10-18 Show GitHub Exploit DB Packet Storm
203488 2.4 注意 オラクル - Oracle Solaris における xscreensaver の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2011-2292 2011-10-27 09:48 2011-10-18 Show GitHub Exploit DB Packet Storm
203489 2.1 注意 オラクル - Oracle Solaris における ZFS の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2011-2286 2011-10-27 09:47 2011-10-18 Show GitHub Exploit DB Packet Storm
203490 7.8 危険 オラクル - Oracle Sun Products Suite の複数の製品における Web Container の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2011-3559 2011-10-26 16:43 2011-10-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 1, 2025, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1991 4.3 MEDIUM
Network 		- - The WP Crowdfunding plugin for WordPress is vulnerable to unauthorized plugin installation due to a missing capability check on the install_woocommerce_plugin() function action in all versions up to,… CWE-862
 Missing Authorization 		CVE-2024-11911 2024-12-13 18:15 2024-12-13 Show GitHub Exploit DB Packet Storm
1992 6.4 MEDIUM
Network 		- - The WP Crowdfunding plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the wp-crowdfunding/search block in all versions up to, and including, 2.1.12 due to insufficient input sanit… CWE-79
Cross-site Scripting 		CVE-2024-11910 2024-12-13 18:15 2024-12-13 Show GitHub Exploit DB Packet Storm
1993 6.4 MEDIUM
Network 		- - The Beaver Builder – WordPress Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the custom JavaScript row settings in all versions up to, and including, 2.8.4.4 due … CWE-79
Cross-site Scripting 		CVE-2024-11832 2024-12-13 18:15 2024-12-13 Show GitHub Exploit DB Packet Storm
1994 6.4 MEDIUM
Network 		- - The Booking System Trafft plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'trafftbooking' shortcode in all versions up to, and including, 1.0.6 due to insufficient … CWE-79
Cross-site Scripting 		CVE-2024-11754 2024-12-13 18:15 2024-12-13 Show GitHub Exploit DB Packet Storm
1995 4.3 MEDIUM
Network 		- - The WP Timetics- AI-powered Appointment Booking Calendar and Online Scheduling Plugin plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the /wp-json… CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2024-11275 2024-12-13 18:15 2024-12-13 Show GitHub Exploit DB Packet Storm
1996 9.8 CRITICAL
Network 		- - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Eryaz Information Technologies NatraCar B2B Dealer Management Program allows SQL Injection.This i… - CVE-2024-8259 2024-12-13 17:15 2024-12-9 Show GitHub Exploit DB Packet Storm
1997 4.4 MEDIUM
Network 		- - The Gutenberg Blocks with AI by Kadence WP – Page Builder Features plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 3.2.53 du… CWE-79
Cross-site Scripting 		CVE-2024-12581 2024-12-13 15:15 2024-12-13 Show GitHub Exploit DB Packet Storm
1998 - - - Deserialization of Untrusted Data vulnerability in PlexTrac (Runbooks modules) which allows Object Injection and arbitrary file writes.This issue affects PlexTrac: from 1.61.3 before 2.8.1. - CVE-2024-11839 2024-12-13 15:15 2024-12-13 Show GitHub Exploit DB Packet Storm
1999 - - - External Control of File Name or Path vulnerability in PlexTrac allows Local Code Inclusion through use of an undocumented API endpoint.This issue affects PlexTrac: from 1.61.3 before 2.8.1. - CVE-2024-11838 2024-12-13 15:15 2024-12-13 Show GitHub Exploit DB Packet Storm
2000 - - - Improper Neutralization of Special Elements used in an N1QL Command ('N1QL Injection') vulnerability in PlexTrac  allows N1QL Injection.This issue affects PlexTrac: from 1.61.3 before 2.8.1. - CVE-2024-11837 2024-12-13 15:15 2024-12-13 Show GitHub Exploit DB Packet Storm