Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 20, 2025, 6:03 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
208451 9.3 危険 アドビシステムズ
レッドハット
- Adobe Reader および Acrobat における任意のコードを実行される脆弱性 CWE-94
CWE-Other
CVE-2010-2205 2010-07-21 16:29 2010-06-29 Show GitHub Exploit DB Packet Storm
208452 9.3 危険 アドビシステムズ
レッドハット
- Adobe Reader および Acrobat における任意のコードを実行される脆弱性 CWE-noinfo
情報不足
CVE-2010-2204 2010-07-21 16:28 2010-06-29 Show GitHub Exploit DB Packet Storm
208453 6.8 警告 アドビシステムズ
レッドハット
- UNIX 上で稼動する Adobe Reader および Acrobat における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2010-2203 2010-07-21 16:27 2010-06-29 Show GitHub Exploit DB Packet Storm
208454 9.3 危険 アドビシステムズ
レッドハット
- Adobe Reader および Acrobat における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2010-2202 2010-07-21 16:27 2010-06-29 Show GitHub Exploit DB Packet Storm
208455 9.3 危険 アドビシステムズ
レッドハット
- Adobe Reader および Acrobat における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題
CVE-2010-2201 2010-07-21 16:27 2010-06-29 Show GitHub Exploit DB Packet Storm
208456 9.3 危険 アドビシステムズ
レッドハット
- Adobe Reader および Acrobat における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題
CVE-2010-2168 2010-07-20 18:08 2010-06-29 Show GitHub Exploit DB Packet Storm
208457 9.3 危険 アドビシステムズ
レッドハット
- Adobe Reader および Acrobat における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2010-1295 2010-07-20 18:08 2010-06-29 Show GitHub Exploit DB Packet Storm
208458 9.3 危険 アドビシステムズ
レッドハット
- Adobe Reader および Acrobat における任意のコードを実行される脆弱性 CWE-20
CWE-399
CVE-2010-1285 2010-07-20 18:08 2010-06-29 Show GitHub Exploit DB Packet Storm
208459 4.7 警告 サイバートラスト株式会社
Linux
レッドハット
- Linux Kernel の gfs2_lock または gfs_lock 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題
CVE-2010-0727 2010-07-20 18:02 2010-03-16 Show GitHub Exploit DB Packet Storm
208460 4.3 警告 サン・マイクロシステムズ
サイバートラスト株式会社
Pango.org
レッドハット
- Pango の hb_ot_layout_build_glyph_classes 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー
CVE-2010-0421 2010-07-20 18:01 2010-03-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 21, 2025, 4:11 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2311 9.8 CRITICAL
Network
- - The School Management System – SakolaWP plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 1.0.8. This is due to the registration function not properly l… CWE-266
 Incorrect Privilege Assignment
CVE-2024-12470 2025-01-7 14:15 2025-01-7 Show GitHub Exploit DB Packet Storm
2312 6.4 MEDIUM
Network
- - The YOGO Booking plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'yogo-calendar' shortcode in all versions up to, and including, 1.6.2 due to insufficient input san… CWE-79
Cross-site Scripting
CVE-2024-12462 2025-01-7 14:15 2025-01-7 Show GitHub Exploit DB Packet Storm
2313 6.4 MEDIUM
Network
- - The Chat Support for Viber – Chat Bubble and Chat Button for Gutenberg, Elementor and Shortcode plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'vchat' shortcode in… CWE-79
Cross-site Scripting
CVE-2024-12457 2025-01-7 14:15 2025-01-7 Show GitHub Exploit DB Packet Storm
2314 6.4 MEDIUM
Network
- - The Uptodown APK Download Widget plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'utd-widget' shortcode in all versions up to, and including, 0.1.2 due to insuffici… CWE-79
Cross-site Scripting
CVE-2024-12453 2025-01-7 14:15 2025-01-7 Show GitHub Exploit DB Packet Storm
2315 6.4 MEDIUM
Network
- - The RightMessage WP plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'rm_area' shortcode in all versions up to, and including, 0.9.7 due to insufficient input saniti… CWE-79
Cross-site Scripting
CVE-2024-12445 2025-01-7 14:15 2025-01-7 Show GitHub Exploit DB Packet Storm
2316 6.1 MEDIUM
Network
- - The Compare Products for WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘s_feature’ parameter in all versions up to, and including, 3.2.1 due to insufficient… CWE-79
Cross-site Scripting
CVE-2024-12435 2025-01-7 14:15 2025-01-7 Show GitHub Exploit DB Packet Storm
2317 6.5 MEDIUM
Network
- - The School Management System – WPSchoolPress plugin for WordPress is vulnerable to SQL Injection via the 'cid' parameter in all versions up to, and including, 2.2.14 due to insufficient escaping on t… CWE-89
SQL Injection
CVE-2024-12332 2025-01-7 14:15 2025-01-7 Show GitHub Exploit DB Packet Storm
2318 4.3 MEDIUM
Network
- - The LazyLoad Background Images plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the pblzbg_save_settings() function in all versions up to, … CWE-862
 Missing Authorization
CVE-2024-12327 2025-01-7 14:15 2025-01-7 Show GitHub Exploit DB Packet Storm
2319 6.1 MEDIUM
Network
- - The Unilevel MLM Plan plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘page’ parameter in all versions up to, and including, 1.1.0 due to insufficient input sanitization … CWE-79
Cross-site Scripting
CVE-2024-12324 2025-01-7 14:15 2025-01-7 Show GitHub Exploit DB Packet Storm
2320 8.8 HIGH
Network
- - The ThePerfectWedding.nl Widget plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.8. This is due to missing or incorrect nonce validation on the… CWE-352
 Origin Validation Error
CVE-2024-12322 2025-01-7 14:15 2025-01-7 Show GitHub Exploit DB Packet Storm