Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 30, 2025, 6:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
208351 5.8 警告 Mozilla Foundation
オラクル
- Mozilla Firefox の js_InitRandom 関数におけるシードの値を推測される脆弱性 CWE-310
暗号の問題
CVE-2010-3399 2011-01-28 15:41 2010-09-15 Show GitHub Exploit DB Packet Storm
208352 10 危険 Google - Google Chrome の WebSockets の実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題
CVE-2010-3254 2011-01-27 15:05 2010-09-2 Show GitHub Exploit DB Packet Storm
208353 10 危険 Google - Google Chrome の notification permissions の実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題
CVE-2010-3253 2011-01-27 15:04 2010-09-2 Show GitHub Exploit DB Packet Storm
208354 10 危険 Google - Google Chrome の Notifications presenter におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題
CVE-2010-3252 2011-01-27 15:02 2010-09-2 Show GitHub Exploit DB Packet Storm
208355 4.3 警告 Google - Google Chrome の WebSockets 実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題
CVE-2010-3251 2011-01-27 15:01 2010-09-2 Show GitHub Exploit DB Packet Storm
208356 5 警告 Google - Google Chrome におけるインストールされた拡張機能の設定を列挙される脆弱性 CWE-noinfo
情報不足
CVE-2010-3250 2011-01-27 15:00 2010-09-2 Show GitHub Exploit DB Packet Storm
208357 9.3 危険 Google - Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題
CVE-2010-3249 2011-01-27 14:58 2010-09-2 Show GitHub Exploit DB Packet Storm
208358 5 警告 Google - Google Chrome における脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2010-3248 2011-01-27 14:56 2010-09-2 Show GitHub Exploit DB Packet Storm
208359 4.3 警告 Google - Google Chrome における URL バーの外観を偽造される脆弱性 CWE-20
不適切な入力確認
CVE-2010-3247 2011-01-27 14:55 2010-09-2 Show GitHub Exploit DB Packet Storm
208360 4.3 警告 Google - Google Chrome におけるポップアップブロッカーを回避される脆弱性 CWE-20
不適切な入力確認
CVE-2010-3246 2011-01-27 14:37 2010-09-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 30, 2025, 4:10 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1601 5.4 MEDIUM
Network
themeisle orbit_fox The Orbit Fox by ThemeIsle plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘title_tag’ parameter in all versions up to, and including, 2.10.43 due to insufficient input sani… CWE-79
Cross-site Scripting
CVE-2024-13183 2025-01-17 06:28 2025-01-10 Show GitHub Exploit DB Packet Storm
1602 7.2 HIGH
Network
simple-help simplehelp SimpleHelp remote support software v5.5.7 and before allows admin users to upload arbitrary files anywhere on the file system by uploading a crafted zip file (i.e. zip slip). This can be exploited to… CWE-59
Link Following
CVE-2024-57728 2025-01-17 06:24 2025-01-16 Show GitHub Exploit DB Packet Storm
1603 7.5 HIGH
Network
simple-help simplehelp SimpleHelp remote support software v5.5.7 and before is vulnerable to multiple path traversal vulnerabilities that enable unauthenticated remote attackers to download arbitrary files from the SimpleH… CWE-22
Path Traversal
CVE-2024-57727 2025-01-17 06:22 2025-01-16 Show GitHub Exploit DB Packet Storm
1604 - - - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Kopatheme Kopa Nictitate Toolkit allows Stored XSS.This issue affects Kopa Nictitate Toolkit: fro… CWE-79
Cross-site Scripting
CVE-2025-23965 2025-01-17 06:15 2025-01-17 Show GitHub Exploit DB Packet Storm
1605 - - - Missing Authorization vulnerability in Sven Hofmann & Michael Schoenrock Mark Posts allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Mark Posts: from n/a thr… CWE-862
 Missing Authorization
CVE-2025-23963 2025-01-17 06:15 2025-01-17 Show GitHub Exploit DB Packet Storm
1606 - - - Missing Authorization vulnerability in Goldstar Goldstar allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Goldstar: from n/a through 2.1.1. CWE-862
 Missing Authorization
CVE-2025-23962 2025-01-17 06:15 2025-01-17 Show GitHub Exploit DB Packet Storm
1607 - - - Missing Authorization vulnerability in WP Tasker WordPress Graphs & Charts allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WordPress Graphs & Charts: from n… CWE-862
 Missing Authorization
CVE-2025-23961 2025-01-17 06:15 2025-01-17 Show GitHub Exploit DB Packet Storm
1608 - - - Missing Authorization vulnerability in Sur.ly Sur.ly allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Sur.ly: from n/a through 3.0.3. CWE-862
 Missing Authorization
CVE-2025-23957 2025-01-17 06:15 2025-01-17 Show GitHub Exploit DB Packet Storm
1609 - - - Missing Authorization vulnerability in xola.com Xola allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Xola: from n/a through 1.6. CWE-862
 Missing Authorization
CVE-2025-23955 2025-01-17 06:15 2025-01-17 Show GitHub Exploit DB Packet Storm
1610 - - - Missing Authorization vulnerability in AWcode & KingfisherFox Salvador – AI Image Generator allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Salvador – AI Im… CWE-862
 Missing Authorization
CVE-2025-23954 2025-01-17 06:15 2025-01-17 Show GitHub Exploit DB Packet Storm