Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 7, 2025, 6:02 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
207231	5	警告	freedesktop.org 日本電気サイバートラスト株式会社レッドハット	-	JBIG2 デコーダにおける SplashBitmap に関連する整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2009-1188	2010-05-6 13:46	2009-04-23	Show	GitHub Exploit DB Packet Storm

207232	5	警告	freedesktop.org 日本電気サイバートラスト株式会社レッドハット	-	JBIG2 デコーダにおける CairoOutputDev に関連する整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2009-1187	2010-05-6 13:46	2009-04-23	Show	GitHub Exploit DB Packet Storm

207233	9.3	危険	アドビシステムズレッドハット	-	Adobe Reader および Acrobat の custom heap management system におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-1241	2010-04-30 10:26	2010-04-5	Show	GitHub Exploit DB Packet Storm

207234	9.3	危険	アドビシステムズレッドハット	-	Adobe Reader および Acrobat における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-0204	2010-04-30 10:26	2010-04-13	Show	GitHub Exploit DB Packet Storm

207235	9.3	危険	アドビシステムズレッドハット	-	Adobe Reader および Acrobat におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0203	2010-04-30 10:25	2010-04-13	Show	GitHub Exploit DB Packet Storm

207236	9.3	危険	アドビシステムズレッドハット	-	Adobe Reader および Acrobat におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0202	2010-04-30 10:25	2010-04-13	Show	GitHub Exploit DB Packet Storm

207237	9.3	危険	アドビシステムズレッドハット	-	Adobe Reader および Acrobat における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-0201	2010-04-30 10:25	2010-04-13	Show	GitHub Exploit DB Packet Storm

207238	9.3	危険	アドビシステムズレッドハット	-	Adobe Reader および Acrobat におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0199	2010-04-30 10:25	2010-04-13	Show	GitHub Exploit DB Packet Storm

207239	9.3	危険	アドビシステムズレッドハット	-	Adobe Reader および Acrobat におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0198	2010-04-30 10:24	2010-04-13	Show	GitHub Exploit DB Packet Storm

207240	9.3	危険	アドビシステムズレッドハット	-	Adobe Reader および Acrobat における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-0197	2010-04-28 15:58	2010-04-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 7, 2025, 4:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1851	7.2	HIGH Network	-	-	The EventPrime – Events Calendar, Bookings and Tickets plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the em_ticket_category_data and em_ticket_individual_data parameters in al…	CWE-79 Cross-site Scripting	CVE-2024-12024	2024-12-17 19:15	2024-12-17	Show	GitHub Exploit DB Packet Storm

1852	8.8	HIGH Network	-	-	The User Role Editor plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 4.64.3. This is due to missing or incorrect nonce validation on the update_…	CWE-352 Origin Validation Error	CVE-2024-12293	2024-12-17 18:15	2024-12-17	Show	GitHub Exploit DB Packet Storm

1853	5.3	MEDIUM Network	-	-	The Memberful plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.73.9 via the WordPress core search feature. This makes it possible for unaut…	CWE-200 Information Exposure	CVE-2024-11294	2024-12-17 18:15	2024-12-17	Show	GitHub Exploit DB Packet Storm

1854	6.1	MEDIUM Network	-	-	The SMS for WooCommerce plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.8.1. This is due to missing or incorrect nonce validation on a functio…	CWE-352 Origin Validation Error	CVE-2024-12220	2024-12-17 17:15	2024-12-17	Show	GitHub Exploit DB Packet Storm

1855	6.1	MEDIUM Network	-	-	The Stop Registration Spam plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.23. This is due to missing or incorrect nonce validation. This make…	CWE-352 Origin Validation Error	CVE-2024-12219	2024-12-17 17:15	2024-12-17	Show	GitHub Exploit DB Packet Storm

1856	-		-	-	CWE-1104: Use of Unmaintained Third-Party Components vulnerability exists that could cause complete control of the device when an authenticated user installs malicious code into HMI product.	CWE-1104 Use of Unmaintained Third Party Components	CVE-2024-11999	2024-12-17 16:15	2024-12-17	Show	GitHub Exploit DB Packet Storm

1857	-		-	-	Some parameters of the alarm clock module are improperly stored, leaking some sensitive information.	-	CVE-2021-26281	2024-12-17 16:15	2024-12-17	Show	GitHub Exploit DB Packet Storm

1858	-		-	-	Locally installed application can bypass the permission check and perform system operations that require permission.	-	CVE-2021-26280	2024-12-17 16:15	2024-12-17	Show	GitHub Exploit DB Packet Storm

1859	7.6	HIGH Network	-	-	The WP All Import Pro plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 4.9.3 due to missing SSRF protection on the pmxi_curl_download function. …	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2024-9624	2024-12-17 15:15	2024-12-17	Show	GitHub Exploit DB Packet Storm

1860	-		-	-	Improper authorization in handler for custom URL scheme issue in "Shonen Jump+" App for Android versions prior to 4.0.0 allows an attacker to lead a user to access an arbitrary website via the vulner…	CWE-939	CVE-2024-54125	2024-12-17 15:15	2024-12-17	Show	GitHub Exploit DB Packet Storm