Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
205111 9.3 危険 マイクロソフト - Microsoft Visio Viewer における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2012-0138 2012-02-20 18:01 2012-02-14 Show GitHub Exploit DB Packet Storm
205112 9.3 危険 マイクロソフト - Microsoft .NET Framework および Silverlight における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2012-0014 2012-02-20 17:29 2012-02-14 Show GitHub Exploit DB Packet Storm
205113 9.3 危険 マイクロソフト - Microsoft .NET Framework における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2012-0015 2012-02-20 17:27 2012-02-14 Show GitHub Exploit DB Packet Storm
205114 4.3 警告 シスコシステムズ - Cisco IronPort Encryption Appliance の管理インターフェースにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-0340 2012-02-20 16:38 2012-02-13 Show GitHub Exploit DB Packet Storm
205115 7.8 危険 シスコシステムズ - 複数の Cisco Nexus スイッチの Cisco NX-OS におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2012-0352 2012-02-20 16:27 2012-02-15 Show GitHub Exploit DB Packet Storm
205116 10 危険 アドビシステムズ - Adobe Flash Player の ActiveX コントロールにおける任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2012-0751 2012-02-20 16:21 2012-02-15 Show GitHub Exploit DB Packet Storm
205117 5 警告 Google - Google Chrome におけるサービス運用妨害 (out-of-bounds read) の脆弱性 CWE-DesignError
CVE-2011-3025 2012-02-20 14:43 2012-02-15 Show GitHub Exploit DB Packet Storm
205118 5 警告 Google - Google Chrome におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-3024 2012-02-20 14:42 2012-02-15 Show GitHub Exploit DB Packet Storm
205119 6.8 警告 Google - Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-3023 2012-02-20 14:42 2012-02-15 Show GitHub Exploit DB Packet Storm
205120 5 警告 Google - Google Chrome の translate/translate_manager.cc における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2011-3022 2012-02-20 14:33 2012-02-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 25, 2025, 4:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1151 7.3 HIGH
Network 		- - The Avada Builder plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 3.11.13. This is due to the software allowing users to execute an action th… CWE-94
Code Injection 		CVE-2024-13345 2025-02-13 16:15 2025-02-13 Show GitHub Exploit DB Packet Storm
1152 - - - CWE-434: Unrestricted Upload of File with Dangerous Type vulnerability exists that could render the device inoperable when a malicious file is downloaded. CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2025-1070 2025-02-13 15:15 2025-02-13 Show GitHub Exploit DB Packet Storm
1153 - - - CWE-319: Cleartext Transmission of Sensitive Information vulnerability exists that could result in the exposure of data when network traffic is being sniffed by an attacker. CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2025-1060 2025-02-13 15:15 2025-02-13 Show GitHub Exploit DB Packet Storm
1154 - - - CWE-770: Allocation of Resources Without Limits or Throttling vulnerability exists that could cause communications to stop when malicious packets are sent to the webserver of the device. CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2025-1059 2025-02-13 15:15 2025-02-13 Show GitHub Exploit DB Packet Storm
1155 - - - CWE-494: Download of Code Without Integrity Check vulnerability exists that could render the device inoperable when malicious firmware is downloaded. CWE-494
 Download of Code Without Integrity Check 		CVE-2025-1058 2025-02-13 15:15 2025-02-13 Show GitHub Exploit DB Packet Storm
1156 - - - CWE-20: Improper Input Validation vulnerability exists that could cause denial of service of engineering workstation when specific driver interface is invoked locally by an authenticated user with cr… CWE-20
 Improper Input Validation  		CVE-2024-10083 2025-02-13 15:15 2025-02-13 Show GitHub Exploit DB Packet Storm
1157 6.4 MEDIUM
Network 		- - The Puzzles theme for WordPress is vulnerable to Stored Cross-Site Scripting via shortcodes in versions up to, and including, 4.2.4 due to insufficient input sanitization and output escaping on user … CWE-79
Cross-site Scripting 		CVE-2025-0837 2025-02-13 14:15 2025-02-13 Show GitHub Exploit DB Packet Storm
1158 8.1 HIGH
Network 		- - The Puzzles | WP Magazine / Review with Store WordPress Theme + RTL theme for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 4.2.4 via deserialization of untrus… CWE-502
 Deserialization of Untrusted Data 		CVE-2024-13770 2025-02-13 14:15 2025-02-13 Show GitHub Exploit DB Packet Storm
1159 4.3 MEDIUM
Network 		- - The Rank Math SEO – AI SEO Tools to Dominate SEO Rankings plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the update_metadata() function in all ve… CWE-284
Improper Access Control 		CVE-2024-13229 2025-02-13 14:15 2025-02-13 Show GitHub Exploit DB Packet Storm
1160 6.4 MEDIUM
Network 		- - The Rank Math SEO – AI SEO Tools to Dominate SEO Rankings plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Rank Math API in all versions up to, and including, 1.0.23… CWE-79
Cross-site Scripting 		CVE-2024-13227 2025-02-13 14:15 2025-02-13 Show GitHub Exploit DB Packet Storm