Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 22, 2025, 6:04 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
207051 5 警告 The PHP Group
アップル		 - PHP にサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2010-4409 2011-04-4 14:32 2010-12-1 Show GitHub Exploit DB Packet Storm
207052 5 警告 The PHP Group
アップル		 - PHP の IMAP 拡張 (ext/imap/php_imap.c) における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2010-4150 2011-04-4 14:31 2010-12-7 Show GitHub Exploit DB Packet Storm
207053 6.8 警告 The PHP Group
アップル
サイバートラスト株式会社
レッドハット		 - PHP の utf8_decode 関数におけるクロスサイトスクリプティングおよび SQL インジェクションに対する保護メカニズムを回避される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-3870 2011-04-4 14:29 2009-09-27 Show GitHub Exploit DB Packet Storm
207054 9.3 危険 アップル - Apple QuickTime における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2010-4009 2011-04-4 14:28 2010-12-9 Show GitHub Exploit DB Packet Storm
207055 6.8 警告 アップル
FreeType Project
オラクル		 - FreeType の ttinterp.c 内にある Ins_SHZ 関数におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-3814 2011-04-4 14:27 2010-11-26 Show GitHub Exploit DB Packet Storm
207056 9.3 危険 アップル - Apple QuickTime における整数符号エラーの脆弱性 CWE-189
数値処理の問題 		CVE-2010-3802 2011-04-4 14:23 2010-12-9 Show GitHub Exploit DB Packet Storm
207057 9.3 危険 アップル - Apple QuickTime における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-3801 2011-04-4 14:22 2010-12-9 Show GitHub Exploit DB Packet Storm
207058 4.3 警告 The PHP Group
アップル
レッドハット		 - PHP の filter_var 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-3710 2011-04-4 14:20 2010-10-25 Show GitHub Exploit DB Packet Storm
207059 4.3 警告 The PHP Group
アップル
レッドハット		 - PHP の ZipArchive::getArchiveComment 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-3709 2011-04-4 14:18 2010-11-9 Show GitHub Exploit DB Packet Storm
207060 7.6 危険 アップル - 複数の Apple 製品の WebKit における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2011-0150 2011-04-1 15:32 2011-03-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 23, 2025, 5:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
3071 - - - Unrestricted Upload of File with Dangerous Type vulnerability in Beee ACF City Selector allows Upload a Web Shell to a Web Server.This issue affects ACF City Selector: from n/a through 1.14.0. CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2024-56264 2025-01-2 21:15 2025-01-2 Show GitHub Exploit DB Packet Storm
3072 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in GS Plugins GS Shots for Dribbble allows DOM-Based XSS.This issue affects GS Shots for Dribbble: f… CWE-79
Cross-site Scripting 		CVE-2024-56263 2025-01-2 21:15 2025-01-2 Show GitHub Exploit DB Packet Storm
3073 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in GS Plugins GS Coaches allows Stored XSS.This issue affects GS Coaches: from n/a through 1.1.0. CWE-79
Cross-site Scripting 		CVE-2024-56262 2025-01-2 21:15 2025-01-2 Show GitHub Exploit DB Packet Storm
3074 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in GS Plugins Project Showcase allows Stored XSS.This issue affects Project Showcase: from n/a throu… CWE-79
Cross-site Scripting 		CVE-2024-56261 2025-01-2 21:15 2025-01-2 Show GitHub Exploit DB Packet Storm
3075 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in StorePlugin ShopElement allows Stored XSS.This issue affects ShopElement: from n/a through 2.0.0. CWE-79
Cross-site Scripting 		CVE-2024-56260 2025-01-2 21:15 2025-01-2 Show GitHub Exploit DB Packet Storm
3076 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in AyeCode - WP Business Directory Plugins GeoDirectory allows Stored XSS.This issue affects GeoDire… CWE-79
Cross-site Scripting 		CVE-2024-56259 2025-01-2 21:15 2025-01-2 Show GitHub Exploit DB Packet Storm
3077 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WPBlockArt Magazine Blocks allows Stored XSS.This issue affects Magazine Blocks: from n/a through… CWE-79
Cross-site Scripting 		CVE-2024-56258 2025-01-2 21:15 2025-01-2 Show GitHub Exploit DB Packet Storm
3078 - - - Missing Authorization vulnerability in AyeCode AyeCode Connect allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects AyeCode Connect: from n/a through 1.3.8. CWE-862
 Missing Authorization 		CVE-2024-56255 2025-01-2 21:15 2025-01-2 Show GitHub Exploit DB Packet Storm
3079 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in moveaddons Move Addons for Elementor allows Stored XSS.This issue affects Move Addons for Element… CWE-79
Cross-site Scripting 		CVE-2024-56254 2025-01-2 21:15 2025-01-2 Show GitHub Exploit DB Packet Storm
3080 - - - Missing Authorization vulnerability in supsystic.com Data Tables Generator by Supsystic allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Data Tables Generato… CWE-862
 Missing Authorization 		CVE-2024-56253 2025-01-2 21:15 2025-01-2 Show GitHub Exploit DB Packet Storm