Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 24, 2025, 6:02 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
208331 4.3 警告 Google - Google Chrome におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2010-1503 2010-11-24 14:57 2010-04-20 Show GitHub Exploit DB Packet Storm
208332 9.3 危険 Google - Google Chrome におけるローカルファイルにアクセスされる脆弱性 CWE-noinfo
情報不足
CVE-2010-1502 2010-11-24 14:56 2010-04-20 Show GitHub Exploit DB Packet Storm
208333 9.3 危険 Google - Google Chrome の ドラッグ&ドロップ機能におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足
CVE-2010-2109 2010-11-24 14:56 2010-05-25 Show GitHub Exploit DB Packet Storm
208334 10 危険 Google - Google Chrome における whitelist-mode プラグインブロッカーを回避される脆弱性 CWE-noinfo
情報不足
CVE-2010-2108 2010-11-24 14:56 2010-05-25 Show GitHub Exploit DB Packet Storm
208335 10 危険 Google - Google Chrome の Safe Browsing 機能におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足
CVE-2010-2107 2010-11-24 14:41 2010-05-25 Show GitHub Exploit DB Packet Storm
208336 10 危険 Google - Google Chrome における URL バーを偽造される脆弱性 CWE-noinfo
情報不足
CVE-2010-2106 2010-11-24 14:40 2010-05-25 Show GitHub Exploit DB Packet Storm
208337 10 危険 Google - Google Chrome の URL 正規化における脆弱性 CWE-DesignError
CVE-2010-2105 2010-11-24 14:40 2010-05-25 Show GitHub Exploit DB Packet Storm
208338 5 警告 Google - Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題
CVE-2010-1992 2010-11-24 14:40 2009-02-3 Show GitHub Exploit DB Packet Storm
208339 4.3 警告 Google - Google Chrome における特定の人物を識別される脆弱性 CWE-200
情報漏えい
CVE-2010-1851 2010-11-24 14:39 2010-05-7 Show GitHub Exploit DB Packet Storm
208340 9.3 危険 Google - Google Chrome における脆弱性 CWE-noinfo
情報不足
CVE-2010-2650 2010-11-24 14:39 2010-07-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 25, 2025, 4:09 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1881 - - - Specifically crafted SCMI messages sent to an SCP running SCP-Firmware release versions up to and including 2.15.0 may lead to a Usage Fault and crash the SCP - CVE-2024-11863 2025-01-14 23:15 2025-01-14 Show GitHub Exploit DB Packet Storm
1882 8.8 HIGH
Network
- - An authenticated attacker can use this vulnerability to perform a privilege escalation to gain root access. CWE-732
 Incorrect Permission Assignment for Critical Resource
CVE-2024-11497 2025-01-14 23:15 2025-01-14 Show GitHub Exploit DB Packet Storm
1883 - - - An origin validation error [CWE-346] vulnerability in Fortinet FortiOS IPSec VPN version 7.4.0 through 7.4.1 and version 7.2.6 and below allows an authenticated IPSec VPN user with dynamic IP addres… CWE-346
 Origin Validation Error
CVE-2023-46715 2025-01-14 23:15 2025-01-14 Show GitHub Exploit DB Packet Storm
1884 - - - An improper neutralization of special elements used in an os command ('os command injection') in Fortinet FortiSwitch version 7.4.0 and 7.2.0 through 7.2.5 and 7.0.0 through 7.0.7 and 6.4.0 through 6… CWE-78
OS Command 
CVE-2023-37937 2025-01-14 23:15 2025-01-14 Show GitHub Exploit DB Packet Storm
1885 - - - A use of hard-coded cryptographic key in Fortinet FortiSwitch version 7.4.0 and 7.2.0 through 7.2.5 and 7.0.0 through 7.0.7 and 6.4.0 through 6.4.13 and 6.2.0 through 6.2.7 and 6.0.0 through 6.0.7 al… CWE-321
 Use of Hard-coded Cryptographic Key
CVE-2023-37936 2025-01-14 23:15 2025-01-14 Show GitHub Exploit DB Packet Storm
1886 7.4 HIGH
Network
- - A vulnerability has been identified in Mendix LDAP (All versions < V1.1.2). Affected versions of the module are vulnerable to LDAP injection. This could allow an unauthenticated remote attacker to by… CWE-90
LDAP Injection
CVE-2024-56841 2025-01-14 20:15 2025-01-14 Show GitHub Exploit DB Packet Storm
1887 4.7 MEDIUM
Network
- - A vulnerability has been identified in Industrial Edge Management OS (IEM-OS) (All versions). Affected components are vulnerable to reflected cross-site scripting (XSS) attacks. This could allow an a… CWE-79
Cross-site Scripting
CVE-2024-45385 2025-01-14 20:15 2025-01-14 Show GitHub Exploit DB Packet Storm
1888 6.4 MEDIUM
Network
- - The Page Builder by SiteOrigin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the row label parameter in all versions up to, and including, 2.31.0 due to insufficient input san… CWE-79
Cross-site Scripting
CVE-2024-12240 2025-01-14 20:15 2025-01-14 Show GitHub Exploit DB Packet Storm
1889 6.5 MEDIUM
Network
- - A vulnerability has been identified in SIPROTEC 5 6MD84 (CP300) (All versions < V9.80), SIPROTEC 5 6MD85 (CP300) (All versions >= V7.80 < V9.80), SIPROTEC 5 6MD86 (CP300) (All versions >= V7.80 < V9.… CWE-552
 Files or Directories Accessible to External Parties
CVE-2024-53649 2025-01-14 20:15 2025-01-14 Show GitHub Exploit DB Packet Storm
1890 7.1 HIGH
Network
- - A vulnerability has been identified in SIMATIC S7-1200 CPU 1211C AC/DC/Rly (6ES7211-1BE40-0XB0), SIMATIC S7-1200 CPU 1211C DC/DC/DC (6ES7211-1AE40-0XB0), SIMATIC S7-1200 CPU 1211C DC/DC/Rly (6ES7211-… CWE-352
 Origin Validation Error
CVE-2024-47100 2025-01-14 20:15 2025-01-14 Show GitHub Exploit DB Packet Storm